The issues we see: module duplication, lack of standards.
After several recent on-chain security incidents in the cryptocurrency industry, the entire Web3 community has once again turned its direct attention to the age-old topic of "infrastructure security." Although technology continues to advance, we cannot escape a reality: without unified standards and auditing mechanisms, any foundational module that "reinvents the wheel" may become a potential source of risk.
Move is a language born for resources and security, and Aptos always provides developers with an excellent chain-level experience through parallel execution and native upgrade capabilities. However, in our cooperation with many Aptos project teams, we have repeatedly identified a critical shortcoming: the ecosystem lacks a reliable, reusable, and auditable public foundational module library. Many teams implement and maintain their own solutions for permission control, upgrade systems, basic utility functions, etc., which is not only inefficient but also undermines the overall security of chain-level applications.
We have decided to take action: Movemaker and alcove have jointly launched.
To address this underlying shortcoming, the Aptos official Chinese community Movemaker has partnered with Alcove, the first Move ecosystem developer organization in Asia, to jointly launch a structured open-source initiative—the Aptos Move Secure & General Purpose Base Library initiative.
The initiative aims to provide a set of rigorously audited, secure, reliable, modular, and easy-to-use standard components for Aptos smart contract development, thereby accelerating the development and maturity of the Aptos ecosystem. Movemaker has long served the Aptos Chinese developer community and understands the actual needs of local developers; while alcove has gathered a group of technical members with experience in Move underlying development, auditing, and toolchain construction, which can lay a solid foundation for the research and governance of this foundational library.
The proposal has been launched on GitHub and is now open for co-construction to all Aptos developers.
Welcome to click to view details and submit PR:
Next, we will introduce the goals, mechanisms, and ways to participate in this initiative—hoping you will be not only a reader but also a collaborator.
We have redesigned based on Aptos's innovations.
This initiative is a long-term, systematic open-source project aimed at the entire Aptos developer ecosystem. We are gathering resources, standardizing processes, and building mechanisms, with the sole purpose of creating a "gold standard library" for Aptos that is widely adopted, trusted, and audited, similar to OpenZeppelin for EVM.
In the EVM ecosystem, OpenZeppelin Contracts has been proven to effectively enhance security, accelerate development efficiency, and lower the entry barrier. However, we are well aware that Move and Aptos are not mirrors of EVM; they have fundamental differences in language paradigms, account models, state management, upgrade mechanisms, and execution architectures. Therefore, the resource-oriented model of Move, bytecode verifiers, formal verification support, as well as Aptos's parallel execution and native package upgrade mechanism, provide us with an excellent opportunity to build a foundational library with higher security and stronger performance.
The following is the complete proposal for this plan. We invite every Builder building on Aptos to participate deeply and also welcome you to spread this infrastructure concept.
What we have prepared: from funding, organization to mechanisms.
· Initial funding: Movemaker provides a first round of $200,000 in funding for:
Development and maintenance of core modules.
o Professional security audit fees.
o Developer Incentives and Bounty Program.
o Document writing and community operation support.
o Necessary toolchain and infrastructure construction.
· Development Organization: Alcove coordinates community development resources as the project leader, responsible for managing processes, providing technical support, and conducting security audits.
· Multi-party resource support: Various project parties, independent developers, and security audit companies will participate in the research, testing, and review of the basic modules in phases;
· Governance Mechanism: PR review, testing verification, Move Prover verification, pre-audit, bounty incentives, fully transparent execution throughout the process.
What we want to build: The infrastructure base of the Move ecosystem
· Build a core infrastructure library: Develop a set of Move modules covering core functions such as access control, upgrade management tools, DeFi modules, and general tools.
· Enhance ecological security: Utilize the inherent security features of the Move language (such as reentrancy prevention and strong typing) in conjunction with rigorous testing, formal verification, and independent security audits to ensure the highest security of the library.
· Encourage developer adoption: By providing high-quality, easy-to-understand documentation, tutorials, and examples, lower the learning curve of the Move language to attract more developers into the Aptos ecosystem.
· Establish a community co-construction model: Create an open and collaborative development process that encourages project teams, independent developers, and security audit companies to participate together, ensuring the quality, relevance, and sustainability of the library.
