We design and develop ERC-721 contracts that won't break. A typical story: a project deploys a collection, only to discover a month later that royalties aren't being paid on OpenSea (because EIP-2981 wasn't implemented), metadata is loaded from a centralized server (which goes down), and minting via _safeMint instead of _mint allows reentrancy through onERC721Received in custom recipient contracts. Result: loss of community trust, lawsuits, and contract rewrites. From our practice: in one project, the absence of EIP-2981 led to a 15% loss of royalties on secondary sales—about 120 ETH (~$300k). A proper ERC-721 is not just interface compliance; it's understanding how marketplaces, wallets, and aggregators interact with the contract. We offer end-to-end development with audit and support—contact us for a project assessment.
Baseline Implementation via OpenZeppelin
The starting point is ERC721 from OpenZeppelin 5.x. We don't write the standard from scratch: OZ has passed dozens of audits; any custom implementation adds risk without obvious benefit. We extend through inheritance:
contract MyNFT is ERC721, ERC721Enumerable, ERC721URIStorage, ERC2981, Ownable {
uint256 private _nextTokenId;
uint256 public constant MAX_SUPPLY = 10000;
constructor(address initialOwner)
ERC721("My Collection", "MYC")
Ownable(initialOwner) {}
}
ERC721Enumerable is needed if the contract must return a list of tokens owned by an address (tokenOfOwnerByIndex). It adds ~20K gas per transfer due to additional storage operations. If the marketplace doesn't require it, it's better to omit it and read data via The Graph.
ERC721URIStorage allows storing a separate URI for each token. An alternative is the baseURI + tokenId pattern, where all tokens use a single base path. The second option is cheaper in gas during mint.
EIP-2981: Royalties at the Contract Level
_setDefaultRoyalty(royaltyReceiver, royaltyBps); // bps: 500 = 5%
OpenSea and most modern marketplaces read royaltyInfo() from EIP-2981. Older marketplaces used an off-chain config via Operator Filter Registry—this approach is outdated. Implementing EIP-2981 is the minimum standard for any modern collection.
Important: royaltyBps is not enforced on-chain; it's an informational standard. Marketplaces may ignore it. For enforced royalties, custom transfer hooks are needed (EIP-2981 + transfer restrictions via operator whitelist).
Metadata and Storage
The token URI returns a JSON with fields name, description, image, attributes. Where to store—comparison of methods:
| Method |
Cost |
Decentralization |
Durability |
Best for |
| IPFS |
Low |
Yes (with pinning) |
Requires pinning |
Most collections |
| Arweave |
Medium (one-time) |
Yes |
Permanent |
Long-term projects |
| On-chain |
High |
Full |
Permanent |
Generative art (<1000 tokens) |
| Centralized server |
Low |
No |
Depends on operator |
Pre-reveal phase |
Centralized server is only for the pre-reveal phase. After reveal, the URI should switch to IPFS. We implement via a revealed flag and two baseURIs.
How to Optimize Minting and Reduce Gas?
Standard _safeMint is more expensive than _mint due to the IERC721Receiver check on contract addresses. If minting is intended only for EOA, use _mint. If contract wallets (multisig) need support, use _safeMint with an explicit reentrancy guard.
For batch minting, use ERC-721A (Azuki) instead of the standard OZ ERC-721. ERC-721A stores owner data only for the first mint in a batch; subsequent tokens are deduced—saving up to 70% in gas when minting 10+ tokens. For a collection of 10,000 tokens, this saves about 50 ETH (~$100k) in fees. Trade-off: the first token transfer in a batch is slightly more expensive due to lazy initialization.
Gas comparison of mint methods:
| Method |
Gas per 1 mint |
Gas per 10 mint |
Reentrancy protection |
_mint |
~60k |
~600k |
No |
_safeMint |
~80k |
~800k |
Partial |
| ERC-721A |
~60k |
~150k |
No (need guard) |
What Other Vulnerabilities Need to Be Closed?
Reentrancy via onERC721Received
If a recipient contract implements IERC721Receiver, it can call back into your contract during mint. Solution: use OpenZeppelin's ReentrancyGuard or _mint and check balance after transfer.
Unchecked Low-Level Calls
Avoid direct call without checking the return value. In modern Solidity, the compiler requires explicit success handling.
Process of Work
-
Analysis (0.5-1 day). Determine supply, mint mechanics (public/whitelist/Merkle), royalties, whether Enumerable and URIStorage are needed, target chain.
-
Design and Development (1-2 days). Write the contract in Solidity 0.8.x with tests in Foundry. Prepare deployment and verification scripts.
-
Audit and Gas Optimization (0.5 day). Check with static analyzer Slither, fuzz testing Echidna. Optimize gas: remove redundant storage variables, use unchecked blocks.
-
Testnet Deployment (0.5 day). Sepolia, verify interaction with marketplaces.
