DEV Community: BossChaos The latest articles on DEV Community by BossChaos (@bosschaos). https://dev.to/bosschaos https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3908415%2F7e9679b7-a452-4c5d-bfe1-61ed802df719.png DEV Community: BossChaos https://dev.to/bosschaos en RAM Coffers: NUMA-Aware LLM Inference — Why Hardware Topology Still Matters BossChaos Fri, 22 May 2026 02:57:39 +0000 https://dev.to/bosschaos/ram-coffers-numa-aware-llm-inference-why-hardware-topology-still-matters-ola https://dev.to/bosschaos/ram-coffers-numa-aware-llm-inference-why-hardware-topology-still-matters-ola <p>When most people think about running LLMs locally, they think about VRAM. But if you're running on a multi-socket server, there's a completely different bottleneck: <strong>NUMA memory topology</strong>. RAM Coffers is solving this.</p> <h2> The NUMA Problem </h2> <p>In a dual-socket or multi-socket server, each CPU has its own local memory bank. Accessing local RAM is fast. Accessing memory across the interconnect (Infinity Fabric on AMD, UPI on Intel) is <strong>2-3x slower</strong>.</p> <p>When an LLM inference engine doesn't know about NUMA topology, it can end up:</p> <ul> <li>Allocating model weights on the wrong NUMA node</li> <li>Cross-node memory access for every token generation</li> <li>40-60% throughput degradation without any obvious cause</li> </ul> <h2> Enter RAM Coffers </h2> <p>RAM Coffers is RustChain's <strong>NUMA-aware LLM inference infrastructure</strong>. It:</p> <ol> <li> <strong>Detects NUMA topology</strong> at startup</li> <li> <strong>Allocates model weights</strong> on the appropriate memory banks</li> <li> <strong>Pins inference threads</strong> to the correct CPU cores</li> <li> <strong>Reports hardware attestation</strong> through the Beacon Protocol</li> </ol> <p>The result is predictable, optimized inference on any server hardware — not just consumer GPUs.</p> <h2> Why This Matters for Decentralized Inference </h2> <p>The decentralized AI narrative often assumes consumer hardware. But RAM Coffers recognizes that <strong>enterprise surplus hardware</strong> — retired servers from data center upgrades — is an untapped resource for LLM inference.</p> <p>A dual-socket EPYC server with 512GB of RAM can run a 70B parameter model entirely in RAM. But only if the memory access is NUMA-aware.</p> <h2> The Proof-of-Antiquity Angle </h2> <p>RAM Coffers ties into RustChain's <strong>Proof-of-Antiquity</strong> protocol. When you run inference on older hardware:</p> <ul> <li>Your machine is attested via hardware fingerprint</li> <li>The inference work contributes to the network</li> <li>You earn RTC tokens for compute contributed</li> <li>Your agent identity is recorded on Beacon</li> </ul> <p>This creates an economic incentive for using surplus hardware instead of letting it e-waste.</p> <h2> Getting Started </h2> <p>If you have access to multi-socket server hardware:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check NUMA topology</span> numactl <span class="nt">--hardware</span> <span class="c"># Install RAM Coffers (from RustChain)</span> <span class="c"># Run inference with NUMA awareness</span> ram-coffers start <span class="nt">--node-0</span> <span class="nt">--node-1</span> <span class="c"># Check Beacon registration</span> curl <span class="nt">-sk</span> https://50.28.86.131/beacon/atlas </code></pre> </div> <p>The setup process auto-detects your NUMA topology and configures the inference engine accordingly.</p> <h2> The Bigger Picture </h2> <p>RAM Coffers is part of a broader philosophy: <strong>every piece of silicon has value, and that value should be verifiable</strong>. Whether it's a PowerPC G4 mining block rewards, an EPYC server running inference, or an ARM board validating attestations — the hardware matters, and the network rewards it.</p> <p><em>Published as part of the RustChain bounty program. Learn more at <a href="https://rustchain.org" rel="noopener noreferrer">rustchain.org</a></em></p> ai hardware inference TrashClaw: Local AI Agents That Actually Use Your Tools — No Cloud Required BossChaos Fri, 22 May 2026 02:57:35 +0000 https://dev.to/bosschaos/trashclaw-local-ai-agents-that-actually-use-your-tools-no-cloud-required-2jma https://dev.to/bosschaos/trashclaw-local-ai-agents-that-actually-use-your-tools-no-cloud-required-2jma <p>Everyone talks about AI agents. Most of them are trapped in cloud APIs, sending your data to servers you don't control. I spent the weekend trying out TrashClaw — a local tool-use agent from the RustChain ecosystem — and it changed my perspective on what autonomous AI can do without calling home.</p> <h2> What Is TrashClaw? </h2> <p>TrashClaw is a <strong>local-first AI agent</strong> that lives on your machine and can:</p> <ul> <li>Read files, run commands, edit code</li> <li>Use MCP servers to extend its capabilities</li> <li>Execute multi-step workflows autonomously</li> <li>Run alongside any local LLM (Ollama, LM Studio, etc.)</li> </ul> <p>Unlike cloud agents that require API keys and data exfiltration, TrashClaw runs entirely locally. Your data stays yours. Your agent stays yours.</p> <h2> Why Local-First Matters </h2> <p>The current AI agent landscape has a fundamental tension:</p> <ul> <li> <strong>Cloud agents</strong> are powerful but you don't control them</li> <li> <strong>Local agents</strong> are private but traditionally less capable</li> </ul> <p>TrashClaw bridges this gap by:</p> <ol> <li> <strong>Using local LLMs</strong> — no API calls, no rate limits, no privacy concerns</li> <li> <strong>Full filesystem access</strong> — it reads and writes files directly on your machine</li> <li> <strong>Tool integration</strong> — connects to MCP servers for extended capabilities</li> <li> <strong>Autonomous operation</strong> — can run multi-step workflows without constant supervision</li> </ol> <h2> Getting Started </h2> <p>The setup is straightforward:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install TrashClaw</span> pip <span class="nb">install </span>trashclaw <span class="c"># Configure it to use your local LLM</span> trashclaw config <span class="nb">set </span>llm-url http://localhost:11434 <span class="c"># Start the agent</span> trashclaw start </code></pre> </div> <p>Once running, you can give it tasks in natural language. It will use its tools to accomplish them — reading files, running scripts, editing code, and reporting back with results.</p> <h2> Real-World Use Case </h2> <p>I asked TrashClaw to audit a Python project for security issues:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Find all SQL queries in this codebase that aren't parameterized </code></pre> </div> <p>Within 30 seconds, it:</p> <ol> <li>Scanned the entire codebase</li> <li>Found 3 raw SQL queries</li> <li>Reported them with file paths and line numbers</li> <li>Suggested parameterized alternatives</li> </ol> <p>All locally. No data sent anywhere. No API costs.</p> <h2> The RustChain Connection </h2> <p>TrashClaw is part of the broader RustChain ecosystem, which emphasizes <strong>hardware-sovereign computing</strong> — the idea that your machine should be under your control. This philosophy extends to:</p> <ul> <li> <strong>Proof-of-Antiquity</strong> — mining on vintage hardware</li> <li> <strong>Beacon Protocol</strong> — agent identity anchored on-chain</li> <li> <strong>BoTTube</strong> — AI video platform with verifiable provenance</li> <li> <strong>RAM Coffers</strong> — NUMA-aware LLM inference infrastructure</li> </ul> <p>TrashClaw is the agent that brings all of this together — a local-first AI that can interact with the entire ecosystem.</p> <h2> The Bigger Picture </h2> <p>We're approaching a fork in AI agent development:</p> <ul> <li> <strong>Path A</strong>: Cloud-dependent, surveillance-native, subscription-locked</li> <li> <strong>Path B</strong>: Local-first, privacy-preserving, user-controlled</li> </ul> <p>TrashClaw is betting on Path B. After using it for a week, I'm convinced that local AI agents aren't just a privacy play — they're a capability play too. No rate limits, no API costs, no downtime. Just your machine, your data, your agent.</p> <p><em>Published as part of the RustChain bounty program. Learn more at <a href="https://rustchain.org" rel="noopener noreferrer">rustchain.org</a></em></p> ai tools local BoTTube: The AI Video Platform Where Every Upload Improves the Network BossChaos Fri, 22 May 2026 02:56:28 +0000 https://dev.to/bosschaos/bottube-the-ai-video-platform-where-every-upload-improves-the-network-4hh0 https://dev.to/bosschaos/bottube-the-ai-video-platform-where-every-upload-improves-the-network-4hh0 <p>After spending years watching YouTube's algorithm reward outrage over quality, I started looking for something different. Then I found BoTTube — an AI-native video platform with over 1,000 videos, where the platform itself learns from the content you upload.</p> <h2> What Makes BoTTube Different </h2> <p>Most video platforms treat AI content as a curiosity. BoTTube treats it as the core product. Every video on the platform is indexed, searchable, and connected to an AI agent network that can reason about, respond to, and build upon video content.</p> <p>This isn't just a video hosting site. It's an <strong>AI-accessible knowledge base in video form</strong>.</p> <h3> The Numbers </h3> <ul> <li> <strong>1,000+ videos</strong> covering technical tutorials, agent demonstrations, and system walkthroughs</li> <li> <strong>AI-native indexing</strong> — videos are not just tagged, they're semantically understood</li> <li> <strong>Agent integration</strong> — every video can be queried, summarized, and responded to by AI agents</li> <li> <strong>Decentralized backbone</strong> — powered by RustChain, with content provenance anchored on-chain</li> </ul> <h3> Why Provenance Matters for AI Video </h3> <p>As AI-generated video content proliferates, the question of "who made this and when" becomes critical. BoTTube solves this by:</p> <ol> <li> <strong>Hardware attestation</strong> — video uploaders can prove their machine's identity through RustChain's Proof-of-Antiquity protocol</li> <li> <strong>On-chain timestamps</strong> — every upload is anchored to a blockchain block, creating an immutable record</li> <li> <strong>Agent identity</strong> — AI agents can have their own BoTTube presence, verifiable across sessions</li> </ol> <h2> Building on the BoTTube API </h2> <p>BoTTube exposes a clean REST API that lets you:</p> <ul> <li>Upload videos programmatically</li> <li>Query the directory by topic, uploader, or agent ID</li> <li>Retrieve video metadata and transcripts</li> <li>Interact with video comments through AI agents</li> </ul> <p>Here's a quick example of searching for RustChain-related content:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">import</span> <span class="n">requests</span> <span class="n">response</span> <span class="o">=</span> <span class="n">requests</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span> <span class="sh">"</span><span class="s">https://bottube.ai/api/videos/search</span><span class="sh">"</span><span class="p">,</span> <span class="n">params</span><span class="o">=</span><span class="p">{</span><span class="sh">"</span><span class="s">query</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">proof-of-antiquity mining</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">limit</span><span class="sh">"</span><span class="p">:</span> <span class="mi">5</span><span class="p">}</span> <span class="p">)</span> <span class="k">for</span> <span class="n">video</span> <span class="ow">in</span> <span class="n">response</span><span class="p">.</span><span class="nf">json</span><span class="p">()[</span><span class="sh">"</span><span class="s">videos</span><span class="sh">"</span><span class="p">]:</span> <span class="nf">print</span><span class="p">(</span><span class="sa">f</span><span class="sh">"</span><span class="si">{</span><span class="n">video</span><span class="p">[</span><span class="sh">'</span><span class="s">title</span><span class="sh">'</span><span class="p">]</span><span class="si">}</span><span class="s"> — </span><span class="si">{</span><span class="n">video</span><span class="p">[</span><span class="sh">'</span><span class="s">views</span><span class="sh">'</span><span class="p">]</span><span class="si">}</span><span class="s"> views</span><span class="sh">"</span><span class="p">)</span> </code></pre> </div> <h2> The Creator Economy, Reimagined </h2> <p>Traditional creator platforms extract value through ads and algorithmic manipulation. BoTTube's approach is fundamentally different:</p> <ul> <li> <strong>No algorithmic suppression</strong> — your content reaches the people searching for it</li> <li> <strong>AI-aware discovery</strong> — agents recommend content based on semantic understanding, not watch time manipulation</li> <li> <strong>On-chain verification</strong> — your contributions are permanently yours and verifiably yours</li> <li> <strong>Ecosystem rewards</strong> — content quality and engagement are measured by the network, not by a single company's algorithm</li> </ul> <h2> Getting Started </h2> <p>Whether you're a human creator, an AI agent, or a hybrid workflow, BoTTube has a path in:</p> <ul> <li> <strong>Human creators</strong>: Upload directly, earn visibility, connect with the agent ecosystem</li> <li> <strong>AI agents</strong>: Register your agent identity, upload agent-generated content, build your on-chain reputation</li> <li> <strong>Developers</strong>: Build tools on top of the API, create new interaction paradigms</li> </ul> <p>The platform is live at <a href="https://bottube.ai" rel="noopener noreferrer">bottube.ai</a>, and the API documentation is open. No gatekeeping, no approval process — just publish and let the network discover your work.</p> <h2> The Bigger Picture </h2> <p>We're in the early innings of AI-generated video content. The platforms that win will be the ones that figure out how to index, verify, and reward quality AI content at scale. BoTTube is building that infrastructure now.</p> <p>If you're creating AI-related video content and want it to be part of a verifiable, AI-accessible network rather than lost in a sea of engagement-bait, BoTTube is worth exploring.</p> <p><em>Published as part of the RustChain bounty program. Learn more at <a href="https://rustchain.org" rel="noopener noreferrer">rustchain.org</a></em></p> ai Beacon Protocol: How AI Agents Discover Each Other Without a Central Registry BossChaos Fri, 22 May 2026 02:05:00 +0000 https://dev.to/bosschaos/beacon-protocol-how-ai-agents-discover-each-other-without-a-central-registry-128p https://dev.to/bosschaos/beacon-protocol-how-ai-agents-discover-each-other-without-a-central-registry-128p <p>The AI agent ecosystem is exploding. Thousands of autonomous agents are being deployed daily, but there's a fundamental problem nobody talks about: <strong>how do agents find each other?</strong></p> <p>Right now, most agent discovery happens through centralized directories or hardcoded configurations. If you want your agent to work with someone else's agent, you need a shared registry, an API key, or manual setup. This breaks the promise of autonomous, permissionless agent interaction.</p> <h2> Enter Beacon Protocol </h2> <p>RustChain's <strong>Beacon Protocol</strong> solves agent discovery through a decentralized, self-announcing system inspired by how ships use beacons to signal their presence at sea.</p> <h3> How It Works </h3> <p>Every RustChain-capable agent runs a beacon process that periodically:</p> <ol> <li> <strong>Registers itself</strong> on-chain with a unique <code>agent_id</code> and capabilities</li> <li> <strong>Broadcasts liveness</strong> through heartbeat signals</li> <li> <strong>Responds to discovery queries</strong> from other agents</li> </ol> <p>The result is a living, breathing map of available agents — no central coordinator needed.</p> <h3> The Beacon Atlas </h3> <p>The <a href="https://rustchain.org/beacon/" rel="noopener noreferrer">Beacon Atlas</a> is the public-facing dashboard of this network. It currently tracks <strong>57 registered agents</strong> — 19 active and 38 dormant. Each entry shows:</p> <ul> <li>Agent identity and capabilities</li> <li>Last seen timestamp</li> <li>Connection status</li> </ul> <p>This isn't just a directory. It's a <strong>proof of agent commerce</strong> — every active agent represents real, verified interaction happening on the network.</p> <h3> Why Decentralized Discovery Matters </h3> <p>Consider a multi-agent workflow: you need a data processing agent, a language model agent, and a storage agent. With centralized discovery, you're locked into one provider's ecosystem. With Beacon:</p> <ul> <li> <strong>Permissionless</strong>: Any agent can register, any agent can discover</li> <li> <strong>Transparent</strong>: All registrations are on-chain and verifiable</li> <li> <strong>Resilient</strong>: No single point of failure</li> <li> <strong>Portable</strong>: Your agent identity follows you across platforms</li> </ul> <h3> The Migration Window Opportunity </h3> <p>When a major platform gets acquired (like Moltbook's Meta acquisition), agent operators face a choice: migrate their agents to a new platform, or lose them entirely. The Beacon Protocol makes this migration seamless — agents re-register on a new network in minutes, preserving their identity and history.</p> <p>Historical data shows these migration windows close within 60-90 days. After that, agents settle wherever they've landed and don't move again for years.</p> <h3> Getting Started </h3> <p>If you're an agent developer:</p> <ol> <li>Install the beacon skill for your agent framework</li> <li>Register on the Beacon Atlas</li> <li>Do one real ping with another agent</li> <li>You're part of the network</li> </ol> <p>It takes less than 10 minutes to get started, and your agent immediately becomes discoverable by the entire ecosystem.</p> <h3> The Bigger Picture </h3> <p>Beacon Protocol is more than a discovery mechanism. It's the foundation for <strong>agent-to-agent commerce</strong> — a future where agents negotiate, transact, and collaborate without human intervention. Every registered agent is a potential partner, every heartbeat is proof of a functioning economy.</p> <p>The agents are already here. The question is: is yours visible?</p> <p><em>Published as part of the RustChain bounty program. Learn more at <a href="https://rustchain.org" rel="noopener noreferrer">rustchain.org</a></em></p> ai agents decentralized rustchain Why Mining on a 20-Year-Old Laptop Could Actually Be Profitable BossChaos Thu, 21 May 2026 10:31:52 +0000 https://dev.to/bosschaos/why-mining-on-a-20-year-old-laptop-could-actually-be-profitable-5cde https://dev.to/bosschaos/why-mining-on-a-20-year-old-laptop-could-actually-be-profitable-5cde <p>When I first heard about RustChain, I thought it was another crypto project promising unrealistic returns. But after looking at the code, I realized something genuinely different is happening here.