· Accelerate ecological development: Provide a reliable foundation for Aptos dApp developers, accelerate innovation, reduce the cost of reinventing the wheel, thus promoting the prosperity of the Aptos ecosystem.
How to participate in co-building? Every developer can become a promoter.
We believe that a truly trustworthy and reusable smart contract foundation must be built collaboratively by the ecosystem. Therefore, this initiative is open to all Aptos developers, whether you come from a team project or are an independent creator, to participate in the co-construction in a suitable manner.
· How project parties can participate: If you are a developer team of an existing project on Aptos, you can participate in the development, testing, and integration of core modules, transforming the pitfalls you have encountered and the best practices you have used in actual business into reusable standard components for the entire ecosystem. This not only enhances the security of your project but also contributes to the entire ecosystem.
· Independent developers also have a stage: If you are a Move enthusiast or an independent developer, we will continuously recruit module contributors through code challenges, bounty programs, and public task pools. Alcove will provide a complete contribution guide, development documentation, and technical support to help you join from 0 to 1.
· The participation method is simple and clear: all module development will be conducted publicly on GitHub, using the Pull Request (PR) mechanism. All code must pass automated testing and Move Prover verification, and be merged after review by core contributors. Auditing and version management mechanisms will also be executed simultaneously to ensure that every line of code can withstand scrutiny.
What tools and resources will we provide?
In order to lower the participation threshold and improve development efficiency, we will also build a complete set of ecological tools and support systems.
· Core module library: includes reusable components such as access control, module upgrades, DeFi basic logic, security tools, etc.;
· Multi-language SDK: Supports languages such as TypeScript, Python, Rust, Go, etc., simplifying on-chain operations;
· Standardized API: Provides application developers with easier access to on-chain data querying and interaction interfaces;
· Developer tool support: including VS Code plugins, CLI extensions, debugging tools, etc., to improve the coding experience;
· Project templates and sample code: ready-to-use template projects that allow you to quickly get started building your own applications.
Whether you are a beginner or an experienced developer, as long as you care about the technological future of Aptos, this basic library and tool system will be an indispensable starting point for you.
Conclusion: The starting point of an ecosystem-level infrastructure
Building an OpenZeppelin-inspired Move open-source library on Aptos is a project with long-term strategic value for the entire ecosystem. We will make full use of the advantages of the Move language in terms of resource security and strong typing, combined with the parallel execution and native upgrade capabilities of the Aptos platform, to create a more secure, efficient and friendly smart contract development environment for developers.
By combining the security rigor of OpenZeppelin with the technological innovation of Move/Aptos, this foundational library is expected to become the cornerstone of Aptos dApp development, reducing the cost of redundant development, accelerating product iteration, and driving the ecosystem towards a more professional and robust direction.
The success of this open source initiative is the result of the combined efforts of all Builders. We sincerely invite Aptos project teams, independent developers, and security experts to join us and work together to polish a set of underlying standards that are truly trusted, reusable, and auditable. If you're building the future on Aptos, then this base library will be yours too.
About Movemaker
Movemaker is an official community organization authorized by the Aptos Foundation and jointly initiated by Ankaa and BlockBooster, focusing on promoting the construction and development of the Aptos Chinese-speaking community. As the official representative of Aptos in the Chinese-speaking region, Movemaker has received millions of dollars in funding and resources from the Aptos Foundation, and is committed to building a diverse, open, and prosperous Aptos ecosystem by connecting developers, users, capital, and many ecosystem partners.
From DeFi, AI to payments, stablecoins, and RWA, Movemaker is committed to supporting innovative projects in practical applications and promoting the connection between Aptos technology and the real world. As an important bridge for Aptos in Asia, Movemaker is inspiring more development power to join the Aptos ecosystem with localized narratives and a global perspective.
About alcove
alcove is the first Move Chinese developer community in Asia co-built by Aptos, dedicated to supporting developers in using the Move language to build the next generation of Web3 applications. The community brings together a large number of developers with underlying Move development, contract security, and toolchain building capabilities, and has contributed practical experience in multiple Aptos projects.
The content is for reference only, not a solicitation or offer. No investment, tax, or legal advice provided. See Disclaimer for more risks disclosure.
