A production-ready price feed service for Neo N3 blockchain that leverages a Trusted Execution Environment (TEE). The service fetches data from multiple sources, aggregates it, and submits it to a smart contract on-chain using a dual-signature transaction system.
Many popular cryptocurrency APIs have accessibility restrictions due to regional regulations, API key requirements, or domain blocks. Please see Accessible APIs Guide for information about which data sources are accessible in your region and recommended alternatives.
Quick Start with Accessible APIs:
- Use the
appsettings.accessible.jsonconfiguration for maximum compatibility - Primary recommended sources: CoinGecko, Kraken
- See the accessibility guide for detailed setup instructions
This service leverages a Trusted Execution Environment (TEE) for secure operation:
- Dual-Signature Transactions: Two Neo accounts are used for each transaction:
- TEE Account: Generated within the TEE, used to authenticate that transactions are truly generated in the secure environment
- Master Account: Set by you as a secret, contains GAS for transaction fees
- Secure Execution: The private keys are only accessible within the TEE
- Persistent Identity: The same accounts are used across all price feed transactions
- Isolation: The TEE provides a clean, isolated environment for each execution
- Account Persistence: The accounts persist across code updates, ensuring a consistent identity
- Asset Transfer: Any assets received by the TEE account are automatically transferred to the Master account
For detailed information, see:
- Contract Hash:
0xc14ffc3f28363fe59645873b28ed3ed8ccb774cc - Network: Neo N3 TestNet
- Status: π‘ NEEDS INITIALIZATION - Contract deployed but not yet initialized
- TEE Account:
NiNmXL8FjEUEs1nfX9uHFBNaenxDHJtmuB - Next Step: Run initialization commands below
π Monitoring:
- Contract Hash:
0xc14ffc3f28363fe59645873b28ed3ed8ccb774cc(verified on-chain) - GitHub Actions Status
- Price Feed Workflow
./scripts/one-command-init.sh to initialize the contract (takes ~30 seconds).
The price oracle currently tracks 19+ major cryptocurrencies including:
- BTC/USDT - Bitcoin
- ETH/USDT - Ethereum
- ADA/USDT - Cardano
- BNB/USDT - Binance Coin
- XRP/USDT - Ripple
- SOL/USDT - Solana
- MATIC/USDT - Polygon
- DOT/USDT - Polkadot
- LINK/USDT - Chainlink
- UNI/USDT - Uniswap
- And more...
Price data is aggregated from multiple sources for accuracy and reliability.
# Set your Master Account private key (WIF format)
export MASTER_WIF="your_master_account_private_key_here"
# Run the initialization script
./scripts/one-command-init.shThat's it! The script will:
- β Install neo-mamba if needed
- β Initialize the contract with owner and TEE account
- β Add TEE account as an authorized oracle
- β Set minimum oracles to 1
- β Verify everything is working
If you prefer manual control:
# Install neo-mamba
pip install neo-mamba
# Initialize contract (replace YOUR_WIF with your Master Account WIF)
neo-mamba contract invoke 0xc14ffc3f28363fe59645873b28ed3ed8ccb774cc initialize "NTmHjwiadq4g3VHpJ5FQigQcD4fF5m8TyX" "NiNmXL8FjEUEs1nfX9uHFBNaenxDHJtmuB" --wallet-wif YOUR_WIF --rpc http://seed1t5.neo.org:20332 --force
# Add TEE as oracle
neo-mamba contract invoke 0xc14ffc3f28363fe59645873b28ed3ed8ccb774cc addOracle "NiNmXL8FjEUEs1nfX9uHFBNaenxDHJtmuB" --wallet-wif YOUR_WIF --rpc http://seed1t5.neo.org:20332 --force
# Set minimum oracles
neo-mamba contract invoke 0xc14ffc3f28363fe59645873b28ed3ed8ccb774cc setMinOracles 1 --wallet-wif YOUR_WIF --rpc http://seed1t5.neo.org:20332 --forceCheck if initialization was successful:
python3 scripts/quick-initialize.py- Multi-Source Data Collection: Fetches price data from multiple sources:
- CoinGecko (β Accessible)
- Kraken (β Accessible)
- Coinbase (β Partially Accessible)
- Binance (β Regionally Restricted)
- CoinMarketCap (β Requires API Key)
- OKEx (β Domain Restrictions)
- Advanced Aggregation: Aggregates price data using volume-weighted average or simple average
- Confidence Scoring: Calculates confidence scores based on standard deviation and number of sources
- Batch Processing: Sends batched price updates to a Neo smart contract
- TEE Integration: Runs periodically in a secure Trusted Execution Environment
- Production-Ready:
- Comprehensive error handling and logging
- Environment variables for configuration
- Secure secrets management
- Detailed execution logs
- Fallback mechanisms when data sources are unavailable
The solution consists of two main components:
A .NET console application that runs in a Trusted Execution Environment (TEE). The service:
- Collects price data from multiple sources (CoinGecko, Kraken, Coinbase, and others)
- Aggregates the data with confidence scoring
- Uses a dual-signature system with TEE and Master accounts
- Signs and submits transactions to the blockchain
- Creates cryptographic attestations to prove execution within the TEE
- Maintains the same accounts across code updates for a consistent identity
Note: This is not a web API service. It's designed to be triggered on a schedule to update price data.
