EIP-7943 CONTRACTS
NixPkgToken
Your supply chain, tokenized and audit-gated.
Solidity / Forge
NixPkgToken mints every Nix package as an EIP-7943 non-fungible asset carrying its audit posture. tokenId is derived from the Nix store hash, and the token walks a state machine — PENDING → CLEAN → CVE_FOUND → DEPRECATED. A package can only transfer while CLEAN; a CVE freezes it and routes custody to quarantine.
tokenId = uint256(sha256(nixStoreHash)) — reproducible identity
Carries pname · version · custodian · sbomHash · cveCount
State machine: PENDING → CLEAN → CVE_FOUND → DEPRECATED
canTransfer = false while PENDING, CVE_FOUND or DEPRECATED
Grype reportCVE() → Phantom forcedTransfer(quarantine)
Internal architecture
Identity
tokenId = sha256(storeHash)
Reproducible from the Nix closure
metadata
pname · version · custodian · sbomHash
Audit state
auditStatus
PENDING / CLEAN / CVE_FOUND / DEPRECATED
canTransfer()
True only while CLEAN
reportCVE()
Grype findings flip state to CVE_FOUND
Recovery
forcedTransfer()
Phantom moves custody to quarantine
Position in the protocol
NixBridge mint / updateNixPkgToken
NixPkgToken CVE → quarantinePhantom
NixPkgToken upgrade refadr-ledger