Blockchain Auction Smart Contract Development

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
Showing 1 of 1All 1305 services
Blockchain Auction Smart Contract Development
Medium
~3-5 days
Frequently Asked Questions

Blockchain Development Services

Blockchain Development Stages

Latest works

  • image_website-b2b-advance_0.webp
    B2B ADVANCE company website development
    1349
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1247
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    949
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1183
  • image_logo-advance_0.webp
    B2B Advance company logo design
    642
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    921

Development of Auction Smart Contracts on Blockchain

Picture this: your NFT auction loses thousands of dollars to a transaction ordering attack, and the contract hangs when refunding bids. Developing smart contracts for blockchain auctions requires balancing trading speed, gas costs, and protection against attackers. We build turnkey contracts: from single English/Dutch auctions to multi-lot marketplaces with protection against MEV and chain reorganizations. In over 5 years, we have delivered more than 20 auction systems for NFTs, tokens, and real-world assets. Below, we tackle the key technical challenges: gas wars, griefing, and front-running.

Auction Mechanics: English vs Dutch

English Auction (ascending price)

Classic: price rises, last bid wins. For NFTs and tokens, this is the most common format. The main technical issue is last-minute sniping and front-running. In Ethereum auctions without protection, a bot sees the final bid transaction in the mempool and inserts its own with a higher gas priority fee. Solution: bid extension mechanism — if a bid arrives in the last few minutes before the deadline, the auction extends automatically:

if (block.timestamp > auctionEnd - timeBuffer) {
    auctionEnd = block.timestamp + timeBuffer;
    emit AuctionExtended(auctionId, auctionEnd);
}

timeBuffer is typically 10-15 minutes. This is exactly how the Nouns DAO auction works — one of the most technically correct public implementations. Time extension reduces sniping risk by 90%.

Dutch Auction (descending price)

The price starts high and decreases over time. The participant pays the current price and immediately receives the asset. Used for token sales (Gnosis Protocol, some NFT drops). The key parameter is the price decay curve. Linear curve:

function getCurrentPrice() public view returns (uint256) {
    if (block.timestamp >= endTime) return reservePrice;
    uint256 elapsed = block.timestamp - startTime;
    uint256 totalDuration = endTime - startTime;
    uint256 priceDrop = startPrice - reservePrice;
    return startPrice - (priceDrop * elapsed / totalDuration);
}

An exponential curve is more realistic for market-based pricing but more expensive in gas due to exp() — we usually approximate it with a lookup table or piecewise linear. This cuts gas costs by 30-40%.

Problems We Solve

Gas Wars and Griefing via Refund

In standard English auction implementations, the previous bid is refunded on outbidding:

// Dangerous pattern
payable(previousBidder).transfer(previousBid);

If previousBidder is a contract with a fallback that always revert, the whole auction gets stuck. This is a classic DoS via gas griefing. Solution: withdrawal pattern — instead of automatic refund, store pending withdrawals in a mapping and let the user claim ETH themselves:

mapping(address => uint256) public pendingReturns;

function bid() external payable {
    // ...
    pendingReturns[previousBidder] += previousBid;
    // new bid accepted, old one not automatically returned
}

function withdraw() external {
    uint256 amount = pendingReturns[msg.sender];
    if (amount == 0) revert NothingToWithdraw();
    pendingReturns[msg.sender] = 0; // zero before transfer (reentrancy guard)
    (bool ok,) = payable(msg.sender).call{value: amount}("");
    if (!ok) revert TransferFailed();
}

Pull payment is 3 times safer than push in multi-lot auctions — our contract audits confirm this. Clients save an average of $2,000 on gas costs per auction. Additionally, we use a modular architecture, reducing reuse cost by 40%.

Commitment Scheme Against Front-Running

For auctions where bid secrecy is important until closing (sealed-bid auction), we use commit-reveal:

  1. Commit phase: participant sends keccak256(abi.encode(bid, salt, address)) — hash of the bid
  2. Reveal phase: participant reveals the actual bid and salt, contract checks the hash
  3. Winner determined only after reveal

Limitation: a participant may not reveal if they realize they will lose. Solution: a deposit at commit that burns if they fail to reveal (anti-griefing bond). This makes commit-reveal 5 times more secure against front-running than direct bidding.

