R3ktify

Inspiration

Our inspiration is from HackerOne and the current levels of hacks in the Web3 space.

What it does

R3ktify is a platform that allows developers to have their smart contract code audited by people on the platform known as r3ktifiers. Using a bounty and reward system, where r3ktifiers are rewarded based on the severity level of a vulnerability that was reported.

How we built it

R3ktify is built with Solidity, Chainlink VRF, Chainlink Keepers, and Hardhat.

Challenges we ran into

A challenge we ran into was how to implement Access control on the platform, we came across the Openzeppelin access control library. Still, we had problems getting it to work, so we implemented a mini version of it for our MVP. Another challenge we had was reducing the wait time between each VRF call because the VRF values are required during bounty creation and report submission.

Accomplishments that we're proud of

Moving this project from idea to working implementation, and we feel really happy about that.

What we learned

How to use chainlink keepers, we never truly understood how it worked until we made use of it.

What's next for R3ktify

There are things we need to work on in the future:

How Project Owners and R3ktifiers are registered on the platform, currently only the admin role address can register them, we'd be looking for a way to make this more flexible and still hold the same idea of access control.
Our current integration of Chainlink VRF and Keepers could still lead to cases of the same random number because we are utilizing keepers to call the requestRandomness function on the vrf contract (which can be called by anyone cause we couldn't figure out the address of the keeper making the call) as such, we had to pad the random number with some pseudorandom values, which we feel is not really effective.
We would also be working on a frontend for the dApp and possibly moving to the mainnet.