Some checks failed
CI / build (push) Failing after 3s
PHASE 2.3 (AUDIT-2026-Q3.md):
Task 1 — Wire-in Wave 3 (1 router mounted, 2 deferred):
- app.routers.unified_scanner_router mounted at /api/v2/scanner/* (2 routes:
POST /api/v2/scanner/token/scan, POST /api/v2/scanner/wallet/scan).
Refactored prefix from /api/v2 -> /api/v2/scanner to avoid future conflicts
with the v1 /api/v1/scanner/ stub.
- app.routers.unified_wallet_scanner DEFERRED (no router APIRouter attribute;
library module consumed by unified_scanner_router via get_wallet_scanner()).
- app.routers.admin_extensions DEFERRED (DORMANT per audit; 25 routes at
/api/v1/admin/* would shadow /api/v1/admin/alerts_webhook).
Task 2 — Archive 136 dead-code files to app/_archive/legacy_2026_07/:
- 73 routers in app/routers/ (reach graph showed zero reach into mount.py).
- 63 flat app/*.py (domain modules never imported by live code).
- 1 file RESTORED post-archive: app/routers/x402_bridge_health.py (caught by
tests/unit/test_bridge_health.py which directly imports it; reach graph
considered tests/ only as transitive reach — to be patched in next cycle).
Forced-LIVE (NOT archived per user directive):
- app/ai_pipeline_v3.py (3 importers in audit window, importers themselves DEAD)
- app/splade_bm25.py (LIVE via app.rag_service)
- app/wallet_manager_v2.py (LIVE via x402_enforcement, x402_tools, sweep_all, sweep_now)
- app/crypto_embeddings.py (NOT in audit ARCHIVE list; heavy import graph)
Verification (forward-import closure from mount.py + main.py + factory.py + lifespan.py):
- imports = 348 app.* modules
- reached = 194 files reachable from roots
- archive set = audit_dead (186) - reached - forced_live (4) - test_live (1) = 136
- Net delta: 136 files moved, 44,932 LOC reduction, 293->295 active routes (+2 from Wave 3)
pyproject.toml updates:
- setuptools.packages.find: added exclude for app._archive*
- ruff.extend-exclude: added "app/_archive/"
- mypy.exclude: added "app/_archive/"
Smoke test: pytest tests/ — 817 passed, 3 pre-existing failures unchanged
(0 new failures; 0 routes lost; all 4 forced-LIVE files still importable).
Restoration: git mv app/_archive/legacy_2026_07/<name>.py <original-path>
and add the import to app/mount.py ROUTER_MODULES.
Refs: AUDIT-2026-Q3.md /home/dev/pry/rmi-final-deadcode-2026-07-06.md
65 lines
2.2 KiB
Python
65 lines
2.2 KiB
Python
"""NFT Wash Trading Detector - detects fake volume in NFT collections."""
|
|
|
|
import os
|
|
|
|
from fastapi import APIRouter, Query
|
|
|
|
router = APIRouter(prefix="/api/v1/nft-detector", tags=["nft-detector"])
|
|
|
|
BACKEND = os.getenv("BACKEND_URL", "http://localhost:8000")
|
|
RMI_KEY = os.getenv("RMI_INTERNAL_KEY", "rmi-internal-2026")
|
|
|
|
|
|
@router.get("/check/{collection_address}")
|
|
async def check_nft_wash(collection_address: str, chain: str = Query("ethereum")):
|
|
"""Check NFT collection for wash trading patterns."""
|
|
|
|
# Use DataBus volume authenticity engine with NFT-specific heuristics
|
|
score = 85 # Placeholder - real implementation queries DataBus
|
|
|
|
# NFT-specific wash trading patterns
|
|
patterns = []
|
|
patterns.append({"pattern": "Self-trades", "description": "Same wallet buying and selling", "detected": False})
|
|
patterns.append({"pattern": "Round-trip", "description": "A→B→A within minutes", "detected": False})
|
|
patterns.append({"pattern": "Bid stuffing", "description": "Fake bids to inflate floor price", "detected": False})
|
|
patterns.append(
|
|
{"pattern": "Wash pool", "description": "Group of wallets trading among themselves", "detected": False}
|
|
)
|
|
|
|
if score < 30:
|
|
risk = "CRITICAL"
|
|
emoji = "🔴"
|
|
elif score < 60:
|
|
risk = "HIGH"
|
|
emoji = "🟡"
|
|
elif score < 80:
|
|
risk = "MEDIUM"
|
|
emoji = "⚪"
|
|
else:
|
|
risk = "LOW"
|
|
emoji = "🟢"
|
|
|
|
return {
|
|
"collection": collection_address,
|
|
"chain": chain,
|
|
"authenticity_score": score,
|
|
"risk": risk,
|
|
"emoji": emoji,
|
|
"wash_patterns": patterns,
|
|
"recommendation": "Likely authentic trading"
|
|
if score >= 80
|
|
else "Suspicious activity detected - verify before buying",
|
|
}
|
|
|
|
|
|
@router.get("/floor-check/{collection_address}")
|
|
async def check_floor_manipulation(collection_address: str, chain: str = Query("ethereum")):
|
|
"""Check if NFT floor price is being manipulated."""
|
|
return {
|
|
"collection": collection_address,
|
|
"floor_price_eth": 0.0,
|
|
"bid_ask_spread_pct": 0,
|
|
"suspicious_bids_24h": 0,
|
|
"manipulation_risk": "LOW",
|
|
"note": "NFT data providers integration pending",
|
|
}
|