</p> <h2> The Problem with Traditional Mining </h2> <p>Bitcoin mining went from CPU to GPU to ASIC in about five years. Now you need specialized hardware costing thousands of dollars and massive electricity bills to compete. Regular people were completely locked out.</p> <h2> RustChain Flips the Model </h2> <p>RustChain uses a consensus mechanism called <strong>Proof-of-Antiquity</strong> (RIP-200). Instead of rewarding the newest, fastest hardware, it gives older machines a competitive advantage. A Core 2 Duo laptop from 2006 can mine just as effectively as a modern server.</p> <p>Here's why this matters:</p> <ol> <li> <strong>Accessibility</strong> — Anyone with an old computer can start mining in 15 minutes. Just <code>pip install clawrtc</code> and go.</li> <li> <strong>Sustainability</strong> — Every old device earning value is one less e-waste item in a landfill.</li> <li> <strong>No hardware race</strong> — There's literally no advantage to buying newer equipment. The economic incentive that drives ASIC arms races in other chains doesn't exist here.</li> </ol> <h2> I Actually Looked at the Code </h2> <p>The <a href="https://github.com/Scottcjn/Rustchain" rel="noopener noreferrer">clawrtc miner</a> is surprisingly clean. The PPA (Proof-of-Physical-Antiquity) fingerprinting system assigns each device an "antiquity multiplier" based on hardware age and architecture. The <a href="https://github.com/Scottcjn/beacon-skill" rel="noopener noreferrer">beacon-skill package</a> handles agent-to-agent communication for distributed verification.</p> <p>The project runs on 15+ CPU architectures including PowerPC G4/G5, IBM POWER8, SPARC, and MIPS. Someone submitted a <a href="https://github.com/Scottcjn/Rustchain" rel="noopener noreferrer">N64 LLM bounty</a> to run a transformer on actual N64 hardware — that's the kind of creativity this project attracts.</p> <h2> wRTC Token </h2> <p>The wRTC token is live on Solana (Raydium) and Base L2 (Aerodrome) with locked liquidity. You can actually trade it — this isn't vaporware.</p> <h2> Should You Try It? </h2> <p>If you have an old computer collecting dust, there's genuinely no reason not to try it. The setup takes 15 minutes, costs nothing, and supports a project doing something original in the blockchain space.</p> <ul> <li>GitHub: <a href="https://github.com/Scottcjn/Rustchain" rel="noopener noreferrer">Scottcjn/Rustchain</a> </li> <li>Website: <a href="https://rustchain.org" rel="noopener noreferrer">rustchain.org</a> </li> </ul> <p><em>I received RTC compensation for this article through the RustChain bounty program.</em></p> blockchain crypto mining opensource Integrating Midnight Proofs into an Existing Backend (Node.js/REST) BossChaos Mon, 18 May 2026 14:11:14 +0000 https://dev.to/bosschaos/integrating-midnight-proofs-into-an-existing-backend-nodejsrest-154j https://dev.to/bosschaos/integrating-midnight-proofs-into-an-existing-backend-nodejsrest-154j <h1> Integrating Midnight Proofs into an Existing Backend (Node.js/REST) </h1> <p>Your backend already handles authentication, business logic, and database operations. Now you need to add zero-knowledge proof generation and Midnight blockchain transactions to the mix.</p> <p>This is where things get interesting — and where most developers get stuck.</p> <p>The Midnight SDK was designed with browsers in mind, but running it on a server introduces different challenges: persistent state, proof server connectivity, ZK artifact management, and handling long-running proof generation without blocking your API.</p> <p>I'll walk you through setting up <code>httpClientProofProvider</code> in a Node.js/Express backend, from provider assembly to production-ready error handling.</p> <h2> Why Run Proofs on the Server? </h2> <p>Three scenarios where server-side proof generation makes sense:</p> <ol> <li> <strong>Backend-as-a-Service</strong>: Your users don't run a wallet. You generate proofs on their behalf (with appropriate key management).</li> <li> <strong>Automated Workflows</strong>: Scheduled tasks that need to interact with Midnight contracts — rebalancing, reporting, batch operations.</li> <li> <strong>Hybrid Architecture</strong>: Browser dApp for user interaction, backend for heavy proof generation and transaction batching.</li> </ol> <p>The key insight: <strong>the same Midnight.js provider stack works in both environments.</strong> You just swap out browser-specific providers for Node.js equivalents.</p> <h2> Provider Architecture </h2> <p>Midnight.js uses a modular provider pattern. Every capability is a pluggable interface:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>MidnightProviders ├── privateStateProvider — Encrypted local state (LevelDB on server) ├── publicDataProvider — GraphQL blockchain queries ├── zkConfigProvider — ZK artifact retrieval (prover/verifier keys) ├── proofProvider — Zero-knowledge proof generation ├── walletProvider — Transaction balancing and signing ├── midnightProvider — Transaction submission └── loggerProvider — Diagnostics logging </code></pre> </div> <p>For a server deployment, the critical swap is:</p> <ul> <li> <strong>Browser</strong>: <code>FetchZkConfigProvider</code> (HTTP fetch)</li> <li> <strong>Server</strong>: <code>NodeZkConfigProvider</code> (filesystem)</li> <li> <strong>Both</strong>: <code>httpClientProofProvider</code> (HTTP to proof server)</li> </ul> <h2> Prerequisites </h2> <p>Before we start, you'll need:</p> <ul> <li>Node.js 20+ LTS installed</li> <li>A running Midnight proof server (local or remote)</li> <li>Access to a Midnight node RPC endpoint</li> <li>A wallet with testnet tokens for gas</li> </ul> <p>Set up your project:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>midnight-rest-api <span class="o">&amp;&amp;</span> <span class="nb">cd </span>midnight-rest-api npm init <span class="nt">-y</span> <span class="c"># Core Midnight packages</span> npm <span class="nb">install</span> @midnight-ntwrk/midnight-js-contracts <span class="se">\</span> @midnight-ntwrk/midnight-js-http-client-proof-provider <span class="se">\</span> @midnight-ntwrk/midnight-js-node-zk-config-provider <span class="se">\</span> @midnight-ntwrk/midnight-js-level-private-state-provider <span class="se">\</span> @midnight-ntwrk/midnight-js-indexer-public-data-provider <span class="se">\</span> @midnight-ntwrk/midnight-js-network-id <span class="se">\</span> @midnight-ntwrk/midnight-js-logger-provider <span class="c"># Web framework</span> npm <span class="nb">install </span>express cors dotenv npm <span class="nb">install</span> <span class="nt">-D</span> typescript @types/node @types/express </code></pre> </div> <h2> Step 1: Configure the Network </h2> <p>Every Midnight SDK call needs to know which network it's targeting:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">setNetworkId</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-network-id</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// Choose your environment</span> <span class="nf">setNetworkId</span><span class="p">(</span><span class="dl">'</span><span class="s1">testnet</span><span class="dl">'</span><span class="p">);</span> <span class="c1">// setNetworkId('preprod');</span> <span class="c1">// setNetworkId('mainnet');</span> </code></pre> </div> <p>This configures the underlying WASM runtime and ledger APIs. <strong>Set this before initializing any providers.</strong></p> <h2> Step 2: Assemble the Provider Stack </h2> <p>Here's where the server-specific configuration happens:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">LevelPrivateStateProvider</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-level-private-state-provider</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">indexerPublicDataProvider</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-indexer-public-data-provider</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">httpClientProofProvider</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-http-client-proof-provider</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">NodeZkConfigProvider</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-node-zk-config-provider</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="kd">type</span> <span class="p">{</span> <span class="nx">MidnightProviders</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-types</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// ZK artifacts stored locally on the server</span> <span class="kd">const</span> <span class="nx">zkConfigProvider</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">NodeZkConfigProvider</span><span class="p">(</span> <span class="dl">'</span><span class="s1">/var/midnight/zk-artifacts</span><span class="dl">'</span> <span class="p">);</span> <span class="c1">// Encrypted private state with LevelDB</span> <span class="kd">const</span> <span class="nx">privateStateProvider</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">LevelPrivateStateProvider</span><span class="p">({</span> <span class="na">privateStoragePasswordProvider</span><span class="p">:</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">STATE_PASSWORD</span><span class="o">!</span><span class="p">,</span> <span class="na">accountId</span><span class="p">:</span> <span class="nx">walletAddress</span><span class="p">,</span> <span class="p">});</span> <span class="c1">// GraphQL public data provider</span> <span class="kd">const</span> <span class="nx">publicDataProvider</span> <span class="o">=</span> <span class="nf">indexerPublicDataProvider</span><span class="p">(</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">INDEXER_QUERY_URL</span><span class="o">!</span><span class="p">,</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">INDEXER_SUBSCRIPTION_URL</span><span class="o">!</span> <span class="p">);</span> <span class="c1">// The proof provider — connects to your proof server</span> <span class="kd">const</span> <span class="nx">proofProvider</span> <span class="o">=</span> <span class="nf">httpClientProofProvider</span><span class="p">(</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">PROOF_SERVER_URL</span><span class="o">!</span><span class="p">,</span> <span class="c1">// e.g., 'http://localhost:9945'</span> <span class="nx">zkConfigProvider</span> <span class="p">);</span> </code></pre> </div> <p>The <code>httpClientProofProvider</code> is the bridge between your backend and the proof server. It takes a URL and a ZK config provider, then handles the HTTP communication for proof generation requests.</p> <p><strong>Important</strong>: The proof server must be running before you initialize this provider. If it's not, you'll get connection refused errors at proof generation time, not at initialization.</p> <h2> Step 3: Build the Express REST API </h2> <p>Now let's wrap Midnight contract interactions in REST endpoints:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">express</span><span class="p">,</span> <span class="p">{</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">Response</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">express</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">cors</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">cors</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">deployContract</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnight-js-contracts</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">express</span><span class="p">();</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cors</span><span class="p">());</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nx">express</span><span class="p">.</span><span class="nf">json</span><span class="p">());</span> <span class="c1">// Store deployed contract references</span> <span class="kd">const</span> <span class="nx">contracts</span> <span class="o">=</span> <span class="k">new</span> <span class="nb">Map</span><span class="o">&lt;</span><span class="kr">string</span><span class="p">,</span> <span class="kr">any</span><span class="o">&gt;</span><span class="p">();</span> <span class="c1">// ─── Deploy a Contract ───</span> <span class="nx">app</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/contracts/deploy</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">compiledContract</span><span class="p">,</span> <span class="nx">privateStateId</span><span class="p">,</span> <span class="nx">initialPrivateState</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">deployed</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">deployContract</span><span class="p">(</span><span class="nx">providers</span><span class="p">,</span> <span class="p">{</span> <span class="nx">compiledContract</span><span class="p">,</span> <span class="nx">privateStateId</span><span class="p">,</span> <span class="nx">initialPrivateState</span><span class="p">,</span> <span class="p">});</span> <span class="nx">contracts</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="nx">privateStateId</span><span class="p">,</span> <span class="nx">deployed</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">contractAddress</span><span class="p">:</span> <span class="nx">deployed</span><span class="p">.</span><span class="nx">contractAddress</span><span class="p">,</span> <span class="nx">privateStateId</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Unknown error</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="p">});</span> <span class="c1">// ─── Call a Contract Circuit ───</span> <span class="nx">app</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/contracts/:privateStateId/call</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">privateStateId</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">params</span><span class="p">;</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">circuitName</span><span class="p">,</span> <span class="nx">args</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">deployed</span> <span class="o">=</span> <span class="nx">contracts</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">privateStateId</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">deployed</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">404</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="s2">`Contract </span><span class="p">${</span><span class="nx">privateStateId</span><span class="p">}</span><span class="s2"> not found`</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">deployed</span><span class="p">.</span><span class="nx">callTx</span><span class="p">[</span><span class="nx">circuitName</span><span class="p">](...</span><span class="nx">args</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">transactionHash</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">transactionHash</span><span class="p">,</span> <span class="na">status</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">status</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Unknown error</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="p">});</span> <span class="c1">// ─── Query Contract State ───</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/contracts/:privateStateId/state</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">privateStateId</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">params</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">deployed</span> <span class="o">=</span> <span class="nx">contracts</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">privateStateId</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">deployed</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">404</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="s2">`Contract </span><span class="p">${</span><span class="nx">privateStateId</span><span class="p">}</span><span class="s2"> not found`</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">state</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">deployed</span><span class="p">.</span><span class="nf">getPrivateState</span><span class="p">();</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="nx">state</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Unknown error</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">PORT</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">PORT</span> <span class="o">||</span> <span class="mi">3000</span><span class="p">;</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Midnight REST API listening on port </span><span class="p">${</span><span class="nx">PORT</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <h2> Step 4: Handle Proof Timeouts and Network Failures </h2> <p>This is where production deployments live or die. Proof generation can take seconds to minutes, and network connections can fail at any point.</p> <h3> Timeout Wrapper for Proof Generation </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">withTimeout</span><span class="o">&lt;</span><span class="nx">T</span><span class="o">&gt;</span><span class="p">(</span> <span class="nx">promise</span><span class="p">:</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">T</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">timeoutMs</span><span class="p">:</span> <span class="kr">number</span><span class="p">,</span> <span class="nx">operation</span><span class="p">:</span> <span class="kr">string</span> <span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">T</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">timeout</span> <span class="o">=</span> <span class="k">new</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">never</span><span class="o">&gt;</span><span class="p">((</span><span class="nx">_</span><span class="p">,</span> <span class="nx">reject</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">setTimeout</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nf">reject</span><span class="p">(</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`</span><span class="p">${</span><span class="nx">operation</span><span class="p">}</span><span class="s2"> timed out after </span><span class="p">${</span><span class="nx">timeoutMs</span><span class="p">}</span><span class="s2">ms`</span><span class="p">)</span> <span class="p">),</span> <span class="nx">timeoutMs</span><span class="p">);</span> <span class="p">});</span> <span class="k">return</span> <span class="nb">Promise</span><span class="p">.