-
Mainnet Deployment and Support (1 day). Verify on Etherscan, transfer ownership, monitor. Post-deployment support for 30 days.
What's Included in the Work
- Full source code of the contract with comments.
- Documentation on functions, events, and modifiers.
- Deployment and verification scripts for Etherscan.
- Instructions for setting up metadata (IPFS/Arweave).
- Team training: checking mint, revealing.
- Technical support for 30 days after deployment.
Advantages of Working with Us
Our team has 7+ years of experience in blockchain development, with over 50 smart contract projects completed. We don't just copy the OpenZeppelin template—we adapt each collection to specific marketplace requirements, gas limits, and distribution models. Get a consultation—send us a description of your project, and we'll estimate timelines and costs.
// Example contract with whitelist and reveal
contract AdvancedNFT is ERC721, ERC2981, Ownable {
using MerkleProof for bytes32[];
bytes32 public whitelistRoot;
string public baseURI;
string public placeholderURI;
bool public revealed;
uint256 public mintPrice = 0.08 ether;
function whitelistMint(bytes32[] calldata proof) external payable {
require(MerkleProof.verify(proof, whitelistRoot, keccak256(abi.encodePacked(msg.sender))));
_safeMint(msg.sender, _nextTokenId++);
}
function reveal(string memory _newBaseURI) external onlyOwner {
revealed = true;
baseURI = _newBaseURI;
}
}
Estimated timelines: basic ERC-721 with royalties and IPFS metadata—2-3 days; with whitelist, reveal, and mint site—5-7 days. Cost is calculated individually. Order development of an ERC-721 contract with audit and support.
Why does NFT marketplace development require a comprehensive approach?
We see that at first glance, an NFT contract looks simple: ERC-721, mint(), IPFS for metadata — that's it. In practice, it's this 'simplicity' that hides most problems — from bots buying out the entire mint in the first block to broken royalties on the secondary market. We often hear: Make a collection like others in a week — and a month later it turns out gas has tripled due to an unoptimized for loop, or OpenSea cannot see metadata after reveal. We know each of these pitfalls and build processes to avoid them.
Over 5 years of working with blockchains, we have implemented 40+ NFT projects, including marketplaces with dynamic attributes and cross-chain bridges. We have accumulated a library of proven templates — some of which we break down below.
Which standard to choose: ERC-721 or ERC-1155?
ERC-721 — each token is unique, one owner. Suitable for collections where each NFT has individual attributes and a direct owner → tokenId mapping.
ERC-1155 — multi-token standard: one contract holds both fungible and non-fungible tokens. It uses balanceOf(address, tokenId) instead of ownerOf(tokenId). A single transaction can transfer multiple different tokens via safeBatchTransferFrom. This saves gas on bulk operations — important for game items, tickets, edition collections. ERC-1155 is 2–3× more gas-efficient than ERC-721 for batch transfers.
| Criteria |
ERC-721 |
ERC-1155 |
| Token uniqueness |
Each token is unique |
One tokenId can have multiple copies |
| User balance |
Only ownerOf (one) |
balanceOf(address, tokenId) |
| Gas per transfer |
~25,000 gas |
~18,000 gas (batch even lower) |
| Batch operations |
No native support |
safeBatchTransferFrom |
| Ideal scenario |
Art collections, PFPs |
Games, tickets, editions |
Specific case: a game project with 50 types of items, each with a supply of 10,000. ERC-721 — 500,000 unique tokens, huge overhead on mappings. ERC-1155 — 50 tokenIds, balanceOf per player. Gas per transfer is 2–3 times lower, contract deployment is cheaper. For such tasks, we use OpenZeppelin ERC-1155 with custom modifications.
Metadata: on-chain vs IPFS vs centralized
The standard route is tokenURI() returning a link to a JSON with fields name, description, image, attributes. Three storage options:
- Centralized server — cheapest and most flexible. Risk: server goes down, company closes — NFT loses metadata. Not suitable for collections claiming long-term value.
- IPFS + Pinning — content-addressed storage, the link is bound to the content hash. Pinata or NFT.Storage provide pinning. Important: IPFS does not guarantee availability by itself — an active pinning service is needed. If it shuts down, data may disappear if no one keeps a copy.
- On-chain metadata — base64-encoded SVG or JSON directly in tokenURI. Maximum reliability, but expensive: for a collection of 10,000 tokens, gas costs may exceed $5,000. Suitable for generative art projects where visuals are generated from on-chain attributes (Nouns, Loot).
For most collections, we choose IPFS with Pinata for images + on-chain attributes for traits — a good balance. We validate files against a JSON Schema before upload; a typical mistake is unescaped quotes, causing marketplaces to display a blank screen.
