Open source
Fantums Reborn is open source. The contracts, the frontend, the snapshot scripts, the bots, the docs — all of it. You can read it, fork it, audit it, suggest changes.
The exception: a few private keeper config files (multisig signing payloads, third-party API keys) live in secrets/ and are gitignored. The behaviour they configure is open; the credentials aren't.
Where to find the code
| Where | What |
|---|---|
| GitHub repo | TBD at launch — published when the public mainnet deploy is live |
| Verified contracts | sonicscan.org (link from Contract addresses) |
| GitBook (this site) | The narrative docs and the lore |
| Snapshot data | data/fantum-snapshot/ — committed to the public repo |
| Merkle tree | data/fantum-snapshot/merkle/ — committed, root hash also pinned in contract |
The repo will be published on the same day the mainnet contracts deploy. Pre-deploy we hold the source private to limit attack surface during the audit cycle.
What's in the repo
| Path | Contents |
|---|---|
contracts/ | Solidity — Fantums.sol, SFUMS.sol, Duel.sol, DuelRouter.sol, MintDrop.sol, LegacyClaim.sol, Graveyard.sol, Marketplace.sol, ArenaOptOut.sol, SFUMSTimelock.sol, FantumRenderer.sol, FeeMSplitter.sol |
test/ | Vitest + Foundry test suites |
script/ | Forge deploy + ops scripts |
frontend/ | Next.js + wagmi + viem dApp |
marketing/ | Discord / Telegram / X bots + keeper services |
scripts/snapshot-fantums/ | The snapshot of the original FUM collection from Fantom Opera + the Merkle tree generator |
scripts/art-mockups/ | The locked Style B art generator (style-b-v3.mjs) |
data/fantum-snapshot/ | Owners, hashes, eligible-holder list, Merkle root — frozen |
docs/ | Project plan, OG perks spec, improvements doc, security audit |
Licence
| Component | Licence |
|---|---|
| Smart contracts | MIT |
| Frontend | MIT |
| Snapshot scripts | MIT |
| Bots and keepers | MIT |
| Art mockups + sprites | CC BY 4.0 (the artwork, attribution required) |
| The collection's individual on-chain SVGs | NFT holder owns the token; the SVG is rendered from on-chain bytes |
The CC BY licence on the art exists so people can build mods, fan art, secondary products. Attribution back to Fantums Reborn is the only ask.
Contributing
This is a real project, not a public mock. We accept contributions but with three guardrails:
- Discuss before you ship. Open an issue first. PRs with no prior discussion get closed.
- Tests required. Every contract change ships with tests. Every frontend change ships with at least a render test.
- No silent dependency adds. New dependencies require justification on the PR. We are deliberately keeping the dep tree small for supply-chain security reasons.
How to verify a build
For builders who want to confirm the deployed bytecode matches the published source:
git clone <repo>
cd fantums-reborn
forge install
forge build
# The deployed bytecode should match contracts/out/Fantums.sol/Fantums.json
# Compare against sonicscan.org's verified contract page
The deploy script (script/Deploy.s.sol) is committed. The constructor arguments are committed in script/deploy/deployments.json. The bytecode is reproducible from a clean clone.
Reporting security issues
Found a vulnerability? Do not open a public issue. Send a PGP-encrypted message to the dev's published key.
The full security disclosure process will be published on launch day with a bug bounty schedule.
See also
- Contract addresses — where the deployed contracts live
- Security — the security posture
- Open source — you are here
Last updated: 2026-05-21