Aptos Move Security Library Co-Building Initiative: Building a trusted infrastructure standard for developers
The issues we see: module duplication, lack of standards.
After several recent on-chain security incidents in the cryptocurrency industry, the entire Web3 community has once again turned its direct attention to the age-old topic of "infrastructure security." Although technology continues to advance, we cannot escape a reality: without unified standards and auditing mechanisms, any foundational module that "reinvents the wheel" may become a potential source of risk.
Move is a language born for resources and security, and Aptos always provides developers with an excellent chain-level experience through parallel execution and native upgrade capabilities. However, in our cooperation with many Aptos project teams, we have repeatedly identified a critical shortcoming: the ecosystem lacks a reliable, reusable, and auditable public foundational module library. Many teams implement and maintain their own solutions for permission control, upgrade systems, basic utility functions, etc., which is not only inefficient but also undermines the overall security of chain-level applications.
We have decided to take action: Movemaker and alcove have jointly launched.
To address this underlying shortcoming, the Aptos official Chinese community Movemaker has partnered with Alcove, the first Move ecosystem developer organization in Asia, to jointly launch a structured open-source initiative—the Aptos Move Secure & General Purpose Base Library initiative.
The initiative aims to provide a set of rigorously audited, secure, reliable, modular, and easy-to-use standard components for Aptos smart contract development, thereby accelerating the development and maturity of the Aptos ecosystem. Movemaker has long served the Aptos Chinese developer community and understands the actual needs of local developers; while alcove has gathered a group of technical members with experience in Move underlying development, auditing, and toolchain construction, which can lay a solid foundation for the research and governance of this foundational library.
The proposal has been launched on GitHub and is now open for co-construction to all Aptos developers.
Welcome to click to view details and submit PR:
Next, we will introduce the goals, mechanisms, and ways to participate in this initiative—hoping you will be not only a reader but also a collaborator.
We have redesigned based on Aptos's innovations.
This initiative is a long-term, systematic open-source project aimed at the entire Aptos developer ecosystem. We are gathering resources, standardizing processes, and building mechanisms, with the sole purpose of creating a "gold standard library" for Aptos that is widely adopted, trusted, and audited, similar to OpenZeppelin for EVM.
In the EVM ecosystem, OpenZeppelin Contracts has been proven to effectively enhance security, accelerate development efficiency, and lower the entry barrier. However, we are well aware that Move and Aptos are not mirrors of EVM; they have fundamental differences in language paradigms, account models, state management, upgrade mechanisms, and execution architectures. Therefore, the resource-oriented model of Move, bytecode verifiers, formal verification support, as well as Aptos's parallel execution and native package upgrade mechanism, provide us with an excellent opportunity to build a foundational library with higher security and stronger performance.
The following is the complete proposal for this plan. We invite every Builder building on Aptos to participate deeply and also welcome you to spread this infrastructure concept.
What we have prepared: from funding, organization to mechanisms.
· Initial funding: Movemaker provides a first round of $200,000 in funding for:
Development and maintenance of core modules.
o Professional security audit fees.
o Developer Incentives and Bounty Program.
o Document writing and community operation support.
o Necessary toolchain and infrastructure construction.
· Development Organization: Alcove coordinates community development resources as the project leader, responsible for managing processes, providing technical support, and conducting security audits.
· Multi-party resource support: Various project parties, independent developers, and security audit companies will participate in the research, testing, and review of the basic modules in phases;
· Governance Mechanism: PR review, testing verification, Move Prover verification, pre-audit, bounty incentives, fully transparent execution throughout the process.
What we want to build: The infrastructure base of the Move ecosystem
· Build a core infrastructure library: Develop a set of Move modules covering core functions such as access control, upgrade management tools, DeFi modules, and general tools.
· Enhance ecological security: Utilize the inherent security features of the Move language (such as reentrancy prevention and strong typing) in conjunction with rigorous testing, formal verification, and independent security audits to ensure the highest security of the library.
· Encourage developer adoption: By providing high-quality, easy-to-understand documentation, tutorials, and examples, lower the learning curve of the Move language to attract more developers into the Aptos ecosystem.