A Neo N3 smart contract that stores price data on the blockchain and makes it available to other contracts and applications. The contract implements dual-signature verification:
- TEE Account Signature: Verifies that the transaction was generated in the GitHub Actions environment
- Master Account Signature: Provides the GAS for transaction fees
- Asset Transfer: Automatically transfers any assets from the TEE account to the Master account
neo-price-feed/
βββ src/ # Source code
β βββ PriceFeed.Core/ # Domain models and interfaces
β βββ PriceFeed.Infrastructure/ # External integrations and services
β βββ PriceFeed.Console/ # Console application entry point
β βββ PriceFeed.Contracts/ # Smart contracts
βββ test/ # Test projects
β βββ PriceFeed.Tests/ # Unit and integration tests
βββ docs/ # Documentation
βββ scripts/ # Build and deployment scripts
βββ config/ # Configuration templates
βββ .github/ # GitHub workflows and templates
- PriceFeed.Core: Contains domain models, interfaces, and core business logic
- PriceFeed.Infrastructure: Contains implementations of data sources, services, and external integrations
- PriceFeed.Console: The console application that runs in the TEE
- PriceFeed.Contracts: Contains the Neo N3 smart contract for the price oracle
- PriceFeed.Tests: Contains comprehensive unit and integration tests
βββββββββββββββββββ βββββββββββββββββββ βββββββββββββββββββ
β β β β β β
β Data Sources ββββββΆβ Price Feed ββββββΆβ Neo Blockchain β
β (Binance, etc) β β Console App β β Smart Contract β
β β β (Secure TEE) β β β
βββββββββββββββββββ βββββββββββββββββββ βββββββββββββββββββ
β
βΌ
βββββββββββββββββββ
β β
β Smart Contract β
β Consumers β
β β
βββββββββββββββββββ
- .NET 9.0 SDK
- Trusted Execution Environment setup
- Neo blockchain node (for contract deployment)
The application can be configured using environment variables in the TEE:
Data Source API Keys:
BINANCE_API_KEY: API key for BinanceBINANCE_API_SECRET: API secret for BinanceCOINMARKETCAP_API_KEY: API key for CoinMarketCapCOINBASE_API_KEY: API key for CoinbaseCOINBASE_API_SECRET: API secret for CoinbaseOKEX_API_KEY: API key for OKExOKEX_API_SECRET: API secret for OKExOKEX_PASSPHRASE: Passphrase for OKEx API
Neo Blockchain Configuration:
NEO_RPC_ENDPOINT: Neo RPC endpoint URLCONTRACT_SCRIPT_HASH: Script hash of the deployed contractTEE_ACCOUNT_ADDRESS: TEE account addressTEE_ACCOUNT_PRIVATE_KEY: TEE account private key (WIF format)MASTER_ACCOUNT_ADDRESS: Master account addressMASTER_ACCOUNT_PRIVATE_KEY: Master account private key (WIF format)
General Configuration:
SYMBOLS: Comma-separated list of symbols to collect price data for (e.g., "BTCUSDT,ETHUSDT,NEOUSDT")
These environment variables are securely stored in the TEE.