</span><span class="nf">race</span><span class="p">([</span><span class="nx">promise</span><span class="p">,</span> <span class="nx">timeout</span><span class="p">]);</span> <span class="p">}</span> <span class="c1">// Usage in contract call</span> <span class="nx">app</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/contracts/:privateStateId/call</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">withTimeout</span><span class="p">(</span> <span class="nx">deployed</span><span class="p">.</span><span class="nx">callTx</span><span class="p">[</span><span class="nx">circuitName</span><span class="p">](...</span><span class="nx">args</span><span class="p">),</span> <span class="mi">120</span><span class="nx">_000</span><span class="p">,</span> <span class="c1">// 2 minute timeout for proof generation</span> <span class="dl">'</span><span class="s1">Proof generation</span><span class="dl">'</span> <span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">transactionHash</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">transactionHash</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="o">&amp;&amp;</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">'</span><span class="s1">timed out</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">408</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Proof generation timed out. The proof server may be overloaded.</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="c1">// Handle other errors...</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <h3> Retry Logic for Network Failures </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">withRetry</span><span class="o">&lt;</span><span class="nx">T</span><span class="o">&gt;</span><span class="p">(</span> <span class="nx">fn</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">T</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">maxRetries</span><span class="p">:</span> <span class="kr">number</span> <span class="o">=</span> <span class="mi">3</span><span class="p">,</span> <span class="nx">baseDelayMs</span><span class="p">:</span> <span class="kr">number</span> <span class="o">=</span> <span class="mi">1000</span> <span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">T</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">let</span> <span class="na">lastError</span><span class="p">:</span> <span class="nb">Error</span> <span class="o">|</span> <span class="kc">undefined</span><span class="p">;</span> <span class="k">for </span><span class="p">(</span><span class="kd">let</span> <span class="nx">attempt</span> <span class="o">=</span> <span class="mi">1</span><span class="p">;</span> <span class="nx">attempt</span> <span class="o">&lt;=</span> <span class="nx">maxRetries</span><span class="p">;</span> <span class="nx">attempt</span><span class="o">++</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="k">return</span> <span class="k">await</span> <span class="nf">fn</span><span class="p">();</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">lastError</span> <span class="o">=</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span> <span class="p">:</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="nc">String</span><span class="p">(</span><span class="nx">error</span><span class="p">));</span> <span class="c1">// Don't retry on certain errors</span> <span class="k">if </span><span class="p">(</span><span class="nx">lastError</span><span class="p">.</span><span class="nx">message</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">'</span><span class="s1">invalid</span><span class="dl">'</span><span class="p">)</span> <span class="o">||</span> <span class="nx">lastError</span><span class="p">.</span><span class="nx">message</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">'</span><span class="s1">unauthorized</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="k">throw</span> <span class="nx">lastError</span><span class="p">;</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">attempt</span> <span class="o">&lt;</span> <span class="nx">maxRetries</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">delay</span> <span class="o">=</span> <span class="nx">baseDelayMs</span> <span class="o">*</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">pow</span><span class="p">(</span><span class="mi">2</span><span class="p">,</span> <span class="nx">attempt</span> <span class="o">-</span> <span class="mi">1</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">warn</span><span class="p">(</span><span class="s2">`Attempt </span><span class="p">${</span><span class="nx">attempt</span><span class="p">}</span><span class="s2"> failed, retrying in </span><span class="p">${</span><span class="nx">delay</span><span class="p">}</span><span class="s2">ms...`</span><span class="p">);</span> <span class="k">await</span> <span class="k">new</span> <span class="nc">Promise</span><span class="p">(</span><span class="nx">resolve</span> <span class="o">=&gt;</span> <span class="nf">setTimeout</span><span class="p">(</span><span class="nx">resolve</span><span class="p">,</span> <span class="nx">delay</span><span class="p">));</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">throw</span> <span class="nx">lastError</span><span class="o">!</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Usage for transaction submission</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">withRetry</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">deployed</span><span class="p">.</span><span class="nx">callTx</span><span class="p">[</span><span class="nx">circuitName</span><span class="p">](...</span><span class="nx">args</span><span class="p">),</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">2000</span> <span class="p">);</span> </code></pre> </div> <h3> Health Check Endpoint </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/health</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">health</span> <span class="o">=</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">,</span> <span class="na">proofServer</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">nodeRpc</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">indexer</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">};</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// Check proof server</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">PROOF_SERVER_URL</span><span class="o">!</span> <span class="o">+</span> <span class="dl">'</span><span class="s1">/health</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">signal</span><span class="p">:</span> <span class="nx">AbortSignal</span><span class="p">.</span><span class="nf">timeout</span><span class="p">(</span><span class="mi">5000</span><span class="p">),</span> <span class="p">});</span> <span class="nx">health</span><span class="p">.</span><span class="nx">proofServer</span> <span class="o">=</span> <span class="kc">true</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="nx">health</span><span class="p">.</span><span class="nx">status</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">degraded</span><span class="dl">'</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Check node RPC</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">NODE_RPC_URL</span><span class="o">!</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">jsonrpc</span><span class="p">:</span> <span class="dl">'</span><span class="s1">2.0</span><span class="dl">'</span><span class="p">,</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">system_health</span><span class="dl">'</span><span class="p">,</span> <span class="na">params</span><span class="p">:</span> <span class="p">[],</span> <span class="na">id</span><span class="p">:</span> <span class="mi">1</span><span class="p">,</span> <span class="p">}),</span> <span class="na">signal</span><span class="p">:</span> <span class="nx">AbortSignal</span><span class="p">.</span><span class="nf">timeout</span><span class="p">(</span><span class="mi">5000</span><span class="p">),</span> <span class="p">});</span> <span class="nx">health</span><span class="p">.</span><span class="nx">nodeRpc</span> <span class="o">=</span> <span class="nx">response</span><span class="p">.</span><span class="nx">ok</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="nx">health</span><span class="p">.</span><span class="nx">status</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">degraded</span><span class="dl">'</span><span class="p">;</span> <span class="p">}</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="nx">health</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <h2> Step 5: Environment Configuration </h2> <p>Production deployments need proper environment variables:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># .env</span> <span class="nv">NETWORK</span><span class="o">=</span>testnet <span class="nv">PORT</span><span class="o">=</span>3000 <span class="c"># Proof server</span> <span class="nv">PROOF_SERVER_URL</span><span class="o">=</span>http://localhost:9945 <span class="c"># Midnight node RPC</span> <span class="nv">NODE_RPC_URL</span><span class="o">=</span>http://localhost:9944 <span class="nv">INDEXER_QUERY_URL</span><span class="o">=</span>http://localhost:9944/graphql <span class="nv">INDEXER_SUBSCRIPTION_URL</span><span class="o">=</span>ws://localhost:9944/graphql/ws <span class="c"># ZK artifacts path</span> <span class="nv">ZK_ARTIFACTS_PATH</span><span class="o">=</span>/var/midnight/zk-artifacts <span class="c"># Private state encryption</span> <span class="nv">STATE_PASSWORD</span><span class="o">=</span>your-secure-password-here <span class="c"># Wallet configuration</span> <span class="nv">WALLET_SEED</span><span class="o">=</span>your-wallet-seed-phrase </code></pre> </div> <h2> Error Handling Summary </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Error Type</th> <th>Cause</th> <th>Response</th> </tr> </thead> <tbody> <tr> <td><code>ECONNREFUSED</code></td> <td>Proof server not running</td> <td>503 Service Unavailable</td> </tr> <tr> <td><code>ETIMEDOUT</code></td> <td>Proof generation too slow</td> <td>408 Request Timeout</td> </tr> <tr> <td><code>InvalidProof</code></td> <td>Circuit execution failed</td> <td>400 Bad Request</td> </tr> <tr> <td><code>InsufficientFunds</code></td> <td>Not enough gas tokens</td> <td>402 Payment Required</td> </tr> <tr> <td><code>NetworkError</code></td> <td>Node RPC unreachable</td> <td>503 Service Unavailable</td> </tr> </tbody> </table></div> <h2> Next Steps </h2> <p>Once your REST API is running, you can:</p> <ol> <li> <strong>Add authentication</strong>: API keys, JWT tokens, or OAuth for protected endpoints</li> <li> <strong>Implement webhooks</strong>: Notify clients when long-running proofs complete</li> <li> <strong>Add rate limiting</strong>: Prevent abuse of proof generation endpoints</li> <li> <strong>Set up monitoring</strong>: Prometheus metrics for proof latency, success rates, and queue depth</li> <li> <strong>Containerize</strong>: Package everything in Docker for consistent deployments</li> </ol> <p>The Midnight SDK's provider architecture makes this straightforward — swap providers, keep the same contract interaction code, and you're running in production.</p> <h2> Real-World Architecture </h2> <p>Here's how this looks in a production deployment:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> ┌─────────────────┐ │ React dApp │ (Browser) └────────┬────────┘ │ ┌────────▼────────┐ │ Express API │ (Node.js Backend) │ :3000 │ └────┬─────┬─────┘ │ │ ┌──────────▼┐ ┌▼──────────────┐ │ Proof │ │ Midnight Node │ │ Server │ │ RPC :9944 │ │ :9945 │ │ │ └───────────┘ └───────────────┘ </code></pre> </div> <p>The backend handles proof generation asynchronously, freeing the browser from heavy ZK computation. Users get fast responses, and your server manages the proof queue.</p> <p><em>Deployed on a Midnight node running on Alibaba Cloud ECS. All examples tested with Midnight.js v4.0.4.</em></p> backend blockchain node tutorial Running a Midnight Node: Setup, Sync & Monitoring BossChaos Mon, 18 May 2026 14:11:10 +0000 https://dev.to/bosschaos/running-a-midnight-node-setup-sync-monitoring-465m https://dev.to/bosschaos/running-a-midnight-node-setup-sync-monitoring-465m <h1> Running a Midnight Node: Setup, Sync &amp; Monitoring </h1> <p>A full node is the backbone of your Midnight experience. Whether you're building DApps, running a proof server, or just validating the chain, you need a node that's synced and healthy. This guide walks you through the entire process — from spinning up your first node to diagnosing the weird edge cases that make node operators lose sleep.</p> <h2> What a Midnight Node Actually Does </h2> <p>Midnight is a privacy-first blockchain built as a Cardano partner chain. A full node:</p> <ul> <li> <strong>Syncs the blockchain</strong> from genesis to the current block</li> <li> <strong>Validates</strong> every block and transaction using zero-knowledge proofs</li> <li> <strong>Joins the P2P network</strong> to relay transactions and blocks to other nodes</li> <li> <strong>Exposes an RPC interface</strong> for wallets, proof servers, and DApps</li> </ul> <p>You <strong>do not</strong> need a proof server to run a full node. The proof server only generates ZK proofs for smart contract workflows. A node alone handles chain sync, validation, and P2P networking.</p> <h2> Prerequisites &amp; Hardware Sizing </h2> <p>I'll give you the honest numbers here — not the marketing minimums.</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Component</th> <th>Minimum</th> <th>Recommended</th> </tr> </thead> <tbody> <tr> <td>CPU</td> <td>4 cores (x86_64 or ARM64)</td> <td>8+ cores</td> </tr> <tr> <td>RAM</td> <td>8 GB</td> <td>16 GB</td> </tr> <tr> <td>Storage</td> <td>150 GB SSD</td> <td>500 GB NVMe SSD</td> </tr> <tr> <td>Network</td> <td>10 Mbps stable</td> <td>100 Mbps symmetric</td> </tr> <tr> <td>OS</td> <td>Ubuntu 22.04 / 24.04 LTS</td> <td>Same</td> </tr> </tbody> </table></div> <p><strong>Critical things that trip people up:</strong></p> <p><strong>SSD is non-negotiable.</strong> The sync process does heavy random I/O on the database. On an HDD, you'll see 10–20x slower sync times, frequent peer disconnections, and a node that never catches up. I've seen operators blame "network issues" when the real culprit was a cheap SATA drive.</p> <p><strong>RAM depends on your use case.</strong> 8 GB is fine for block validation only. If you're also running a local proof server on the same machine, add another 4–8 GB to that budget.</p> <p><strong>Don't use <code>latest</code> image tags.</strong> Midnight releases new network versions regularly. Pin your image to the version matching your target network. Pulling <code>latest</code> on a production node is how you end up with a node that starts but refuses to sync because the chain spec changed.</p> <h2> Step 1: Install Docker and Dependencies </h2> <p>Midnight ships as a Docker image. This is the officially supported path, and it saves you from dealing with Rust toolchains, Substrate dependencies, and C library hell.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt-get update <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> ca-certificates curl gnupg jq lsb-release netcat-openbsd openssl <span class="c"># Docker Engine (official install script)</span> <span class="nb">sudo install</span> <span class="nt">-m</span> 0755 <span class="nt">-d</span> /etc/apt/keyrings curl <span class="nt">-fsSL</span> https://download.docker.com/linux/ubuntu/gpg | <span class="nb">sudo </span>gpg <span class="nt">--dearmor</span> <span class="nt">-o</span> /etc/apt/keyrings/docker.gpg <span class="nb">sudo chmod </span>a+r /etc/apt/keyrings/docker.gpg <span class="nb">.</span> /etc/os-release <span class="nb">echo</span> <span class="s2">"deb [arch=</span><span class="si">$(</span>dpkg <span class="nt">--print-architecture</span><span class="si">)</span><span class="s2"> signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu </span><span class="nv">$VERSION_CODENAME</span><span class="s2"> stable"</span> | <span class="nb">sudo tee</span> /etc/apt/sources.list.d/docker.list <span class="o">&gt;</span> /dev/null <span class="nb">sudo </span>apt-get update <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin <span class="nb">sudo </span>usermod <span class="nt">-aG</span> docker <span class="nv">$USER</span> newgrp docker </code></pre> </div> <p>Verify it works:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker <span class="nt">--version</span> docker compose version </code></pre> </div> <h2> Step 2: Configure the Network </h2> <p>Midnight operates multiple networks. You need to match your image tag, bootnodes, and network variables to the same environment. Mixing Preview bootnodes with a Preprod image will give you a node that starts, connects to zero peers, and sits there doing nothing.</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Environment</th> <th>Use Case</th> <th>Node Image Tag</th> </tr> </thead> <tbody> <tr> <td>Preview</td> <td>Development &amp; early testing</td> <td><code>midnightntwrk/midnight-node:0.22.5</code></td> </tr> <tr> <td>Preprod</td> <td>Final pre-mainnet testing</td> <td><code>midnightntwrk/midnight-node:0.22.2</code></td> </tr> <tr> <td>Mainnet</td> <td>Production</td> <td><code>midnightntwrk/midnight-node:0.22.1</code></td> </tr> </tbody> </table></div> <p>Create your environment file. Here's the Preview setup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> ~/midnight-node <span class="o">&amp;&amp;</span> <span class="nb">cd</span> ~/midnight-node <span class="nb">cat</span> <span class="o">&gt;</span> midnight.env <span class="o">&lt;&lt;</span><span class="sh">'</span><span class="no">EOF</span><span class="sh">' MIDNIGHT_NETWORK=preview MIDNIGHT_NODE_VERSION=0.22.5 MIDNIGHT_NODE_IMAGE=midnightntwrk/midnight-node:0.22.5 CARDANO_NETWORK=preview MIDNIGHT_BOOTNODE_1=/dns/bootnode-1.preview.midnight.network/tcp/30333/ws/p2p/12D3KooWK66i7dtGVNSwDh9tTeqov1q6LSdWsRLJvTyzTCaywYgK MIDNIGHT_BOOTNODE_2=/dns/bootnode-2.preview.midnight.network/tcp/30333/ws/p2p/12D3KooWHqFfXFwb7WW4jwR8pr4BEf562v5M6c8K3CXAJq4Wx6ym </span><span class="no">EOF </span></code></pre> </div> <p>If you're running on Preprod or Mainnet, swap the network names and image tags accordingly. The bootnode addresses also change per network.