· Establish a community co-construction model: Create an open and collaborative development process that encourages project teams, independent developers, and security audit companies to participate together, ensuring the quality, relevance, and sustainability of the library.
· Accelerate ecological development: Provide a reliable foundation for Aptos dApp developers, accelerate innovation, reduce the cost of reinventing the wheel, thus promoting the prosperity of the Aptos ecosystem.
How to participate in co-building? Every developer can become a promoter.
We believe that a truly trustworthy and reusable smart contract foundation must be built collaboratively by the ecosystem. Therefore, this initiative is open to all Aptos developers, whether you come from a team project or are an independent creator, to participate in the co-construction in a suitable manner.
· How project parties can participate: If you are a developer team of an existing project on Aptos, you can participate in the development, testing, and integration of core modules, transforming the pitfalls you have encountered and the best practices you have used in actual business into reusable standard components for the entire ecosystem. This not only enhances the security of your project but also contributes to the entire ecosystem.
· Independent developers also have a stage: If you are a Move enthusiast or an independent developer, we will continuously recruit module contributors through code challenges, bounty programs, and public task pools. Alcove will provide a complete contribution guide, development documentation, and technical support to help you join from 0 to 1.
· The participation method is simple and clear: all module development will be conducted publicly on GitHub, using the Pull Request (PR) mechanism. All code must pass automated testing and Move Prover verification, and be merged after review by core contributors. Auditing and version management mechanisms will also be executed simultaneously to ensure that every line of code can withstand scrutiny.
What tools and resources will we provide?
In order to lower the participation threshold and improve development efficiency, we will also build a complete set of ecological tools and support systems.
· Core module library: includes reusable components such as access control, module upgrades, DeFi basic logic, security tools, etc.;
· Multi-language SDK: Supports languages such as TypeScript, Python, Rust, Go, etc., simplifying on-chain operations;
· Standardized API: Provides application developers with easier access to on-chain data querying and interaction interfaces;
· Developer tool support: including VS Code plugins, CLI extensions, debugging tools, etc., to improve the coding experience;
· Project templates and sample code: ready-to-use template projects that allow you to quickly get started building your own applications.
Whether you are a beginner or an experienced developer, as long as you care about the technological future of Aptos, this basic library and tool system will be an indispensable starting point for you.
Conclusion: The starting point of an ecosystem-level infrastructure
Building an OpenZeppelin-inspired Move open-source library on Aptos is a project with long-term strategic value for the entire ecosystem. We will make full use of the advantages of the Move language in terms of resource security and strong typing, combined with the parallel execution and native upgrade capabilities of the Aptos platform, to create a more secure, efficient and friendly smart contract development environment for developers.
By combining the security rigor of OpenZeppelin with the technological innovation of Move/Aptos, this foundational library is expected to become the cornerstone of Aptos dApp development, reducing the cost of redundant development, accelerating product iteration, and driving the ecosystem towards a more professional and robust direction.
The success of this open source initiative is the result of the combined efforts of all Builders. We sincerely invite Aptos project teams, independent developers, and security experts to join us and work together to polish a set of underlying standards that are truly trusted, reusable, and auditable. If you're building the future on Aptos, then this base library will be yours too.
About Movemaker
Movemaker is an official community organization authorized by the Aptos Foundation and jointly initiated by Ankaa and BlockBooster, focusing on promoting the construction and development of the Aptos Chinese-speaking community. As the official representative of Aptos in the Chinese-speaking region, Movemaker has received millions of dollars in funding and resources from the Aptos Foundation, and is committed to building a diverse, open, and prosperous Aptos ecosystem by connecting developers, users, capital, and many ecosystem partners.
From DeFi, AI to payments, stablecoins, and RWA, Movemaker is committed to supporting innovative projects in practical applications and promoting the connection between Aptos technology and the real world. As an important bridge for Aptos in Asia, Movemaker is inspiring more development power to join the Aptos ecosystem with localized narratives and a global perspective.
About alcove
alcove is the first Move Chinese developer community in Asia co-built by Aptos, dedicated to supporting developers in using the Move language to build the next generation of Web3 applications. The community brings together a large number of developers with underlying Move development, contract security, and toolchain building capabilities, and has contributed practical experience in multiple Aptos projects.