For configuring different symbol formats for different data sources, see Symbol Mappings.
Alternatively, you can use the appsettings.json file for local development:
{
"PriceFeed": {
"Symbols": ["NEOBTC", "NEOUSDT", "BTCUSDT", "ETHUSDT"]
},
"Binance": {
"BaseUrl": "https://api.binance.com",
"TickerPriceEndpoint": "/api/v3/ticker/price",
"Ticker24hEndpoint": "/api/v3/ticker/24hr",
"ExchangeInfoEndpoint": "/api/v3/exchangeInfo",
"TimeoutSeconds": 30
},
"CoinMarketCap": {
"BaseUrl": "https://pro-api.coinmarketcap.com",
"LatestQuotesEndpoint": "/v1/cryptocurrency/quotes/latest",
"TimeoutSeconds": 30
},
"Coinbase": {
"BaseUrl": "https://api.coinbase.com",
"ExchangeRatesEndpoint": "/v2/exchange-rates",
"SpotPriceEndpoint": "/v2/prices",
"TimeoutSeconds": 30
},
"OKEx": {
"BaseUrl": "https://www.okex.com",
"TickerEndpoint": "/api/v5/market/ticker",
"TimeoutSeconds": 30
},
"BatchProcessing": {
"RpcEndpoint": "http://localhost:10332",
"ContractScriptHash": "MUST_BE_SET_TO_YOUR_DEPLOYED_CONTRACT_HASH",
"WalletWif": "MUST_BE_SET_VIA_ENVIRONMENT_VARIABLE",
"MaxBatchSize": 50
}
}# Run the price feed service
cd src/PriceFeed.Console
dotnet run
# Test symbol mappings
dotnet run -- --test-symbol-mappings
# Test with mock price feed (for development)
dotnet run -- --test-mock-price-feedThe application supports the following command-line options:
| Option | Description |
|---|---|
--test-symbol-mappings |
Test symbol mappings configuration and exit. |
--test-price-feed |
Run the price feed service with test data and exit. |
--test-mock-price-feed |
Run the price feed service with mock data sources and exit. |
--generate-account |
Generate a new Neo account for use with the price feed service. |
--continuous |
Run in continuous execution mode. |
--duration <minutes> |
Duration for continuous execution (default: 5 minutes). |
--interval <seconds> |
Update interval in continuous mode (default: 15 seconds). |
--help |
Display help information. |
The price feed service runs on a schedule defined by a cron expression in the GitHub Actions workflow file:
# In .github/workflows/scheduled-price-feed.yml
on:
schedule:
# Run once per week on Monday at 00:00 UTC
- cron: '0 0 * * 1'To change how often the service runs, simply update the cron expression in the workflow file.
For more information, see the Configuring Intervals Documentation.
The application is configured to run automatically in the TEE on a schedule (once per week by default). It can also be triggered manually when needed.
# Run all tests
dotnet test
# Run tests with coverage
dotnet test /p:CollectCoverage=true /p:CoverletOutputFormat=opencoverThe application outputs detailed logs to the TEE console. These logs include:
- Price data collection from each source
- Aggregation results
- Batch processing status
- Detailed price information for each symbol
The application uses Serilog for structured logging. When running locally, logs are written to the console with a clear, readable format.
The solution includes a production-ready Neo N3 smart contract (PriceOracleContract) that:
- Stores price data on the blockchain
- Provides methods for querying price data
- Supports batch updates for efficiency
- Implements access control for oracles and admin operations
- Includes price deviation protection
- Supports contract upgrades
- Has a pause mechanism for emergencies
- Validates data quality through confidence scores
For detailed information about the smart contract, see the contract documentation.