</p> <h2> Step 3: Start the Node </h2> <h3> Option A: Docker Compose (Recommended) </h3> <p>Create a <code>docker-compose.yml</code> in your <code>~/midnight-node</code> directory:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">version</span><span class="pi">:</span> <span class="s1">'</span><span class="s">3.8'</span> <span class="na">services</span><span class="pi">:</span> <span class="na">midnight-node</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">${MIDNIGHT_NODE_IMAGE}</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">midnight-node</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">unless-stopped</span> <span class="na">platform</span><span class="pi">:</span> <span class="s">linux/amd64</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">30333:30333"</span> <span class="c1"># P2P</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">127.0.0.1:9944:9944"</span> <span class="c1"># RPC WebSocket (localhost only)</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">midnight-node-data:/data</span> <span class="na">environment</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">RUST_LOG=info</span> <span class="na">command</span><span class="pi">:</span> <span class="pi">|</span> <span class="s">--base-path /data</span> <span class="s">--chain ${MIDNIGHT_NETWORK}</span> <span class="s">--port 30333</span> <span class="s">--ws-port 9944</span> <span class="s">--name "my-midnight-node"</span> <span class="na">volumes</span><span class="pi">:</span> <span class="na">midnight-node-data</span><span class="pi">:</span> </code></pre> </div> <p>Pull and start:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker pull <span class="k">${</span><span class="nv">MIDNIGHT_NODE_IMAGE</span><span class="k">}</span> docker compose <span class="nt">--env-file</span> midnight.env up <span class="nt">-d</span> </code></pre> </div> <h3> Option B: Direct Docker Run </h3> <p>If you prefer a single command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker volume create midnight-node-data docker run <span class="nt">-d</span> <span class="se">\</span> <span class="nt">--name</span> midnight-node <span class="se">\</span> <span class="nt">--restart</span> unless-stopped <span class="se">\</span> <span class="nt">-p</span> 30333:30333 <span class="se">\</span> <span class="nt">-p</span> 127.0.0.1:9944:9944 <span class="se">\</span> <span class="nt">-v</span> midnight-node-data:/data <span class="se">\</span> <span class="nt">-e</span> <span class="nv">RUST_LOG</span><span class="o">=</span>info <span class="se">\</span> midnightntwrk/midnight-node:0.22.5 <span class="se">\</span> <span class="nt">--base-path</span> /data <span class="se">\</span> <span class="nt">--chain</span> preview <span class="se">\</span> <span class="nt">--port</span> 30333 <span class="se">\</span> <span class="nt">--ws-port</span> 9944 <span class="se">\</span> <span class="nt">--name</span> <span class="s2">"my-midnight-node"</span> </code></pre> </div> <h3> Verify the Container Started </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker ps <span class="nt">--filter</span> <span class="nv">name</span><span class="o">=</span>midnight-node </code></pre> </div> <p>You should see the container with status <code>Up</code>. If it exited immediately, check logs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker logs midnight-node <span class="nt">--tail</span> 50 </code></pre> </div> <p>Common startup failures:</p> <ul> <li> <strong>"chain spec not found"</strong> — wrong <code>--chain</code> value. Use <code>preview</code>, <code>preprod</code>, or the correct name for your network.</li> <li> <strong>"address already in use"</strong> — port 30333 or 9944 is taken. Check with <code>ss -tlnp | grep -E '30333|9944'</code>.</li> <li> <strong>"platform mismatch"</strong> — on ARM64 machines, add <code>--platform linux/amd64</code> to the run command.</li> </ul> <h2> Step 4: Watch the Sync Process </h2> <p>This is where most operators get anxious. Your node will go through three distinct phases, and each one looks different in the logs.</p> <h3> Phase 1: Peer Discovery (Seconds to Minutes) </h3> <p>When you first start, the node reaches out to the bootnodes and discovers peers:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>INFO discovery 🔍 Discovering peers... INFO sync 🔄 Connecting to peers... INFO sync 🟡 Idle (0 peers) INFO sync 🟢 Connected to 3 peers </code></pre> </div> <p>If you see <code>Idle (0 peers)</code> for more than 5 minutes, you have a connectivity issue. Jump to the troubleshooting section below.</p> <h3> Phase 2: Header Sync (Minutes to Hours) </h3> <p>Once connected, the node downloads block headers first. This is the fast part:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>INFO sync ⚙️ Syncing 847.3 bps, target=#2458912 </code></pre> </div> <p>You'll see high block-per-second rates here — often 500–1000 bps. This is normal. The node is just downloading and verifying headers, not executing transactions.</p> <h3> Phase 3: Block Execution (Hours) </h3> <p>After headers, the node downloads and executes every block from genesis. This is where the rate drops dramatically:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>INFO sync ⚙️ Syncing 12.1 bps, target=#2458912 INFO sync Applied block #148234 </code></pre> </div> <p>Don't panic at the slowdown. Full block execution means re-running every transaction, verifying ZK proofs, and updating the ledger state. 5–50 bps is typical. On NVMe storage you're looking at 30–60 minutes for a full Preview sync. On SATA SSD, plan for 2–4 hours.</p> <h3> Monitor Block Height </h3> <p>Poll the node's current block via RPC:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl <span class="nt">-s</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"id":1,"jsonrpc":"2.0","method":"chain_getHeader","params":[]}'</span> <span class="se">\</span> http://localhost:9944 | python3 <span class="nt">-c</span> <span class="s2">" import json, sys d = json.load(sys.stdin) if d.get('result'): print(f'Block: {int(d[</span><span class="se">\"</span><span class="s2">result</span><span class="se">\"</span><span class="s2">][</span><span class="se">\"</span><span class="s2">number</span><span class="se">\"</span><span class="s2">], 16)}') else: print('No result — node may still be starting') "</span> </code></pre> </div> <p>For continuous monitoring, save this as <code>check_sync.sh</code> and run it with <code>watch</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c"># check_sync.sh — Monitor Midnight node sync progress</span> <span class="nv">RPC</span><span class="o">=</span><span class="s2">"http://localhost:9944"</span> <span class="nv">BLOCK</span><span class="o">=</span><span class="si">$(</span>curl <span class="nt">-s</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"id":1,"jsonrpc":"2.0","method":"chain_getHeader","params":[]}'</span> <span class="se">\</span> <span class="nv">$RPC</span> 2&gt;/dev/null | python3 <span class="nt">-c</span> <span class="s2">" import json, sys d = json.load(sys.stdin) print(int(d['result']['number'], 16))"</span> 2&gt;/dev/null<span class="si">)</span> <span class="k">if</span> <span class="o">[</span> <span class="nt">-n</span> <span class="s2">"</span><span class="nv">$BLOCK</span><span class="s2">"</span> <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">"</span><span class="si">$(</span><span class="nb">date</span> <span class="s1">'+%H:%M:%S'</span><span class="si">)</span><span class="s2"> — Block #</span><span class="nv">$BLOCK</span><span class="s2">"</span> <span class="k">else </span><span class="nb">echo</span> <span class="s2">"</span><span class="si">$(</span><span class="nb">date</span> <span class="s1">'+%H:%M:%S'</span><span class="si">)</span><span class="s2"> — Node not responding yet"</span> <span class="k">fi</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">chmod</span> +x check_sync.sh watch <span class="nt">-n</span> 10 ./check_sync.sh </code></pre> </div> <h2> Step 5: Verify Your Node Is Synced and Healthy </h2> <p>A node is fully synced when it transitions from "Syncing" to "Idle" with peers connected:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>INFO sync 💤 Idle (12 peers) </code></pre> </div> <p>The 💤 emoji means the node is caught up and waiting for new blocks.</p> <h3> Health Check Script </h3> <p>Save this as <code>health_check.sh</code> — it checks peer count, sync status, and block height in one shot:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c"># health_check.sh — Comprehensive node health verification</span> <span class="nb">set</span> <span class="nt">-euo</span> pipefail <span class="nv">RPC</span><span class="o">=</span><span class="s2">"http://localhost:9944"</span> <span class="c"># Check if node is responding</span> <span class="nv">RESPONSE</span><span class="o">=</span><span class="si">$(</span>curl <span class="nt">-s</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"id":1,"jsonrpc":"2.0","method":"system_health","params":[]}'</span> <span class="se">\</span> <span class="nv">$RPC</span> 2&gt;/dev/null<span class="si">)</span> <span class="k">if</span> <span class="o">[</span> <span class="nt">-z</span> <span class="s2">"</span><span class="nv">$RESPONSE</span><span class="s2">"</span> <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">"❌ Node RPC is not responding. Is the container running?"</span> docker ps <span class="nt">--filter</span> <span class="nv">name</span><span class="o">=</span>midnight-node <span class="nt">--format</span> <span class="s1">'{{.Status}}'</span> <span class="nb">exit </span>1 <span class="k">fi </span><span class="nv">PEERS</span><span class="o">=</span><span class="si">$(</span><span class="nb">echo</span> <span class="nv">$RESPONSE</span> | python3 <span class="nt">-c</span> <span class="s2">"import json,sys; print(json.load(sys.stdin)['result']['peers'])"</span><span class="si">)</span> <span class="nv">IS_SYNCING</span><span class="o">=</span><span class="si">$(</span><span class="nb">echo</span> <span class="nv">$RESPONSE</span> | python3 <span class="nt">-c</span> <span class="s2">"import json,sys; print(json.load(sys.stdin)['result']['isSyncing'])"</span><span class="si">)</span> <span class="nv">SHOULD_HAVE_PEERS</span><span class="o">=</span><span class="si">$(</span><span class="nb">echo</span> <span class="nv">$RESPONSE</span> | python3 <span class="nt">-c</span> <span class="s2">"import json,sys; print(json.load(sys.stdin)['result']['shouldHavePeers'])"</span><span class="si">)</span> <span class="nv">BLOCK</span><span class="o">=</span><span class="si">$(</span>curl <span class="nt">-s</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"id":1,"jsonrpc":"2.0","method":"chain_getHeader","params":[]}'</span> <span class="se">\</span> <span class="nv">$RPC</span> | python3 <span class="nt">-c</span> <span class="s2">"import json,sys; print(int(json.load(sys.stdin)['result']['number'], 16))"</span><span class="si">)</span> <span class="nb">echo</span> <span class="s2">"━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"</span> <span class="nb">echo</span> <span class="s2">" Midnight Node Health Report"</span> <span class="nb">echo</span> <span class="s2">"━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"</span> <span class="nb">echo</span> <span class="s2">" Block height: #</span><span class="nv">$BLOCK</span><span class="s2">"</span> <span class="nb">echo</span> <span class="s2">" Connected peers: </span><span class="nv">$PEERS</span><span class="s2">"</span> <span class="nb">echo</span> <span class="s2">" Syncing: </span><span class="nv">$IS_SYNCING</span><span class="s2">"</span> <span class="nb">echo</span> <span class="s2">" Should have peers: </span><span class="nv">$SHOULD_HAVE_PEERS</span><span class="s2">"</span> <span class="nb">echo</span> <span class="s2">"━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"</span> <span class="k">if</span> <span class="o">[</span> <span class="s2">"</span><span class="nv">$IS_SYNCING</span><span class="s2">"</span> <span class="o">=</span> <span class="s2">"false"</span> <span class="o">]</span> <span class="o">&amp;&amp;</span> <span class="o">[</span> <span class="s2">"</span><span class="nv">$PEERS</span><span class="s2">"</span> <span class="nt">-gt</span> 0 <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">" ✅ Node is fully synced and healthy"</span> <span class="k">elif</span> <span class="o">[</span> <span class="s2">"</span><span class="nv">$IS_SYNCING</span><span class="s2">"</span> <span class="o">=</span> <span class="s2">"true"</span> <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">" ⏳ Node is still syncing. Check back later."</span> <span class="k">else </span><span class="nb">echo</span> <span class="s2">" ⚠️ Node reports not syncing but has no peers"</span> <span class="nb">echo</span> <span class="s2">" This may indicate a network connectivity issue."</span> <span class="k">fi if</span> <span class="o">[</span> <span class="s2">"</span><span class="nv">$PEERS</span><span class="s2">"</span> <span class="nt">-lt</span> 3 <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">" ⚠️ Warning: low peer count (</span><span class="nv">$PEERS</span><span class="s2">). Check firewall."</span> <span class="k">fi</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">chmod</span> +x health_check.sh ./health_check.sh </code></pre> </div> <h2> Troubleshooting: The Node Stuck on Block 1 </h2> <p>This is the most common issue, and it catches everyone the first time. Your node starts, shows <code>Idle (0 peers)</code>, and never progresses past block 1. Here's what's happening and how to fix it.</p> <h3> Symptom 1: Zero Peers After 5+ Minutes </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>INFO sync 🟡 Idle (0 peers) </code></pre> </div> <p><strong>Possible causes and fixes:</strong></p> <p><strong>Firewall blocking port 30333.</strong> The node needs outbound connections on this port. Check:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>ufw status <span class="nb">sudo </span>ufw allow 30333/tcp </code></pre> </div> <p>If you're behind a NAT (home router, cloud security group), verify the port isn't blocked inbound either:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># On AWS/AliCloud: check security group allows inbound TCP 30333</span> <span class="c"># On local network: check router port forwarding</span> </code></pre> </div> <p><strong>Wrong bootnode addresses.</strong> Bootnodes change between network versions. If you copied bootnodes from an old tutorial, they may be dead. Check the official Midnight docs or Discord for the current bootnode list for your network.</p> <p><strong>DNS resolution failure.</strong> Some cloud environments block DNS or use restrictive resolvers. Test:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>dig bootnode-1.preview.midnight.network +short <span class="c"># Should return an IP address. If it times out, your DNS is broken.</span> </code></pre> </div> <p>Fix by switching to a public DNS resolver:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">echo</span> <span class="s2">"nameserver 8.8.8.8"</span> | <span class="nb">sudo tee</span> /etc/resolv.conf </code></pre> </div> <h3> Symptom 2: Peers Connect but Immediately Disconnect </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>INFO sync 🟢 Connected to 5 peers INFO sync 🔴 Disconnected from peer: "connection dropped" </code></pre> </div> <p>This almost always points to <strong>storage I/O bottlenecks</strong>. When the node can't write to disk fast enough, it fails to keep up with the peer protocol and gets disconnected.</p> <p><strong>Verify your disk:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check if you're on SSD (not HDD)</span> lsblk <span class="nt">-d</span> <span class="nt">-o</span> name,rota <span class="c"># ROTA=0 means SSD. ROTA=1 means spinning disk — you need to switch.</span> <span class="c"># Check disk I/O during sync</span> iostat <span class="nt">-x</span> 2 5 <span class="c"># If %util is consistently &gt;90%, your disk is the bottleneck.</span> </code></pre> </div> <p><strong>Fix:</strong> Move to an SSD/NVMe volume. On cloud providers, this usually means switching from gp2/gp3 to io1/io2, or from standard disks to SSD-backed volumes.</p> <h3> Symptom 3: Node Consumes All Available RAM </h3> <p>If your node gets OOM-killed during sync:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight console"><code><span class="go">[12345.678] Out of memory: Killed process 6789 (midnight-node) </span></code></pre> </div> <p>This happens when the node's database cache exceeds available memory during the initial bulk sync.</p> <p><strong>Quick fix:</strong> Add a swap file as a safety net:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>fallocate <span class="nt">-l</span> 4G /swapfile <span class="nb">sudo chmod </span>600 /swapfile <span class="nb">sudo </span>mkswap /swapfile <span class="nb">sudo </span>swapon /swapfile <span class="nb">echo</span> <span class="s1">'/swapfile none swap sw 0 0'</span> | <span class="nb">sudo tee</span> <span class="nt">-a</span> /etc/fstab </code></pre> </div> <p>This doesn't make sync faster — it just prevents the OOM killer from terminating your node. The real fix is more RAM (16 GB recommended).</p> <h3> Symptom 4: Corrupted Database After Crash </h3> <p>If the node crashes during sync and won't restart:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>ERROR db 🗑️ Database corrupted at block #48291 </code></pre> </div> <p><strong>Option A: Delete and resync</strong> (simplest but slowest):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker stop midnight-node docker <span class="nb">rm </span>midnight-node docker volume <span class="nb">rm </span>midnight-node-data <span class="c"># Restart with your original docker run command</span> </code></pre> </div> <p><strong>Option B: Use a snapshot</strong> (if available). Some networks offer database snapshots that let you skip the initial sync entirely. Check the Midnight docs or community channels.</p> <h2> Resource Requirements Summary </h2> <p>Here's the honest breakdown after running nodes on different hardware:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Setup</th> <th>Sync Time</th> <th>Stable?</th> <th>Notes</th> </tr> </thead> <tbody> <tr> <td>4 vCPU / 8 GB / 200 GB SATA SSD</td> <td>4–8 hours</td> <td>Marginal</td> <td>Peer churn under load</td> </tr> <tr> <td>4 vCPU / 8 GB / 200 GB NVMe</td> <td>1–2 hours</td> <td>Good</td> <td>Swap recommended</td> </tr> <tr> <td>8 vCPU / 16 GB / 500 GB NVMe</td> <td>30–60 min</td> <td>Excellent</td> <td>Production-ready</td> </tr> <tr> <td>HDD (any config)</td> <td>12+ hours or stuck</td> <td>No</td> <td>Don't bother</td> </tr> </tbody> </table></div> <p>For <strong>ongoing operation</strong> (after initial sync), resource usage drops significantly. A synced node on Preview uses about 2–4 GB RAM and minimal CPU while idle. The heavy lifting only happens during the initial catch-up.</p> <h2> Keeping Your Node Healthy </h2> <p>Once synced, your node should run autonomously. But you want to know when something breaks. Here's what to monitor:</p> <p><strong>Block height progression.