Migration script

crypto_economics · March 9, 2022, 6:33am

Hi, is it necessary to have the migration scripts for our contracts deployed to mainnet uploaded to Github and/or audited?

YummyDao · March 9, 2022, 9:00am

Not necessary, but you can do it if you want more people to test and fork your contract

crypto_economics · March 9, 2022, 10:23am

are there any potential security risks with the migration? what should be tested?

YummyDao · March 9, 2022, 12:29pm

No risk bro, People can test your smart contract business logic

frangio · March 9, 2022, 4:46pm

There is no risk in publishing the migration, I think this is what @YummyDao was saying. But there can definitely be risk in a buggy migration...

The migration is your deployment process. You need to deploy your contract correctly for it to be secure. For example, you need to set up permissions securely.

YummyDao · March 9, 2022, 11:43pm

Exactly bro
That's right

crypto_economics · March 10, 2022, 12:09am

Hi thanks. My question is whether there is risk in “not” publishing the migration files?

YummyDao · March 10, 2022, 12:13am

No risk bro in not publishing

frangio · March 10, 2022, 3:54pm

The risks in not publishing the migration are:

Difficulty to reproduce a deployment
Difficulty to review/audit the deployment process

You should publish your migration, just like you publish your smart contract source code.

YummyDao · March 10, 2022, 4:04pm

Yes, that's what I meant by testing by other users.... Since is gonna be open source

Topic		Replies	Views
Migration issue Contracts	0	713	July 7, 2021
Need help deploying a couple smart contracts on remix Smart Contracts	1	16	March 11, 2025
Security and copyright risks of verifying ERC20 contract code Support	2	524	May 1, 2021
Need Help Best Practices for Managing Smart Contract Security During Development? Developer Wanted erc20 , solidity , etherscan-verify	1	284	May 16, 2024
Is it possible to run truffle test without migrations? Smart Contracts	3	546	February 8, 2022

Migration script

Related topics