The price oracle operates with full automation using GitHub Actions as the Trusted Execution Environment:
π Active Workflows:
- Price Feed Service: Runs every 10 minutes automatically (
*/10 * * * *) - Continuous Integration: Tests on every push/PR
- Docker Build & Publish: Builds container images for deployment
- Contract Operations: Manual deployment and management tools
Every 10 minutes: Workflow starts and runs for 5 minutes
- Updates prices every 15 seconds during execution
- ~20 price updates per workflow run
- ~2,880 price updates per day
β Continuous Execution Benefits:
- Ultra-fresh price data (15-second intervals during active periods)
- Efficient resource utilization (5 minutes active, 5 minutes idle)
- Optimized GitHub Actions usage (~21,600 minutes/month)
- Respects API rate limits with interval spacing
- Maximizes price freshness while controlling costs
1. Build Pipeline (.github/workflows/build-and-publish.yml):
# Builds and publishes Docker images to GitHub Container Registry
- Build .NET 9.0 solution (excluding contracts)
- Create multi-platform Docker image
- Push to ghcr.io/r3e-network/neo-price-feed:latest2. Price Feed Automation (.github/workflows/price-feed.yml):
# Runs price oracle every 10 minutes with continuous execution
on:
schedule:
- cron: '*/10 * * * *' # Every 10 minutes
workflow_dispatch: # Manual trigger available
jobs:
run-price-feed:
runs-on: ubuntu-latest
timeout-minutes: 30
environment: production # Protected environment
steps:
- Sparse checkout (scripts only)
- Initialize contract if needed
- Pull latest Docker image
- Run price feed in continuous mode:
docker run ... --continuous --duration 5 --interval 15
- Test results and upload logs3. Environment Variables: All sensitive data is stored as GitHub Secrets:
# Required secrets for production deployment
MASTER_ACCOUNT_ADDRESS # Master account for transaction fees
MASTER_ACCOUNT_PRIVATE_KEY # Master account private key (WIF format)
NEO_TEE_ACCOUNT_ADDRESS # TEE account address
NEO_TEE_ACCOUNT_PRIVATE_KEY # TEE account private key (WIF format)
ORACLE_CONTRACT_HASH # Deployed contract hash
NEO_RPC_URL # Neo RPC endpoint
COINMARKETCAP_API_KEY # Price data API keyπ Real-time Monitoring:
ποΈ Manual Operations:
- Trigger Price Feed: Use "Run workflow" button in GitHub Actions
- Contract Management: Run contract deployment workflow for admin operations
- Emergency Stop: Disable scheduled workflow in repository settings
- Sensitive configuration is stored in GitHub Secrets
- Environment variables are used to pass configuration to the application
- The wallet WIF is securely stored and never exposed in logs
- The application runs in an isolated GitHub Actions environment
If you encounter connection issues, you can:
- Check the RPC endpoint is accessible and responding
- Verify the contract hash is correct and the contract is deployed
- Ensure the Neo account has sufficient GAS for transactions
If you encounter issues with data sources:
- Verify API keys are correct and have the necessary permissions
- Check network connectivity to the data source APIs
- Ensure symbol mappings are correctly configured for each data source
If transactions fail to be processed:
- Check that the Neo RPC endpoint is accessible
- Verify the contract hash is correct
- Ensure the Neo account has sufficient GAS
- Check the contract's access control settings
The application outputs detailed logs that can help diagnose issues:
[2023-06-01 12:00:00 INF] Starting price feed service
[2023-06-01 12:00:01 INF] Collecting price data for symbols: BTCUSDT, ETHUSDT, NEOUSDT
[2023-06-01 12:00:02 INF] Aggregating price data
[2023-06-01 12:00:03 INF] Processing batch with 3 price updates
[2023-06-01 12:00:04 INF] Successfully processed batch
For more detailed logging, you can modify the logging level in appsettings.json.
Comprehensive documentation is available on GitHub Pages:
- Main Documentation
- Price Feed Service Documentation
- Price Oracle Contract Documentation
- Dual-Signature Transactions
- Account Persistence
- Configuring Intervals
- Symbol Mappings
- Fork the repository
- Create a feature branch:
git checkout -b feature/my-feature - Commit your changes:
git commit -am 'Add my feature' - Push to the branch:
git push origin feature/my-feature - Submit a pull request
This project is licensed under the MIT License - see the LICENSE file for details.