Add on-chain per-developer rate-limit enforcement to vault.deduct

[greatest0fallt1me]

Description

This is a smart-contract issue for the GrantFox campaign. Introduce per-developer token-bucket state in vault storage so deducts can be rate-limited at the contract layer as a defense-in-depth backstop.

Requirements and Context

• Bucket size/refill from developer-config
• Reject with RateLimited error when empty
• Refill amortized over ledger ticks
• Test edge cases at boundary
• Must be secure, tested, and documented
• Should be efficient and easy to review

Suggested Execution

1. Fork the repo and create a branch

   git checkout -b feature/vault-rate-limit

2. Implement changes
   • contracts/vault/src/lib.rs
   • contracts/vault/src/rate_limit.rs (new)
   • contracts/vault/src/test.rs
3. Test and commit
   • Run the repo's standard test suite and lint
   • Cover edge cases; include output in the PR

Example commit message

feat: on-chain per-developer rate-limit on vault.deduct

Acceptance Criteria

• Bucket persists
• Refill correct
• Rejects on empty
• Edge cases tested

Guidelines

• Minimum 95% test coverage with cargo test
• require_auth on every state-changing entrypoint
• Overflow-safe math; no unwrap() in production paths
• Clear NatSpec-style /// rustdoc
• Timeframe: 96 hours

[Stephan-Thomas]

@Stephan-Thomas has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

hi, i would like to work on this.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @Stephan-Thomas to this issue.

[drips-wave]

Congratulations, @Stephan-Thomas! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on June 30, 2026.

🧑‍💻 @Stephan-Thomas: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are awarded when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊

[grantfox-oss]

🎉 This issue has been marked as completed on GrantFox as part of the Official Campaign campaign!

@Stephan-Thomas's PR #550 was approved and merged by @greatest0fallt1me.

🏆 @Stephan-Thomas: You earned 35 FoxPoints for this contribution! Your current tier: Explorer (576 total points). Track your full progress on GrantFox.

👏 Great work, @Stephan-Thomas! Keep contributing to CalloraOrg.

[drips-wave]

This issue has been completed by @Stephan-Thomas as part of the Stellar Wave Program's 6th Wave 🥳

😎 @Stephan-Thomas: You earned 100 Points for completing this issue! After the current Wave ends, you'll be eligible for a percentage of the Wave's reward pool based on the percentage of total points you've earned. Learn more here. You can also Leave a review to share your experience working on this issue.

🧑‍💻 Repo maintainers: How'd the contributor do? Leave a review to share your experience working with them.