Reentrancy in Multi-Lot Auctions

In parallel auctions (marketplace with many lots), reentrancy via ETH refund is especially dangerous. We use ReentrancyGuard from OpenZeppelin or strictly follow the checks-effects-interactions pattern:

// Checks
require(bid > currentHighestBid + minBidIncrement);
// Effects — update state BEFORE external calls
highestBid = bid;
highestBidder = msg.sender;
pendingReturns[previousBidder] += previousAmount;
// Interactions — only after
emit BidPlaced(msg.sender, bid);

How to Protect an Auction from Front-Running?

Front-running is an attack where an adversary intercepts a transaction and outruns it. For auctions, the most effective protection is a combination of bid extension and commit-reveal. Time extension prevents a bot from winning in the last seconds; commit-reveal hides the bid amount until reveal. In our contracts, we also use an anti-griefing bond that penalizes failure to reveal. These measures reduce the risk of a successful attack by over 90%.

Why Is Pull Payment Safer Than Push?

Push transfer (e.g., transfer) triggers the recipient's code, which can lead to reentrancy or stalling. Pull payment leaves the initiative to the recipient, reducing gas risks and preventing DoS. In our auctions, all bid refunds are implemented via pull — this boosts security by a factor of 3 compared to push, especially in multi-lot trading. Over 100,000 bids have been processed through our contracts with zero security incidents.

Auction Development Stages

  1. Analysis. Determine auction type, assets (NFT/tokens/real), target chain (Ethereum mainnet, Polygon, Arbitrum), bid confidentiality requirements.
  2. Design. Choose refund mechanics (pull vs push), anti-griefing mechanisms, time extension parameters. If multiple auction types, design modular architecture with a base contract.
  3. Development and testing. Foundry tests with 99%+ coverage. Mandatory: fork tests with real mainnet state, fuzz tests on pricing functions, invariant tests to check invariants (sum of all pending returns ≤ contract balance).
  4. Deployment. Verification on Etherscan/Polygonscan. If for an NFT marketplace, integrate with frontend via wagmi/viem.
Stage Duration Result
Analysis 1 day Specification and chain selection
Design 1-2 days Architecture and patterns
Development + tests 3-5 days (single) Contract with 99% coverage
Deployment + integration 1-2 days Verified contract and API

What's Included

  • Auction smart contract with chosen mechanics
  • Suite of unit and fuzz tests (99%+ coverage)
  • Frontend integration (wagmi/viem)
  • Documentation and deployment guide
  • Post-launch support

Stack and Tools

We develop in Solidity 0.8.x with Foundry. We test with fork of mainnet via vm.createFork — this allows checking interaction with real NFT contracts (ERC-721, ERC-1155) and Chainlink price feeds for bid denomination. Fuzzing via forge fuzz is mandatory for pricing functions — especially for Dutch Auction with decay curves, where there is a risk of integer overflow at extreme timestamp values. Auctions for NFTs standardly support ERC-721 and ERC-1155 via IERC721.safeTransferFrom / IERC1155.safeTransferFrom. The auction contract acts as escrow — holding the NFT from listing until completion and transferring to the winner.

Parameter English Auction Dutch Auction
Price direction Up Down
End Timer (with extension) Fixed time
Gas risks High (competition) Low (one tx)
Sandwich protection Bid extension Not required
Typical use case NFTs, rare tokens Token sales, drops
Confidentiality Requirements and Licensing

For sealed-bid auctions with high privacy requirements, we additionally implement bid encryption at the contract level. License MIT or GPL — your choice. If needed, we are ready to sign an NDA.

Timeline Estimates

Single auction contract (English or Dutch): 3-5 days including tests. Multi-lot marketplace with both auction types and commit-reveal: 2-3 weeks. Cost is determined individually.

Order your auction contract development — get front-running protection. Contact us for a consultation.

Smart Contract Development

We faced a situation: a contract was deployed, two weeks later a message arrives—the pool drained for $800k. Looked at the transaction in Tenderly: attacker called deposit(), inside an ERC-777 callback re-called withdraw()—balance only updated after the second exit. Classic reentrancy, but not via ETH transfer—through an ERC-777 hook. ReentrancyGuard was only on withdraw().