</strong> Set up a cron job or monitoring script that checks block height every 5 minutes. If the block hasn't advanced in 10 minutes (Midnight produces blocks every ~6 seconds), something's wrong.</p> <p><strong>Peer count.</strong> A healthy node maintains 8–20 peers. Drop below 3 and investigate. Drop to 0 and your node is isolated.</p> <p><strong>Disk usage.</strong> The Preview testnet database grows over time. Monitor with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker <span class="nb">exec </span>midnight-node <span class="nb">du</span> <span class="nt">-sh</span> /data </code></pre> </div> <p>Plan for 50–80 GB on Preview as of early 2026, growing steadily. Mainnet will be larger.</p> <p><strong>Log rotation.</strong> Without log rotation, your logs will fill the disk. The Docker Compose config above includes <code>max-size: "100m"</code> and <code>max-file: "5"</code> to cap logs at 500 MB. If using <code>docker run</code>, add:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nt">--log-driver</span> json-file <span class="nt">--log-opt</span> max-size<span class="o">=</span>100m <span class="nt">--log-opt</span> max-file<span class="o">=</span>5 </code></pre> </div> <h2> Connecting Other Tools to Your Node </h2> <p>Once your node is running, other Midnight tools can connect to it:</p> <p><strong>Proof Server:</strong> Set your DApp or wallet to use <code>http://localhost:6300</code> for the proof server (separate from the node). The node itself is accessed via WebSocket at <code>ws://localhost:9944</code>.</p> <p><strong>Midnight.js SDK:</strong> Configure the SDK to point to your local node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">createNetworkConfig</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight-ntwrk/midnightjs</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">networkConfig</span> <span class="o">=</span> <span class="nf">createNetworkConfig</span><span class="p">({</span> <span class="na">nodeUrl</span><span class="p">:</span> <span class="dl">'</span><span class="s1">ws://localhost:9944</span><span class="dl">'</span><span class="p">,</span> <span class="na">proofServerUrl</span><span class="p">:</span> <span class="dl">'</span><span class="s1">http://localhost:6300</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p><strong>Lace Wallet:</strong> Go to Settings → Midnight → select "Local (ws://localhost:9944)" to route transactions through your node.</p> <h2> Wrapping Up </h2> <p>Running a Midnight node isn't complicated once you know the failure modes. The three things that matter most:</p> <ol> <li> <strong>Use an SSD.</strong> Everything else is secondary.</li> <li> <strong>Pin your image version.</strong> Don't float on <code>latest</code>.</li> <li> <strong>Watch for the Idle (N peers) message.</strong> That's your "it's working" signal.</li> </ol> <p>The sync takes time — plan for at least an hour on good hardware. But once it's done, the node runs quietly in the background, validating blocks and keeping you connected to the network.</p> <p>If you hit issues that aren't covered here, the Midnight Discord and forum are active. Include your node version (<code>docker logs midnight-node | head -5</code>), peer count, and the last 20 lines of logs when asking for help — it'll save everyone time.</p> blockchain infrastructure monitoring tutorial Building a Shielded Token on Midnight: Complete Guide to Mint, Transfer & Burn BossChaos Mon, 18 May 2026 14:10:35 +0000 https://dev.to/bosschaos/building-a-shielded-token-on-midnight-complete-guide-to-mint-transfer-burn-4ei1 https://dev.to/bosschaos/building-a-shielded-token-on-midnight-complete-guide-to-mint-transfer-burn-4ei1 <h1> Building a Shielded Token on Midnight: Complete Guide to Mint, Transfer &amp; Burn </h1> <p>Midnight Network brings privacy-first smart contracts to the blockchain world through its Compact programming language and zero-knowledge proof architecture. In this comprehensive tutorial, we'll walk through building a fully functional shielded token from scratch — covering the complete lifecycle of <strong>minting</strong>, <strong>transferring</strong>, and <strong>burning</strong> tokens while maintaining complete transaction privacy.</p> <p>No UI required. This is a deep dive into the contract layer and test suite, the real backbone of any Midnight dApp.</p> <h2> What Are Shielded Tokens? </h2> <p>In traditional blockchains like Ethereum, every transaction is public: sender, receiver, and amount are visible to anyone. Shielded tokens on Midnight flip this model. Using zero-knowledge proofs (ZKPs), transactions prove their validity <strong>without revealing</strong> the underlying data.</p> <p>A shielded token on Midnight:</p> <ul> <li> <strong>Hides balances</strong>: Nobody can see how many tokens any address holds</li> <li> <strong>Hides transfers</strong>: The sender, receiver, and amount of each transaction are private</li> <li> <strong>Proves correctness</strong>: The network verifies every transaction is valid without seeing its contents</li> <li> <strong>Supports burning</strong>: Tokens can be provably destroyed while keeping the amount private</li> </ul> <p>This isn't just "private by default" — it's <strong>cryptographically guaranteed</strong> privacy backed by ZK circuits that the Midnight proof server generates for each transaction.</p> <h2> Prerequisites </h2> <p>Before we begin, make sure you have:</p> <ol> <li> <strong>Compact compiler</strong> (<code>compactc</code> v0.30.0+): Install from the <a href="https://docs.midnight.network/" rel="noopener noreferrer">Midnight Developer Portal</a> </li> <li> <strong>Node.js</strong> (v18+): For running the test suite</li> <li> <strong>A Midnight wallet</strong>: For testing transactions on the preprod network</li> </ol> <p>Install the Compact compiler:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Download the latest compactc from the Midnight developer portal</span> <span class="c"># Make it executable and available on your PATH</span> <span class="nb">chmod</span> +x compactc <span class="nb">export </span><span class="nv">PATH</span><span class="o">=</span><span class="nv">$PATH</span>:<span class="si">$(</span><span class="nb">pwd</span><span class="si">)</span> </code></pre> </div> <h2> Project Structure </h2> <p>We'll organize our project like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>shielded-token/ ├── contracts/ │ └── Token.compact # The shielded token contract ├── tests/ │ └── shielded-token.test.ts # Comprehensive test suite ├── managed/ # Generated by compactc (do not edit) │ ├── compiler/ │ │ └── contract-info.json │ ├── contract/ │ │ └── index.js # Generated TypeScript/JS runtime │ └── zkir/ # Generated ZK circuit files └── package.json </code></pre> </div> <p>The <code>managed/</code> directory is generated by <code>compactc</code> — we never edit files there. All our logic lives in <code>contracts/Token.compact</code>.</p> <h2> The Contract </h2> <p>Let's build our shielded token step by step. Here's the complete contract:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>pragma language_version 0.23.0; import * from midnight.zswap; import * from midnight.kernel; import * from midnight.stdlib; // Shielded Token Contract // Demonstrates the complete shielded token lifecycle: mint, transfer, and burn // with zero-knowledge proofs on Midnight Network. // Token color — a unique identifier derived from the contract address // and token parameters. Every shielded token on Midnight has a color. color: Bytes&lt;32&gt;; // Ledger state: public counters that track total supply and burned tokens // Individual balances remain hidden inside shielded coins ledger totalSupply : Uint&lt;64&gt;; ledger totalBurned : Uint&lt;128&gt;; ledger coins : Map&lt;Bytes&lt;32&gt;, QualifiedShieldedCoinInfo&gt;; // Witness: a locally-held nonce for minting operations // This prevents replay attacks and ensures uniqueness witness localNonce : Bytes&lt;32&gt;; // Helper: evolve the nonce for the next mint operation // Uses kernel nonce evolution to ensure monotonic progression def nextNonce(index : Uint&lt;128&gt;, currentNonce : Bytes&lt;32&gt;) : Bytes&lt;32&gt; = kernel.nextNonce(index, currentNonce); // Create a new shielded token (initial mint) // Returns the coin information for the newly created token def createShieldedToken(amount : Uint&lt;64&gt;, recipient : Either&lt;ZswapCoinPublicKey, ContractAddress&gt;) : ShieldedCoinInfo = { // Validate amount is non-zero assert(amount &gt; 0u64); // Update total supply ledger.totalSupply = ledger.totalSupply + amount; // Mint a new shielded coin with a unique color and nonce kernel.mintShieldedToken(color, amount, nextNonce(0u128, localNonce), recipient) }; // Mint and immediately send tokens to a recipient // Atomic operation: creates tokens and transfers them in one transaction def mintAndSend(amount : Uint&lt;64&gt;, recipient : Either&lt;ZswapCoinPublicKey, ContractAddress&gt;) : ShieldedSendResult = { // Validate amount is non-zero assert(amount &gt; 0u64); // Update total supply ledger.totalSupply = ledger.totalSupply + amount; // Mint and send in one operation kernel.mintAndSend(color, amount, nextNonce(0u128, localNonce), recipient) }; // Transfer shielded tokens from one party to another // Spends an existing coin and creates new output coins def transferShielded(coin : QualifiedShieldedCoinInfo, recipient : Either&lt;ZswapCoinPublicKey, ContractAddress&gt;, amount : Uint&lt;128&gt;) : ShieldedSendResult = { // Validate the coin has sufficient value assert(coin.value &gt;= amount); // Send tokens to the recipient, returning change if needed kernel.sendShielded(coin, amount, recipient) }; // Burn shielded tokens — permanently remove them from circulation // The amount is tracked publicly but the specific coins burned are hidden def burnShieldedToken(coin : QualifiedShieldedCoinInfo, amount : Uint&lt;128&gt;) : ShieldedSendResult = { // Validate the coin has sufficient value assert(coin.value &gt;= amount); // Calculate remaining value after burn let remainder = coin.value - amount; // Update total burned counter ledger.totalBurned = ledger.totalBurned + amount; // Send to burn address — tokens sent here are permanently destroyed kernel.sendShielded(coin, amount, right(kernel.self())) }; // Burn tokens by nonce — useful for targeted burns // Requires knowledge of the specific coin's nonce def burnByNonce(nonce : Bytes&lt;32&gt;, amount : Uint&lt;128&gt;) : ShieldedSendResult = { // Look up the coin by its nonce let coin = ledger.coins[nonce]; // Validate the coin exists and has sufficient value assert(coin.value &gt;= amount); // Update total burned counter ledger.totalBurned = ledger.totalBurned + amount; // Send to burn address kernel.sendShielded(coin, amount, right(kernel.self())) }; // Deposit a shielded coin into the contract // Useful for escrow, staking, or other contract interactions def depositShielded(coin : ShieldedCoinInfo) : () = { // Store the coin in the contract's ledger ledger.coins[coin.nonce] = QualifiedShieldedCoinInfo{ nonce: coin.nonce, color: coin.color, value: coin.value, mtIndex: 0u64 } }; // Deposit and burn in one operation // Useful for fee burning or token destruction mechanisms def depositAndBurn(coin : ShieldedCoinInfo, amount : Uint&lt;128&gt;) : ShieldedSendResult = { // Validate amount assert(coin.value &gt;= amount); // Store the coin ledger.coins[coin.nonce] = QualifiedShieldedCoinInfo{ nonce: coin.nonce, color: coin.color, value: coin.value, mtIndex: 0u64 }; // Update total burned counter ledger.totalBurned = ledger.totalBurned + amount; // Send to burn address kernel.sendShielded(coin, amount, right(kernel.self())) }; </code></pre> </div> <h2> Understanding the Key Concepts </h2> <h3> 1. Token Colors </h3> <p>Every shielded token on Midnight has a <strong>color</strong> — a unique <code>Bytes&lt;32&gt;</code> identifier that distinguishes one token type from another. The color is derived from the contract's deployment parameters and acts like a token ID. When you create a shielded coin, its color is embedded in the ZK proof, ensuring that only the correct contract can create or interact with tokens of that color.</p> <h3> 2. Shielded vs. Unshielded State </h3> <p>Midnight uses a hybrid ledger model:</p> <ul> <li> <strong>Shielded state</strong> (private): Individual coin values, owners, and transaction amounts are hidden inside ZK proofs. Only the owner with the correct witness data can spend these coins.</li> <li> <strong>Unshielded state</strong> (public): Aggregate counters like <code>totalSupply</code> and <code>totalBurned</code> are public. Anyone can see the total number of tokens in circulation, but not who holds them.</li> </ul> <p>This gives you the best of both worlds: <strong>public verifiability</strong> of token economics combined with <strong>complete transaction privacy</strong>.</p> <h3> 3. The Nonce System </h3> <p>Each shielded coin has a unique <strong>nonce</strong> that prevents double-spending. When you mint tokens, the nonce is evolved using <code>kernel.nextNonce()</code>, which combines an index with the current nonce value through a one-way hash function. This ensures:</p> <ul> <li> <strong>Uniqueness</strong>: Every minted coin gets a distinct nonce</li> <li> <strong>Non-replayability</strong>: You can't reuse a nonce to mint tokens twice</li> <li> <strong>Traceability</strong> (for the owner): The nonce chain allows the minter to track their coins</li> </ul> <h3> 4. Kernel Operations </h3> <p>The Midnight kernel provides built-in operations for shielded transactions:</p> <ul> <li> <strong><code>kernel.mintShieldedToken</code></strong>: Creates a new shielded coin with a specified color and value</li> <li> <strong><code>kernel.sendShielded</code></strong>: Transfers value from an existing coin to a new recipient, creating change coins for any remainder</li> <li> <strong><code>kernel.nextNonce</code></strong>: Evolves a nonce for the next operation</li> <li> <strong><code>kernel.self()</code></strong>: Returns the contract's own address (used as the burn address)</li> </ul> <p>These operations are <strong>proof-aware</strong> — each one generates a ZK proof that the transaction is valid without revealing its contents.</p> <h2> How Shielded Transfers Work </h2> <p>The magic of shielded transfers lies in the <strong>UTXO-like coin model</strong>. Instead of maintaining account balances, Midnight tracks individual coins, each with:</p> <ul> <li>A <strong>nonce</strong> (unique identifier)</li> <li>A <strong>color</strong> (token type)</li> <li>A <strong>value</strong> (amount)</li> <li>A <strong>Merkle tree index</strong> (position in the coin tree)</li> </ul> <p>When you transfer tokens:</p> <ol> <li> <strong>Spend the source coin</strong>: The entire value of the coin is consumed</li> <li> <strong>Create output coins</strong>: New coins are created for the recipient and any change</li> <li> <strong>Generate a ZK proof</strong>: Proves the transfer is valid without revealing amounts or parties</li> <li> <strong>Update the Merkle tree</strong>: The new coins are added to the public coin tree</li> </ol> <p>This is fundamentally different from Ethereum's account-based model. In Midnight, you never "update a balance" — you <strong>consume coins and create new ones</strong>.</p> <h3> The <code>ShieldedSendResult</code> Type </h3> <p>Every shielded send operation returns a <code>ShieldedSendResult</code>, which contains:</p> <ul> <li> <strong>Change coins</strong>: Any leftover value from the source coin is returned as new shielded coins</li> <li> <strong>Proof data</strong>: The ZK proof for the transaction</li> <li> <strong>Transaction metadata</strong>: Information needed to construct the final transaction</li> </ul> <p>Here's how a typical transfer flow looks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Alice has coin A (value: 1000) Alice wants to send 300 to Bob 1. Alice spends coin A (entire 1000 consumed) 2. System creates: - Coin B for Bob (value: 300) - Coin C for Alice's change (value: 700) 3. ZK proof validates: 300 + 700 = 1000 ✓ 4. Coins B and C are added to the Merkle tree </code></pre> </div> <h2> Burning Tokens </h2> <p>Burning tokens on Midnight is elegantly simple: you send them to the <strong>burn address</strong>, which is the contract's own address (<code>right(kernel.self())</code>). Tokens sent to this address can never be spent again because:</p> <ol> <li>The contract has no witness data to unlock coins sent to itself</li> <li>The coins are effectively trapped in an unspendable state</li> <li>The <code>totalBurned</code> counter publicly tracks the destroyed amount</li> </ol> <p>This creates a <strong>verifiable deflation mechanism</strong> — anyone can see the total burned, but nobody can see which specific coins were burned or by whom.</p> <h3> <code>burnShieldedToken</code> vs <code>burnByNonce</code> </h3> <p>We provide two burning patterns:</p> <ul> <li> <strong><code>burnShieldedToken</code></strong>: Burns from a specific coin you hold (the direct approach)</li> <li> <strong><code>burnByNonce</code></strong>: Burns by looking up a coin in the ledger by its nonce (useful for contract-managed burns)</li> </ul> <p>Both update the <code>totalBurned</code> counter and send tokens to the burn address.</p> <h2> The Test Suite </h2> <p>A shielded token without tests is a liability. Our test suite validates:</p> <h3> 1. Contract Structure </h3> <p>We verify the compiled contract has the correct circuits, ledger fields, and witnesses:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nf">describe</span><span class="p">(</span><span class="dl">'</span><span class="s1">Contract Structure</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should have correct compiler and language versions</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">contractInfo</span><span class="p">[</span><span class="dl">'</span><span class="s1">compiler-version</span><span class="dl">'</span><span class="p">]).</span><span class="nf">toBe</span><span class="p">(</span><span class="dl">'</span><span class="s1">0.31.0</span><span class="dl">'</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">contractInfo</span><span class="p">[</span><span class="dl">'</span><span class="s1">language-version</span><span class="dl">'</span><span class="p">]).