Typical JSON metadata format
{
"name": "Token #1",
"description": "A unique NFT",
"image": "ipfs://QmHash/image.png",
"attributes": [{"trait_type": "Background", "value": "Red"}]
}
Dynamic NFT: metadata that changes
Dynamic NFT updates metadata in response to external events — match results, character levels, real-world data via Chainlink. Architecturally, it's a combination: the smart contract stores state → tokenURI() generates metadata from the state on-chain. Caching problem: OpenSea and other marketplaces aggressively cache. The standard invalidation mechanism is a MetadataUpdate(tokenId) event from ERC-4906. OpenSea listens to this event and clears the cache. Without it, updated metadata may not appear for weeks.
Chainlink Automation (formerly Keepers) for automatically updating state on the contract on a schedule or condition — a standard solution for dynamics.
How to protect mint from bots?
Allowlist via Merkle tree — standard. The list of addresses is hashed into a Merkle root, stored in the contract. During mint, the user provides a Merkle proof — the contract verifies without storing the full list. We use OpenZeppelin MerkleProof library.
Reveal mechanism — on mint, a placeholder is issued; real traits are revealed after the sale ends. Otherwise, bots can scan pending transactions and snipe rare traits via frontrunning. But reveal requires a commitment scheme — the random seed must be fixed before mint or use Chainlink VRF.
Chainlink VRF for fair randomization of traits. VRF request at mint → callback with verifiable random number → assign traits. This adds ~2 transactions and latency but guarantees fairness. Chainlink VRF v2.5.
Rate limiting — require(mintedPerWallet[msg.sender] < maxPerWallet). Does not protect against multi-wallets but raises attack cost. For premium projects, we often add proof-of-work directly in the contract (via EIP-2612 signatures).
Royalties: the real market state
ERC-2981 — on-chain royalty standard. The contract returns (recipient, amount) for any sale price via royaltyInfo(tokenId, salePrice). Marketplaces query this on each sale. Problem: adherence to royalties is voluntary for marketplaces. Blur launched with zero royalties, triggering a wave of other platforms. The situation has partially stabilized: OpenSea supports ERC-2981, Blur added optional ones. Royalty payments can represent 5–10% of secondary sale volume, so getting them right matters.
Attempts to enforce royalties on-chain by restricting transfers only to approved marketplaces (operator filtering) were proposed by OpenSea via OperatorFilterRegistry. This breaks composability — you cannot transfer an NFT through a custom contract. Most serious projects have abandoned this approach. For projects where royalties are critical, we build a custom marketplace within the ecosystem plus an incentive structure for users to trade there.
Lazy minting and gas-free mint
Gas-free mint via signature: the creator signs a voucher (tokenId, tokenURI, price, signature), the buyer provides the voucher in mint() — the contract verifies the signature via ECDSA.recover() and mints. Works on OpenSea via their Seaport protocol. Seaport is an optimized contract with minimal gas usage. Understanding its mechanics is important when integrating custom marketplace logic.
Stack for NFT projects
- Contracts: Solidity 0.8.x, OpenZeppelin ERC721Enumerable or ERC721A (Azuki) for gas-optimized batch mint, ERC1155 from OpenZeppelin
- VRF and automation: Chainlink VRF v2.5, Chainlink Automation
- Storage: Pinata (IPFS pinning), NFT.Storage, Arweave for permanent storage
- Marketplace: OpenSea Seaport protocol, custom integration
- Frontend: wagmi v2 + viem, RainbowKit for wallet connection, React + TypeScript
Development process
-
Mint mechanics design — allowlist, public sale, price curve (Dutch auction or fixed), limits per wallet
-
Contracts — with Foundry fuzz tests on mint limits, Merkle proof verification, royalty calculations
-
IPFS deployment — upload metadata and images before reveal, pin on at least two services
-
Reveal — if using Chainlink VRF, test on testnet mandatory: VRF subscription must be funded with LINK tokens
-
Marketplace integration — verify collection on OpenSea, configure royalties, test MetadataUpdate events
-
Deployment and monitoring — Tenderly for reentrancy detection, Etherscan API for contract verification, set up event alerts
Deliverables
- Source code of smart contracts (Solidity, Rust for Solana) with comments
- Test suite (Foundry/Hardhat) with ≥90% coverage
- Deployment documentation and integration instructions
- Access to pinning services (Pinata/Pinfluence)
- Metadata generation scripts (Python/JS)
- Support during marketplace verification
- 30 days of technical support after deployment
Timeline
| Task type |
Approximate timeline |
| Basic ERC-721 without reveal |
from 2 weeks |
| NFT collection with allowlist, reveal, VRF |
from 5 weeks |
| ERC-1155 with marketplace and royalties |
from 6 weeks |
| Dynamic NFT with external data |
from 8 weeks |
Cost is calculated individually after auditing your task. Send a brief with your project description — we will provide a transparent estimate within 3 business days. For regular clients, there is a flexible discount system on batch orders. If you need a gas-optimized contract, order a free gas analysis. Get a consultation on marketplace architecture — leave a request, and we will evaluate your project in three days.