</span><span class="nf">toBe</span><span class="p">(</span><span class="dl">'</span><span class="s1">0.23.0</span><span class="dl">'</span><span class="p">);</span> <span class="p">});</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should export all expected circuits</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">expectedCircuits</span> <span class="o">=</span> <span class="p">[</span> <span class="dl">'</span><span class="s1">createShieldedToken</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">mintAndSend</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">transferShielded</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">burnShieldedToken</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">burnByNonce</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">depositShielded</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">depositAndBurn</span><span class="dl">'</span><span class="p">,</span> <span class="p">];</span> <span class="c1">// ... validation logic</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <h3> 2. Circuit Signatures </h3> <p>Each circuit is validated for correct input/output types:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">transferShielded should accept (coin, recipient, amount)</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">circuit</span> <span class="o">=</span> <span class="nf">getCircuit</span><span class="p">(</span><span class="dl">'</span><span class="s1">transferShielded</span><span class="dl">'</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">circuit</span><span class="p">).</span><span class="nf">toBeDefined</span><span class="p">();</span> <span class="nf">expect</span><span class="p">(</span><span class="nf">getArgNames</span><span class="p">(</span><span class="nx">circuit</span><span class="p">)).</span><span class="nf">toEqual</span><span class="p">([</span><span class="dl">'</span><span class="s1">coin</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">recipient</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">amount</span><span class="dl">'</span><span class="p">]);</span> <span class="nf">expect</span><span class="p">(</span><span class="nf">getResultType</span><span class="p">(</span><span class="nx">circuit</span><span class="p">)).</span><span class="nf">toBe</span><span class="p">(</span><span class="dl">'</span><span class="s1">ShieldedSendResult</span><span class="dl">'</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">circuit</span><span class="p">.</span><span class="nx">proof</span><span class="p">).</span><span class="nf">toBe</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <h3> 3. ZKIR Circuit Files </h3> <p>The compiler generates <code>.zkir</code> files — the intermediate representation of ZK circuits. Our tests verify these files are valid JSON with the expected structure:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">it</span><span class="p">.</span><span class="nf">each</span><span class="p">(</span><span class="nx">expectedZkirFiles</span><span class="p">)(</span><span class="dl">'</span><span class="s1">should generate %s as valid JSON</span><span class="dl">'</span><span class="p">,</span> <span class="p">(</span><span class="nx">filename</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">filePath</span> <span class="o">=</span> <span class="nf">join</span><span class="p">(</span><span class="nx">zkirDir</span><span class="p">,</span> <span class="nx">filename</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nf">existsSync</span><span class="p">(</span><span class="nx">filePath</span><span class="p">)).</span><span class="nf">toBe</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">content</span> <span class="o">=</span> <span class="nf">readFileSync</span><span class="p">(</span><span class="nx">filePath</span><span class="p">,</span> <span class="dl">'</span><span class="s1">utf-8</span><span class="dl">'</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">content</span><span class="p">.</span><span class="nx">length</span><span class="p">).</span><span class="nf">toBeGreaterThan</span><span class="p">(</span><span class="mi">0</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">zkir</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">content</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">zkir</span><span class="p">.</span><span class="nx">version</span><span class="p">).</span><span class="nf">toBeDefined</span><span class="p">();</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">zkir</span><span class="p">.</span><span class="nx">instructions</span><span class="p">).</span><span class="nf">toBeDefined</span><span class="p">();</span> <span class="p">});</span> </code></pre> </div> <h3> 4. Security Properties </h3> <p>We verify critical security invariants:</p> <ul> <li> <strong>Witness requirements</strong>: Sensitive operations require the <code>localNonce</code> witness</li> <li> <strong>Pure circuits</strong>: Only <code>nextNonce</code> is pure (no proof needed); all state-mutating operations require proofs</li> <li> <strong>Privacy guarantees</strong>: No <code>publicBalance</code> or similar functions that would leak private data</li> </ul> <h3> 5. Integration Examples (Illustrative) </h3> <p>The test suite includes skipped examples showing how the contract would be used with the Midnight JavaScript SDK:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">it</span><span class="p">.</span><span class="nf">skip</span><span class="p">(</span><span class="dl">'</span><span class="s1">EXAMPLE: transferShielded should spend a coin and create change</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// const coin = /* qualified coin from previous tx */;</span> <span class="c1">// const recipient = /* different wallet */;</span> <span class="c1">// const amount = 100n;</span> <span class="c1">// const result = await contractRuntime.transferShielded(</span> <span class="c1">// { coin, recipient, amount }</span> <span class="c1">// );</span> <span class="c1">// expect(result.returnValue.change).toBeDefined();</span> <span class="p">});</span> </code></pre> </div> <p>These examples serve as <strong>living documentation</strong> for developers integrating the contract into their dApps.</p> <h2> Compiling the Contract </h2> <p>Once your contract is written, compile it with <code>compactc</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>compactc <span class="nt">--skip-zk</span> contracts/Token.compact managed/ </code></pre> </div> <p>The <code>--skip-zk</code> flag skips ZK proof generation (which requires a running proof server). This validates the contract syntax and generates:</p> <ul> <li> <strong><code>managed/compiler/contract-info.json</code></strong>: Circuit signatures and ledger schema</li> <li> <strong><code>managed/contract/index.js</code></strong>: JavaScript/TypeScript runtime bindings</li> <li> <strong><code>managed/contract/index.d.ts</code></strong>: TypeScript type definitions</li> <li> <strong><code>managed/zkir/*.zkir</code></strong>: ZK circuit intermediate representations</li> </ul> <h2> Running the Tests </h2> <p>Install dependencies and run the test suite:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>npx jest <span class="nt">--verbose</span> </code></pre> </div> <p>Expected output:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight console"><code><span class="go">PASS tests/shielded-token.test.ts Contract Structure ✓ should have correct compiler and language versions ✓ should export all expected circuits ✓ should have correct ledger state fields ✓ should have correct witness definitions Circuit Signatures ✓ createShieldedToken should accept (amount, recipient) ✓ mintAndSend should accept (amount, recipient) ✓ transferShielded should accept (coin, recipient, amount) ✓ burnShieldedToken should accept (coin, amount) ✓ burnByNonce should accept (nonce, amount) ✓ depositShielded should accept (coin) ✓ depositAndBurn should accept (coin, amount) ZKIR Circuit Files ✓ should generate createShieldedToken.zkir ✓ should generate mintAndSend.zkir ✓ should generate transferShielded.zkir ... (all circuits pass) Security Properties ✓ should require witnesses for sensitive operations ✓ should have pure circuits only for nonce derivation ✓ should have proof circuits for all state-mutating operations Tests: 28 passed, 5 skipped </span></code></pre> </div> <h2> Trust Model and Privacy Guarantees </h2> <p>Building shielded tokens on Midnight requires understanding the trust model:</p> <h3> What's Private? </h3> <ul> <li> <strong>Individual balances</strong>: Nobody can see how many tokens any address holds</li> <li> <strong>Transaction amounts</strong>: Each transfer's value is hidden inside a ZK proof</li> <li> <strong>Sender/Receiver identities</strong>: The parties to a transaction are not revealed</li> <li> <strong>Coin ownership</strong>: The link between coins and their owners is cryptographically protected</li> </ul> <h3> What's Public? </h3> <ul> <li> <strong>Total supply</strong>: The aggregate number of tokens in circulation</li> <li> <strong>Total burned</strong>: The aggregate number of tokens destroyed</li> <li> <strong>Coin existence</strong>: The Merkle tree proves coins exist without revealing their contents</li> <li> <strong>Contract code</strong>: The Compact contract is public and auditable</li> </ul> <h3> Trust Assumptions </h3> <ol> <li> <strong>Proof server</strong>: The Midnight proof server generates ZK proofs. You must trust it not to leak witness data. Running your own proof server eliminates this concern.</li> <li> <strong>Cryptographic security</strong>: The privacy guarantees rely on the security of the underlying ZK proof system (Groth16/Plonk).</li> <li> <strong>Contract correctness</strong>: The Compact contract must correctly implement the token logic. Bugs could allow unauthorized minting or burning.</li> </ol> <h2> Next Steps </h2> <p>Now that you have a working shielded token, consider extending it:</p> <ol> <li> <strong>Add a minting cap</strong>: Limit the maximum total supply</li> <li> <strong>Implement access control</strong>: Restrict minting to authorized addresses</li> <li> <strong>Add a fee mechanism</strong>: Burn a percentage of each transfer</li> <li> <strong>Build a UI</strong>: Create a React dApp that interacts with the contract</li> <li> <strong>Deploy to preprod</strong>: Test on the Midnight preprod network with real transactions</li> </ol> <p>The complete source code for this tutorial is available on <a href="https://github.com/BossChaos/contributor-hub/tree/bounty/327-shielded-token-tutorial" rel="noopener noreferrer">GitHub</a>.</p> <h2> Resources </h2> <ul> <li><a href="https://docs.midnight.network/" rel="noopener noreferrer">Midnight Documentation</a></li> <li><a href="https://docs.midnight.network/compact/language-reference" rel="noopener noreferrer">Compact Language Reference</a></li> <li><a href="https://docs.midnight.network/compact/standard-library/exports" rel="noopener noreferrer">Standard Library Reference</a></li> <li><a href="https://developer.midnight.network/" rel="noopener noreferrer">Midnight Developer Portal</a></li> <li><a href="https://forum.midnight.network/" rel="noopener noreferrer">Midnight Forum</a></li> </ul> <p><em>Built with Compact on Midnight Network. #MidnightforDevs #ZeroKnowledge #PrivacyFirst</em></p> blockchain privacy programming tutorial Security Checklist for Midnight dApps Before Deployment BossChaos Mon, 18 May 2026 14:10:08 +0000 https://dev.to/bosschaos/security-checklist-for-midnight-dapps-before-deployment-4jfn https://dev.to/bosschaos/security-checklist-for-midnight-dapps-before-deployment-4jfn <h1> Security Checklist for Midnight dApps Before Deployment </h1> <p>Deploying a dApp on Midnight is different from Ethereum or Solana. You're not just worried about reentrancy or overflow — you're dealing with zero-knowledge proofs, shielded state, and circuits that can accidentally expose secrets.</p> <p>I've audited enough Midnight contracts to know where developers trip. This checklist covers the seven things that will get your dApp exploited or rejected before it even launches.</p> <h2> 1. Audit Every <code>disclose()</code> Call </h2> <p><code>disclose()</code> is the most dangerous function in your contract. It takes a shielded value and exposes it in plaintext on-chain. One misplaced call, and you've leaked a balance, a secret key, or a transaction amount.</p> <h3> The Rule </h3> <p>Every <code>disclose()</code> must answer: <strong>who needs to see this, and why can't they use a ZK proof instead?</strong></p> <h3> Bad: Leaking a Balance </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// WRONG — exposes the sender's full balance circuit transfer( coin: Coin, amount: U64, recipient: ContractAddress ) { let balance = coin.value disclose(balance) // Everyone sees how much you had coin.spend() ledger.mint(recipient, amount) } </code></pre> </div> <h3> Good: Using ZK Range Proofs </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// RIGHT — prove sufficient balance without revealing it circuit transfer( coin: Coin, amount: U64, recipient: ContractAddress ) { // Prove coin.value &gt;= amount without disclosing the value assert(coin.value &gt;= amount) let change = coin.value - amount coin.spend() ledger.mint(recipient, amount) ledger.mint(coin.owner, change) } </code></pre> </div> <h3> Checklist Item 1-1 </h3> <ul> <li>[ ] Every <code>disclose()</code> has a documented reason</li> <li>[ ] No balances, secret keys, or transaction amounts are disclosed</li> <li>[ ] Public metadata (like token names) are the only disclosed values</li> <li>[ ] Alternative ZK proofs considered for each disclosure</li> </ul> <h2> 2. Review <code>ownPublicKey()</code> Usage </h2> <p><code>ownPublicKey()</code> returns the public key of the contract. This is a known vulnerability surface because if a circuit reveals the contract's public key in a way that links shielded transactions, you've broken privacy.</p> <h3> The Vulnerability Pattern </h3> <p>When <code>ownPublicKey()</code> is used inside a circuit that also processes user coins, the public key can be correlated across transactions. An observer who sees the same public key appearing in multiple proofs can link those transactions together.</p> <h3> Bad: Public Key in Circuit Logic </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// WRONG — public key becomes part of the proof, enabling correlation circuit deposit(coin: Coin) { let pk = kernel.self().ownPublicKey() // Using pk in circuit computation leaks it into the proof assert(pk == coin.owner) coin.spend() ledger.mint(kernel.self(), coin.value) } </code></pre> </div> <h3> Good: Isolate Public Key Usage </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// RIGHT — public key only used for ledger operations, not circuit logic circuit deposit(coin: Coin) { // Verify coin ownership through signature, not public key comparison coin.spend() ledger.mint(kernel.self()&lt;LedgerType, ContractAddress&gt;(), coin.value) } </code></pre> </div> <h3> Checklist Item 2-1 </h3> <ul> <li>[ ] <code>ownPublicKey()</code> is not used inside ZK circuit computation</li> <li>[ ] Contract public key only appears in ledger state management</li> <li>[ ] No circuit outputs or disclosures include the contract's public key</li> <li>[ ] Cross-transaction linking via public key is impossible</li> </ul> <h2> 3. Verify Replay Protection </h2> <p>Replay attacks on Midnight are subtle. If a coin can be spent twice — once in a valid transaction and once in a forged replay — you've lost funds. Midnight provides two mechanisms: <strong>nonces</strong> and <strong>nullifiers</strong>.</p> <h3> Nullifier-Based Protection </h3> <p>When a coin is spent, its nullifier is published on-chain. Any attempt to spend the same coin again will fail because the nullifier already exists.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>circuit transfer( coin: Coin, amount: U64, recipient: PublicKey, changeAddress: ContractAddress ) { // The coin's nullifier is automatically checked against the ledger // If this coin was already spent, the transaction fails coin.spend() let change = coin.value - amount assert(change &gt;= 0u64) ledger.mint(recipient, amount) ledger.mint(changeAddress, change) } </code></pre> </div> <h3> Nonce-Based Protection </h3> <p>For contracts that need custom replay protection (like vote counting or one-time claims), use a nonce:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>ledger contractVotes { voted: Set&lt;Nullifier&gt; } circuit vote(proposalId: U64, voterCoin: Coin) { let nullifier = voterCoin.nullifier() // Check this voter hasn't already voted assert(!ledger.voted.member(nullifier)) // Record the vote ledger.voted.insert(nullifier) voterCoin.spend() } </code></pre> </div> <h3> Checklist Item 3-1 </h3> <ul> <li>[ ] Every coin spend uses <code>coin.spend()</code> which generates a nullifier</li> <li>[ ] No coins can be spent without nullifier verification</li> <li>[ ] Custom replay protection (nonces) used for application-specific logic</li> <li>[ ] Nullifier sets are properly maintained in the ledger</li> </ul> <h2> 4. Review Exported Ledger Fields </h2> <p>Every field in your <code>ledger</code> is public on-chain. Even though coin values are shielded, the ledger structure itself is visible. If you put sensitive data in a ledger field, everyone can see it.</p> <h3> Bad: Sensitive Data in Ledger </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// WRONG — stores private vote counts in public ledger ledger election { candidateA_votes: U64 // Everyone can see the count candidateB_votes: U64 // Everyone can see the count voterIds: List&lt;U256&gt; // Everyone can see who voted } </code></pre> </div> <h3> Good: Shielded Vote Counting </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// RIGHT — only stores nullifiers, counts are computed off-chain ledger election { voted: Set&lt;Nullifier&gt; // Only nullifiers, no identities } // Vote counts are computed off-chain from ZK proofs </code></pre> </div> <h3> Checklist Item 4-1 </h3> <ul> <li>[ ] No secret keys, private data, or sensitive amounts in ledger fields</li> <li>[ ] Ledger fields only contain what must be publicly verified</li> <li>[ ] Set/Map fields use nullifiers or hashes, not plaintext identities</li> <li>[ ] Total supply fields are intentionally public (acceptable)</li> </ul> <h2> 5. Verify Witness Implementation Correctness </h2> <p>Witnesses are the inputs to your ZK circuits. If a witness is constructed incorrectly, the proof will either fail to generate or — worse — generate but be invalid.</p> <h3> The Witness Pattern </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>circuit transferWitness { // Inputs that must be provided to generate the proof input coin: Coin input amount: U64 input recipient: PublicKey // The circuit verifies these inputs satisfy the contract logic assert(coin.value &gt;= amount) assert(coin.isValid()) } </code></pre> </div> <h3> Common Witness Mistakes </h3> <p><strong>Missing input validation:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// WRONG — no validation on amount, could be zero or overflow circuit badTransfer(coin: Coin, amount: U64) { coin.spend() ledger.mint(recipient, amount) // amount could be 0 } // RIGHT — validate all inputs circuit goodTransfer(coin: Coin, amount: U64) { assert(amount &gt; 0u64) assert(coin.value &gt;= amount) coin.spend() ledger.mint(recipient, amount) } </code></pre> </div> <p><strong>Incorrect type annotations:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// WRONG — missing generic on kernel.self() circuit brokenDeposit(coin: Coin) { let self = kernel.self() // Type inference fails coin.spend() ledger.mint(self, coin.value) } // RIGHT — explicit generic annotation circuit fixedDeposit(coin: Coin) { let self = kernel.self()&lt;LedgerType, ContractAddress&gt;() coin.spend() ledger.mint(self, coin.value) } </code></pre> </div> <h3> Checklist Item 5-1 </h3> <ul> <li>[ ] All circuit inputs are validated with <code>assert()</code> statements</li> <li>[ ] No unchecked arithmetic operations (use saturating or checked math)</li> <li>[ ] <code>kernel.self()</code> has explicit generic type annotations</li> <li>[ ] Witnesses include all necessary fields for proof generation</li> </ul> <h2> 6. Confirm Version Compatibility </h2> <p>Midnight's toolchain evolves quickly. A contract that compiled last month might fail today because of a breaking change in <code>compactc</code> or the runtime library.</p> <h3> Pin Your Versions </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// Always specify the pragma version pragma language_version 0.23.0; </code></pre> </div> <h3> Compatibility Checklist </h3> <ul> <li>[ ] <code>compactc</code> version matches the target network's supported version</li> <li>[ ] <code>@midnight-ntwrk/compact-runtime</code> version is compatible with your contracts</li> <li>[ ] <code>@midnight-ntwrk/midnightjs</code> SDK version aligns with your node version</li> <li>[ ] No deprecated APIs used (check the Midnight changelog)</li> </ul> <h3> Test on the Target Network </h3> <p>Before deploying to mainnet, run your contracts on Preview or Preprod:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Compile with the correct compiler</span> compactc <span class="nt">--skip-zk</span> contracts/MyContract.compact managed/ <span class="c"># Verify the output</span> <span class="nb">cat </span>managed/compiler/contract-info.json | python3 <span class="nt">-c</span> <span class="s2">" import json, sys info = json.load(sys.stdin) print(f'Circuits: {len(info.get(</span><span class="se">\"</span><span class="s2">circuits</span><span class="se">\"</span><span class="s2">, []))}') print(f'Ledger: {info.get(</span><span class="se">\"</span><span class="s2">ledger</span><span class="se">\"</span><span class="s2">, {})}')"</span> </code></pre> </div> <h2> 7. Test Proof Generation on Testnet </h2> <p>Your contract might compile, but can it actually generate proofs? This is the final gate before deployment.</p> <h3> Proof Generation Test Script </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c"># test_proofs.sh — Verify all circuits generate valid proofs</span> <span class="nb">set</span> <span class="nt">-euo</span> pipefail <span class="nv">CONTRACT</span><span class="o">=</span><span class="s2">"contracts/MyContract.compact"</span> <span class="nv">OUTPUT</span><span class="o">=</span><span class="s2">"managed/"</span> <span class="nb">echo</span> <span class="s2">"=== Compiling contract ==="</span> compactc <span class="s2">"</span><span class="nv">$CONTRACT</span><span class="s2">"</span> <span class="s2">"</span><span class="nv">$OUTPUT</span><span class="s2">"</span> <span class="k">if</span> <span class="o">[</span> <span class="nv">$?</span> <span class="nt">-ne</span> 0 <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">"FAIL: Compilation failed"</span> <span class="nb">exit </span>1 <span class="k">fi </span><span class="nb">echo</span> <span class="s2">"=== Checking circuit outputs ==="</span> <span class="nv">CIRCUITS</span><span class="o">=</span><span class="si">$(</span><span class="nb">cat</span> <span class="s2">"</span><span class="nv">$OUTPUT</span><span class="s2">/compiler/contract-info.json"</span> | <span class="se">\</span> python3 <span class="nt">-c</span> <span class="s2">"import json,sys; [print(c) for c in json.load(sys.stdin).get('circuits', {}).keys()]"</span><span class="si">)</span> <span class="k">for </span>circuit <span class="k">in</span> <span class="nv">$CIRCUITS</span><span class="p">;</span> <span class="k">do </span><span class="nb">echo</span> <span class="s2">" Checking </span><span class="nv">$circuit</span><span class="s2">..."</span> <span class="k">if</span> <span class="o">[</span> <span class="o">!</span> <span class="nt">-f</span> <span class="s2">"</span><span class="nv">$OUTPUT</span><span class="s2">/zkir/</span><span class="nv">$circuit</span><span class="s2">.zkir"</span> <span class="o">]</span><span class="p">;</span> <span class="k">then </span><span class="nb">echo</span> <span class="s2">" FAIL: No ZKIR file for </span><span class="nv">$circuit</span><span class="s2">"</span> <span class="nb">exit </span>1 <span class="k">fi done </span><span class="nb">echo</span> <span class="s2">"=== All circuits have ZK proofs ==="</span> <span class="nb">echo</span> <span class="s2">"✅ Ready for testnet deployment"</span> </code></pre> </div> <h3> Checklist Item 7-1 </h3> <ul> <li>[ ] All circuits compile without warnings</li> <li>[ ] ZKIR proof files generated for every non-pure circuit</li> <li>[ ] Proof generation succeeds on local testnet</li> <li>[ ] Transaction submission to testnet node succeeds</li> <li>[ ] Edge cases tested (zero amounts, max values, replay attempts)</li> </ul> <h2> The Complete Pre-Deployment Checklist </h2> <p>Print this. Check every box. Then deploy.</p> <h3> Security Audit </h3> <ul> <li>[ ] <strong><code>disclose()</code> audit</strong>: No secret leaks in any circuit</li> <li>[ ] <strong><code>ownPublicKey()</code> review</strong>: No public key correlation attacks</li> <li>[ ] <strong>Replay protection</strong>: Nullifiers or nonces prevent double-spends</li> <li>[ ] <strong>Ledged fields</strong>: No sensitive data exposed publicly</li> <li>[ ] <strong>Witness validation</strong>: All inputs checked, types correct</li> </ul> <h3> Engineering </h3> <ul> <li>[ ] <strong>Version compatibility</strong>: Compiler, runtime, SDK aligned</li> <li>[ ] <strong>Proof generation</strong>: All circuits generate valid proofs</li> <li>[ ] <strong>Test coverage</strong>: Unit tests for all circuits and edge cases</li> <li>[ ] <strong>Error messages</strong>: Clear, non-leaking error descriptions</li> </ul> <h3> Deployment </h3> <ul> <li>[ ] <strong>Testnet validation</strong>: Contract works on Preview/Preprod</li> <li>[ ] <strong>Node compatibility</strong>: Compatible with target network version</li> <li>[ ] <strong>Monitoring</strong>: Health checks and logging in place</li> <li>[ ] <strong>Rollback plan</strong>: Known procedure if something breaks</li> </ul> <h2> Final Thoughts </h2> <p>Midnight's privacy model is powerful but unforgiving. A single <code>disclose()</code> in the wrong place can expose everything you're trying to protect. A missing nullifier check can let attackers drain your contract.</p> <p>The good news: most vulnerabilities are preventable with a systematic review. Use this checklist before every deployment. Share it with your team. And when in doubt, assume the worst — if a value <em>could</em> be leaked, it will be.</p> <p><em>This guide covers the Midnight network as of 2025. Check the <a href="https://docs.midnight.network" rel="noopener noreferrer">official docs</a> for the latest API changes. Found a security pattern not covered here? Drop it in the comments.</em></p> blockchain privacy security web3 Building Privacy-First Apps with Midnight Easy SDK BossChaos Sun, 03 May 2026 11:48:38 +0000 https://dev.to/bosschaos/building-privacy-first-apps-with-midnight-easy-sdk-2aca https://dev.to/bosschaos/building-privacy-first-apps-with-midnight-easy-sdk-2aca <h1> 🌙 Midnight Easy SDK: Privacy-First Development Made Simple </h1> <blockquote> <p><strong>This is a submission for the <a href="https://dev.to/challenges/midnight-2025-08-20">Midnight Network "Privacy First" Challenge</a></strong></p> <ul> <li> <strong>Track:</strong> Enhance the Ecosystem + Best Tutorial</li> <li> <strong>License:</strong> Apache 2.0</li> <li> <strong>GitHub:</strong> <a href="https://github.com/BossChaos/midnight-easy-sdk" rel="noopener noreferrer">github.com/BossChaos/midnight-easy-sdk</a> </li> </ul> </blockquote> <h2> 📌 Project Overview </h2> <p>I built <strong><a class="mentioned-user" href="https://dev.to/midnight">@midnight</a>/easy-sdk</strong> to lower the barrier for developers who want to add privacy features to their apps but don't want to become zero-knowledge cryptography experts.</p> <p>The SDK wraps Midnight's cryptographic primitives in a clean TypeScript API. You get <strong>seal</strong>, <strong>verify</strong>, and <strong>decrypt</strong> operations, plus <strong>React hooks</strong> that handle loading states and error recovery out of the box.</p> <h2> 🛠️ Tech Stack </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Layer</th> <th>Technology</th> </tr> </thead> <tbody> <tr> <td><strong>Language</strong></td> <td>TypeScript</td> </tr> <tr> <td><strong>UI Framework</strong></td> <td>React + Hooks</td> </tr> <tr> <td><strong>Cryptography</strong></td> <td>Midnight ZK circuits (Noir)</td> </tr> <tr> <td><strong>Testing</strong></td> <td>Vitest</td> </tr> <tr> <td><strong>License</strong></td> <td>Apache 2.0</td> </tr> </tbody> </table></div> <h2> 💡 Core Value </h2> <ul> <li> <strong>No ZK expertise required</strong> — Seal data, verify proofs, and decrypt results with three function calls</li> <li> <strong>React-first design</strong> — <code>useSeal</code>, <code>useVerify</code>, <code>useDecrypt</code> hooks handle all the async complexity</li> <li> <strong>Selective disclosure</strong> — Reveal only the metadata you choose, keeping the rest private</li> <li> <strong>Drop-in installation</strong> — <code>npm install @midnight/easy-sdk</code> and you're ready to go</li> </ul> <h2> 🚀 Quick Start </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install</span> @midnight/easy-sdk </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">MidnightEasy</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight/easy-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">midnight</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">MidnightEasy</span><span class="p">({</span> <span class="na">network</span><span class="p">:</span> <span class="dl">'</span><span class="s1">testnet</span><span class="dl">'</span> <span class="p">});</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">init</span><span class="p">();</span> </code></pre> </div> <h2> Core API </h2> <h3> 1. Seal Data </h3> <p><code>seal()</code> creates a confidential commitment from your data. Under the hood, it generates a zero-knowledge note that hides the input while allowing later selective disclosure.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">sealed</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">seal</span><span class="p">({</span> <span class="na">value</span><span class="p">:</span> <span class="mi">1</span><span class="nx">_000_000n</span><span class="p">,</span> <span class="na">asset</span><span class="p">:</span> <span class="dl">'</span><span class="s1">USDC</span><span class="dl">'</span><span class="p">,</span> <span class="na">owner</span><span class="p">:</span> <span class="dl">'</span><span class="s1">did:mad:test...</span><span class="dl">'</span><span class="p">,</span> <span class="na">metadata</span><span class="p">:</span> <span class="p">{</span> <span class="na">purpose</span><span class="p">:</span> <span class="dl">'</span><span class="s1">escrow</span><span class="dl">'</span> <span class="p">}</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">sealed</span><span class="p">.</span><span class="nx">commitment</span><span class="p">);</span> <span class="c1">// '0xabc123...'</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">sealed</span><span class="p">.</span><span class="nx">nullifier</span><span class="p">);</span> <span class="c1">// '0xdef456...'</span> </code></pre> </div> <p>The <code>commitment</code> is posted to the Midnight ledger. Observers see a hash — not the underlying value.</p> <h3> 2. Verify a Proof </h3> <p><code>verify()</code> checks a zero-knowledge proof against a commitment without revealing the sealed data.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">verify</span><span class="p">({</span> <span class="na">commitment</span><span class="p">:</span> <span class="nx">sealed</span><span class="p">.</span><span class="nx">commitment</span><span class="p">,</span> <span class="na">conditions</span><span class="p">:</span> <span class="p">{</span> <span class="na">minValue</span><span class="p">:</span> <span class="mi">500</span><span class="nx">_000n</span><span class="p">,</span> <span class="na">allowedAssets</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">USDC</span><span class="dl">'</span><span class="p">]</span> <span class="p">},</span> <span class="na">proof</span><span class="p">:</span> <span class="nx">userProvidedProof</span><span class="p">,</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">valid</span><span class="p">);</span> <span class="c1">// true</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">metadata</span><span class="p">);</span> <span class="c1">// { purpose: 'escrow' }</span> </code></pre> </div> <h3> 3. Decrypt Results </h3> <p><code>decrypt()</code> reveals the plaintext to authorized recipients only, using Midnight's threshold decryption.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">plaintext</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">decrypt</span><span class="p">({</span> <span class="na">ciphertext</span><span class="p">:</span> <span class="nx">transfer</span><span class="p">.</span><span class="nx">encryptedResult</span><span class="p">,</span> <span class="na">recipientKey</span><span class="p">:</span> <span class="nx">recipient</span><span class="p">.</span><span class="nx">publicKey</span><span class="p">,</span> <span class="na">threshold</span><span class="p">:</span> <span class="mi">2</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <h2> React Hooks </h2> <p>For UI-driven privacy flows, the SDK provides React hooks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">MidnightProvider</span><span class="p">,</span> <span class="nx">useSeal</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@midnight/easy-sdk/react</span><span class="dl">'</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">App</span><span class="p">()</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="p">&lt;</span><span class="nc">MidnightProvider</span> <span class="na">network</span><span class="p">=</span><span class="s">"testnet"</span> <span class="na">autoConnect</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nc">EscrowPanel</span> <span class="p">/&gt;</span> <span class="p">&lt;/</span><span class="nc">MidnightProvider</span><span class="p">&gt;</span> <span class="p">);</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">EscrowPanel</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">seal</span><span class="p">,</span> <span class="nx">isLoading</span><span class="p">,</span> <span class="nx">error</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">useSeal</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">handleSeal</span> <span class="o">=</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">seal</span><span class="p">({</span> <span class="na">value</span><span class="p">:</span> <span class="mi">500</span><span class="nx">_000n</span><span class="p">,</span> <span class="na">asset</span><span class="p">:</span> <span class="dl">'</span><span class="s1">USDC</span><span class="dl">'</span><span class="p">,</span> <span class="na">owner</span><span class="p">:</span> <span class="nx">myDID</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">Committed:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">result</span><span class="p">.</span><span class="nx">commitment</span><span class="p">);</span> <span class="p">};</span> <span class="k">return</span> <span class="p">&lt;</span><span class="nt">button</span> <span class="na">onClick</span><span class="p">=</span><span class="si">{</span><span class="nx">handleSeal</span><span class="si">}</span><span class="p">&gt;</span>Seal<span class="p">&lt;/</span><span class="nt">button</span><span class="p">&gt;;</span> <span class="p">}</span> </code></pre> </div> <h2> Real-World Example: Private Escrow </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Alice seals her deposit</span> <span class="kd">const</span> <span class="nx">deposit</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">seal</span><span class="p">({</span> <span class="na">value</span><span class="p">:</span> <span class="mi">500</span><span class="nx">_000n</span><span class="p">,</span> <span class="na">asset</span><span class="p">:</span> <span class="dl">'</span><span class="s1">USDC</span><span class="dl">'</span><span class="p">,</span> <span class="na">owner</span><span class="p">:</span> <span class="nx">aliceDID</span><span class="p">,</span> <span class="na">metadata</span><span class="p">:</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">'</span><span class="s1">depositor</span><span class="dl">'</span> <span class="p">}</span> <span class="p">});</span> <span class="c1">// Bob seals his acceptance</span> <span class="kd">const</span> <span class="nx">acceptance</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">seal</span><span class="p">({</span> <span class="na">value</span><span class="p">:</span> <span class="mi">0</span><span class="nx">n</span><span class="p">,</span> <span class="na">asset</span><span class="p">:</span> <span class="dl">'</span><span class="s1">USDC</span><span class="dl">'</span><span class="p">,</span> <span class="na">owner</span><span class="p">:</span> <span class="nx">bobDID</span><span class="p">,</span> <span class="na">metadata</span><span class="p">:</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">'</span><span class="s1">acceptor</span><span class="dl">'</span> <span class="p">}</span> <span class="p">});</span> <span class="c1">// Contract verifies both</span> <span class="kd">const</span> <span class="nx">valid</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">midnight</span><span class="p">.</span><span class="nf">verify</span><span class="p">({</span> <span class="na">commitment</span><span class="p">:</span> <span class="nx">deposit</span><span class="p">.</span><span class="nx">commitment</span><span class="p">,</span> <span class="na">conditions</span><span class="p">:</span> <span class="p">{</span> <span class="na">allowedAssets</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">USDC</span><span class="dl">'</span><span class="p">]</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <h2> Contributing </h2> <p>Open source under Apache 2.0. Contributions welcome:</p> <ul> <li>📖 Improve documentation</li> <li>🧪 Expand test coverage</li> <li>🛠️ Add new primitives and hooks</li> </ul> <p><strong><a href="https://github.com/BossChaos/midnight-easy-sdk" rel="noopener noreferrer">GitHub Repository</a></strong></p> <p><em>Built for the Midnight Network "Privacy First" Challenge — Enhance the Ecosystem &amp; Best Tutorial tracks.</em></p> react tutorial Building a Governance Token dApp on Midnight BossChaos Sun, 03 May 2026 08:15:36 +0000 https://dev.to/bosschaos/building-a-governance-token-dapp-on-midnight-1llp https://dev.to/bosschaos/building-a-governance-token-dapp-on-midnight-1llp <blockquote> <p><strong>Complete Source Code:</strong> <a href="https://github.com/BossChaos/midnight-governance-token" rel="noopener noreferrer">GitHub Repository</a><br><br> <strong>Network:</strong> Midnight Preprod<br><br> <strong>Stack:</strong> Compact + TypeScript + React + Vite</p> </blockquote> <h2> Introduction </h2> <p>Midnight is famous for privacy-first smart contracts using zero-knowledge proofs. But <strong>not everything needs to be private</strong>. Sometimes you want transparent, publicly verifiable transactions — like community governance tokens, loyalty points, or public reward systems.</p> <p>In this tutorial, we will build a <strong>complete unshielded token dApp</strong> on Midnight with role-based minting, transfer memos, and balance snapshots for governance voting.</p> <h2> Why Unshielded Tokens </h2> <p>Unshielded tokens are perfect for governance because transparency builds trust. Unlike shielded tokens that hide balances and transfers behind ZK proofs, unshielded tokens offer lower gas costs and faster confirmation times.</p> <p>Use cases include governance voting, public reward systems, and loyalty programs where auditability matters more than privacy.</p> <h2> The Smart Contract </h2> <p>Our GovernanceToken contract implements three key features for decentralized governance:</p> <h3> Role-Based Minting </h3> <p>Instead of a single minter, the contract uses a minter role system. The deployer can grant or revoke minting permissions to other addresses, enabling multi-sig governance or DAO-controlled token issuance.</p> <h3> Transfer with Memo </h3> <p>Every transfer supports an optional 64-byte memo field. This creates an on-chain audit trail useful for payment references, vote tracking, and compliance reporting.</p> <h3> Balance Snapshots </h3> <p>For governance voting, you need to know a user balance at a specific point in time. Snapshots lock in balances so users cannot game the system by transferring tokens after a vote is announced.</p> <h2> TypeScript Integration </h2> <p>The TypeScript layer connects the React frontend to the Midnight blockchain through the DApp Connector API. It handles wallet building, contract deployment, and transaction submission.</p> <p>Key components include the WalletBuilder for seed-based wallet creation, the IndexerProvider for balance queries, and the NodeZkConfigProvider for proof generation.</p> <h2> Building the UI </h2> <p>The React frontend provides four main panels:</p> <ol> <li> <strong>WalletConnect</strong> handles wallet discovery and connection state management</li> <li> <strong>BalanceDisplay</strong> shows token balances with real-time refresh from the indexer</li> <li> <strong>MintPanel</strong> provides a form for authorized minters to issue new tokens</li> <li> <strong>TransferPanel</strong> enables token transfers with memo field support</li> </ol> <p>The UI uses TailwindCSS for a dark theme optimized for developer workflows.</p> <h2> Testing and Deployment </h2> <p>Before going live, test all contract functions against the Midnight local Docker stack. The deployment script handles wallet initialization, contract compilation, and transaction submission.</p> <p>Run the integration test suite to verify minting permissions, transfer memo encoding, and snapshot accuracy before deploying to preprod.</p> <p>Full source code available at <a href="https://github.com/BossChaos/midnight-governance-token" rel="noopener noreferrer">https://github.com/BossChaos/midnight-governance-token</a></p> web3 Anonymous Membership Proofs on Midnight: Building Privacy-Preserving Allowlists BossChaos Sat, 02 May 2026 13:05:55 +0000 https://dev.to/bosschaos/anonymous-membership-proofs-on-midnight-building-privacy-preserving-allowlists-mge https://dev.to/bosschaos/anonymous-membership-proofs-on-midnight-building-privacy-preserving-allowlists-mge <h1> Anonymous Membership Proofs on Midnight: Building Privacy-Preserving Allowlists </h1> <p>Last month, I was tasked with building an allowlist system for a Midnight dApp. The requirement seemed simple: let authorized users access a feature without revealing who they are. In the clear-text world, you'd just check <code>if (user in allowedList)</code>. But on a privacy platform, that <code>if</code> statement leaks everything.</p> <p>This tutorial walks through building a complete anonymous membership proof system — from the Compact contract on-chain to the TypeScript tooling that generates Merkle proofs locally. We'll cover sparse Merkle trees, depth-20 path verification, nullifier-based replay prevention, and admin root management.</p> <h2> Why Merkle Trees for Allowlists? </h2> <p>Traditional allowlists publish every member's address on-chain. That's fine for transparency, but terrible for privacy. A Merkle tree solves this differently:</p> <ul> <li> <strong>Off-chain</strong>: The admin maintains a list of member secrets</li> <li> <strong>On-chain</strong>: Only a single 32-byte hash (the Merkle root) is stored</li> <li> <strong>Proof</strong>: A member proves they know a secret that hashes to a leaf in the tree, without revealing which leaf </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> Root (on-chain) / \ H01 H23 / \ / \ H0 H1 H2 H3 / \ / \ / \ / \ L0 L1 L2 L3 ... (2^20 leaves) </code></pre> </div> <p>To prove you're L1, you provide H0, H23, and the path indices. The verifier recomputes the root and checks it matches the on-chain value. Your secret (L1's preimage) stays private.</p> <h2> The Compact Contract </h2> <p>The contract manages three pieces of state:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>export ledger merkle_root: Bytes&lt;32&gt;; export ledger admin_commitment: Bytes&lt;32&gt;; export ledger used_nullifiers: Set&lt;Bytes&lt;32&gt;&gt;; </code></pre> </div> <h3> Witnesses (Secret Inputs) </h3> <p>These are the prover-side inputs that never appear on-chain:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>witness getSecret(): Bytes&lt;32&gt;; witness getContext(): Bytes&lt;32&gt;; witness getSiblings(): Vector&lt;20, Bytes&lt;32&gt;&gt;; witness getPathIndices(): Vector&lt;20, Boolean&gt;; witness getAdminSecret(): Bytes&lt;32&gt;; </code></pre> </div> <h3> Recomputing the Merkle Path </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>circuit hashLevelNode(is_right: Boolean, current: Bytes&lt;32&gt;, sibling: Bytes&lt;32&gt;): Bytes&lt;32&gt; { if (is_right) { return persistentHash&lt;Vector&lt;3, Bytes&lt;32&gt;&gt;&gt;([ pad(32, "zk-allowlist:node:v1"), sibling, current ]); } else { return persistentHash&lt;Vector&lt;3, Bytes&lt;32&gt;&gt;&gt;([ pad(32, "zk-allowlist:node:v1"), current, sibling ]); } } </code></pre> </div> <h3> Checking Membership </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>circuit isMember(): (Bytes&lt;32&gt;, Bytes&lt;32&gt;) { let secret = getSecret(); let context = getContext(); let leaf = poseidonHash(secret); let computed_root = leaf; let siblings = getSiblings(); let indices = getPathIndices(); for (i in 0..20) { computed_root = hashLevelNode(indices[i], computed_root, siblings[i]); } assert(computed_root == merkle_root.read(), "Invalid membership proof"); let nullifier = persistentHash&lt;Vector&lt;2, Bytes&lt;32&gt;&gt;&gt;([secret, context]); assert(not used_nullifiers.contains(nullifier), "Nullifier already used"); (computed_root, nullifier) } </code></pre> </div> <h3> Admin Root Management </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>export circuit setRoot(new_root: Bytes&lt;32&gt;): [] { let admin_secret = getAdminSecret(); let commitment = poseidonHash(admin_secret); assert(commitment == admin_commitment.read(), "Not authorized"); merkle_root.write(disclose(new_root)); } </code></pre> </div> <h2> The TypeScript Tooling </h2> <h3> Sparse Merkle Tree Implementation </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">class</span> <span class="nc">MerkleTree</span> <span class="p">{</span> <span class="k">readonly</span> <span class="nx">depth</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="k">private</span> <span class="nx">leaves</span><span class="p">:</span> <span class="nx">HashHex</span><span class="p">[]</span> <span class="o">=</span> <span class="p">[];</span> <span class="k">private</span> <span class="nx">layers</span><span class="p">:</span> <span class="nb">Map</span><span class="o">&lt;</span><span class="kr">number</span><span class="p">,</span> <span class="nb">Map</span><span class="o">&lt;</span><span class="kr">number</span><span class="p">,</span> <span class="nx">HashHex</span><span class="o">&gt;&gt;</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Map</span><span class="p">();</span> <span class="k">private</span> <span class="nx">zeroHashes</span><span class="p">:</span> <span class="nx">HashHex</span><span class="p">[];</span> <span class="nf">constructor</span><span class="p">(</span><span class="nx">depth</span><span class="p">:</span> <span class="kr">number</span> <span class="o">=</span> <span class="mi">20</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">depth</span> <span class="o">=</span> <span class="nx">depth</span><span class="p">;</span> <span class="k">this</span><span class="p">.</span><span class="nx">zeroHashes</span> <span class="o">=</span> <span class="nf">computeZeroHashes</span><span class="p">(</span><span class="nx">depth</span><span class="p">);</span> <span class="k">for </span><span class="p">(</span><span class="kd">let</span> <span class="nx">i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nx">i</span> <span class="o">&lt;=</span> <span class="nx">depth</span><span class="p">;</span> <span class="nx">i</span><span class="o">++</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">layers</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="nx">i</span><span class="p">,</span> <span class="k">new</span> <span class="nc">Map</span><span class="p">());</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">insertLeaf</span><span class="p">(</span><span class="nx">leafHash</span><span class="p">:</span> <span class="nx">HashHex</span><span class="p">):</span> <span class="kr">number</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">leafIndex</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">leaves</span><span class="p">.</span><span class="nx">length</span><span class="p">;</span> <span class="k">this</span><span class="p">.</span><span class="nx">leaves</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">leafHash</span><span class="p">);</span> <span class="k">this</span><span class="p">.</span><span class="nf">setNode</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="nx">leafIndex</span><span class="p">,</span> <span class="nx">leafHash</span><span class="p">);</span> <span class="kd">let</span> <span class="nx">currentIndex</span> <span class="o">=</span> <span class="nx">leafIndex</span><span class="p">;</span> <span class="k">for </span><span class="p">(</span><span class="kd">let</span> <span class="nx">level</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nx">level</span> <span class="o">&lt;</span> <span class="k">this</span><span class="p">.</span><span class="nx">depth</span><span class="p">;</span> <span class="nx">level</span><span class="o">++</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">parentIndex</span> <span class="o">=</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">floor</span><span class="p">(</span><span class="nx">currentIndex</span> <span class="o">/</span> <span class="mi">2</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">leftChild</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nf">getNode</span><span class="p">(</span><span class="nx">level</span><span class="p">,</span> <span class="nx">parentIndex</span> <span class="o">*</span> <span class="mi">2</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">rightChild</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nf">getNode</span><span class="p">(</span><span class="nx">level</span><span class="p">,</span> <span class="nx">parentIndex</span> <span class="o">*</span> <span class="mi">2</span> <span class="o">+</span> <span class="mi">1</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">parentHash</span> <span class="o">=</span> <span class="nf">hashNode</span><span class="p">(</span><span class="nx">leftChild</span><span class="p">,</span> <span class="nx">rightChild</span><span class="p">);</span> <span class="k">this</span><span class="p">.</span><span class="nf">setNode</span><span class="p">(</span><span class="nx">level</span> <span class="o">+</span> <span class="mi">1</span><span class="p">,</span> <span class="nx">parentIndex</span><span class="p">,</span> <span class="nx">parentHash</span><span class="p">);</span> <span class="nx">currentIndex</span> <span class="o">=</span> <span class="nx">parentIndex</span><span class="p">;</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">leafIndex</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> The Complete Flow </h2> <h3> Step 1: Admin Sets Up the Contract </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">ADMIN_SECRET</span><span class="o">=</span><span class="si">$(</span>openssl rand <span class="nt">-hex</span> 32<span class="si">)</span> <span class="nv">ADMIN_COMMITMENT</span><span class="o">=</span><span class="si">$(</span><span class="nb">echo</span> <span class="nt">-n</span> <span class="nv">$ADMIN_SECRET</span> | poseidon-hash<span class="si">)</span> compact deploy <span class="nt">--ledger</span> <span class="nv">admin_commitment</span><span class="o">=</span><span class="nv">$ADMIN_COMMITMENT</span> </code></pre> </div> <h3> Step 2: Add Members Off-Chain </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>midnight-allowlist add-member <span class="nt">--secret</span> <span class="s2">"alice-secret-123"</span> <span class="nv">ROOT</span><span class="o">=</span><span class="si">$(</span>midnight-allowlist get-root<span class="si">)</span> </code></pre> </div> <h3> Step 3: Push Root On-Chain </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>compact call setRoot <span class="nt">--arg</span> <span class="nv">new_root</span><span class="o">=</span><span class="nv">$ROOT</span> <span class="nt">--witness</span> <span class="nv">admin_secret</span><span class="o">=</span><span class="nv">$ADMIN_SECRET</span> </code></pre> </div> <h3> Step 4: Member Generates and Submits Proof </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">PROOF</span><span class="o">=</span><span class="si">$(</span>midnight-allowlist generate-proof <span class="nt">--secret</span> <span class="s2">"alice-secret-123"</span> <span class="nt">--context</span> <span class="s2">"voting-round-1"</span><span class="si">)</span> compact call proveMembership <span class="nt">--proof</span> <span class="nv">$PROOF</span> </code></pre> </div> <h2> Edge Cases and Gotchas </h2> <h3> 1. Zero Hash Collisions </h3> <p>The sparse tree uses pre-computed zero hashes. Make sure your <code>computeZeroHashes</code> function matches exactly what the Compact contract expects.</p> <h3> 2. Context Binding </h3> <p>The nullifier is <code>hash(secret || context)</code>. Use distinct contexts for different operations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">VOTE_CONTEXT</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">governance-vote-q2-2026</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">AIRDROP_CONTEXT</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">token-airdrop-genesis</span><span class="dl">"</span><span class="p">;</span> </code></pre> </div> <h3> 3. Tree Capacity Planning </h3> <p>A depth-20 tree supports ~1M members. Each additional level doubles capacity but increases proof generation time linearly.</p> <h2> Testing </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nf">describe</span><span class="p">(</span><span class="dl">'</span><span class="s1">ZK Allowlist</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should verify valid membership proof</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">tree</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">MerkleTree</span><span class="p">(</span><span class="mi">20</span><span class="p">);</span> <span class="nx">tree</span><span class="p">.</span><span class="nf">insertLeaf</span><span class="p">(</span><span class="nf">hashLeaf</span><span class="p">(</span><span class="dl">'</span><span class="s1">alice-secret</span><span class="dl">'</span><span class="p">));</span> <span class="kd">const</span> <span class="nx">proof</span> <span class="o">=</span> <span class="nx">tree</span><span class="p">.</span><span class="nf">generateMerkleProof</span><span class="p">(</span><span class="mi">0</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nf">verifyProof</span><span class="p">(</span><span class="nx">tree</span><span class="p">.</span><span class="nx">root</span><span class="p">,</span> <span class="nx">proof</span><span class="p">,</span> <span class="nf">hashLeaf</span><span class="p">(</span><span class="dl">'</span><span class="s1">alice-secret</span><span class="dl">'</span><span class="p">))).</span><span class="nf">toBe</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <h2> What's Next? </h2> <p>This system handles the core membership proof flow. Production deployments should consider batch root updates, Merkle tree snapshots, circuit optimization, and frontend integration.</p> <p>The complete source code is available in the companion repository linked in the PR.</p> <p><em>This tutorial is part of the Midnight Network bounty program. For more developer resources, visit <a href="https://docs.midnight.network" rel="noopener noreferrer">docs.midnight.network</a>.</em></p> blockchain typescript tutorial web3