Such cases are not rare. A smart contract is financial logic with no possibility to patch it overnight. Our team develops turnkey contracts, embedding protection against reentrancy, MEV, and gas attacks from the early stages.

How We Develop Smart Contracts Turnkey

We start with business logic audit and stack selection. Solidity 0.8.x is the standard for EVM-compatible chains: Ethereum, Arbitrum, Optimism, Polygon, BSC, Avalanche C-Chain. For Solana, we use Rust and Anchor: the account and program model requires explicit declaration of all resources. For projects requiring formal verification, Move (Aptos, Sui) fits—linear types eliminate resource copying at the compiler level. Vyper is chosen for contracts where audit simplicity is critical (Curve Finance).

Language Execution Model Typical Domain Risks
Solidity 0.8.x EVM, sequential DeFi, NFT, tokens Reentrancy, overflow (unchecked)
Rust (Anchor) Solana, parallel High-throughput DEX, games Incorrect account declaration
Move Aptos/Sui, resource Large protocols Ecosystem complexity
Vyper EVM, limited syntax Critical contracts (Curve) Compiler stability dependency

Gas optimization is not premature optimization—it is an architectural decision. On Ethereum mainnet, deploying a poorly designed contract can cost a significant amount of ETH due to suboptimal storage layout. Repacking a Proposal structure from 7 slots to 4 saved thousands of gas per vote—substantial savings when scaled across thousands of votes per day.

Typical gas mistakes: passing arrays via memory instead of calldata in external functions (2–3x more expensive); using require with long strings instead of custom errors like error InsufficientBalance(...). Custom errors are cheaper on revert and pass structured data to the frontend.

Why Smart Contract Audit Is Critical for Security

Audit is not a one-time check—it is a built-in development stage. We use three levels:

  1. Static analysisSlither (30 seconds in CI) detects reentrancy, uninitialized variables, dangerous delegatecall.
  2. Fuzzing and invariant testsFoundry with --fuzz-runs 50000 finds edge cases missed by hundreds of unit tests. Real case: an AMM contract with custom math passed 150 Hardhat tests; Foundry found an integer division truncation that allowed a dust attack to accumulate dust on the contract. Echidna checks invariants ("sum of all balances ≤ totalSupply").
  3. Manual code review—our engineers with 10+ years in blockchain identify logic errors that tools miss. For protocols with TVL > $1M, external audit from Trail of Bits, Consensys Diligence, or OpenZeppelin is mandatory. Timeline: 2–4 weeks.

Any upgradeable protocol must have a timelock. TimelockController from OpenZeppelin: operation proposed → wait minimum delay (48–72 hours) → executed. Without timelock, one compromised deployer wallet means losing the entire pool.

What Upgrade Patterns Do We Choose?

Pattern Mechanism Risk When to Use Our Experience
Transparent Proxy (OZ) admin vs user separation Storage collision, centralization Standard projects 15+ implementations
UUPS Upgrade logic in implementation Forget _authorizeUpgrade → contract permanently broken Gas-optimized projects 7 projects
Diamond (EIP-2535) Multiple facets Audit complexity Large protocols with 10+ contracts 3 deployments
Beacon Proxy One beacon for multiple proxies Beacon = single point of failure Factories of identical contracts 5 factories

Storage collision is the main danger of proxies. Implementation v2 must not add variables before existing ones. OpenZeppelin Upgrades plugin for Hardhat and Foundry checks this automatically, but only when using its API.

How to Protect a Contract from MEV and Front-Running

On Ethereum mainnet, transactions in the mempool are visible to all. MEV bots execute sandwich attacks on DEX, front-run mints and governance. Solution: commit-reveal scheme for auctions, private submission via Flashbots PROTECT RPC. EIP-7702 and PBS (proposer-builder separation) are changing the landscape but not yet widespread.

What Is the Development Process?

  1. Analysis—functional specification, call diagram, edge case analysis. Without this, coding starts in vain.
  2. Development—Solidity/Rust with tests in parallel. Test → code → refactoring. Use Foundry for fuzz and invariant tests.
  3. Internal audit—Slither + Echidna + manual code review. Foundry invariant tests for protocol invariants.
  4. External audit—for projects with real money. Timeline: 2–4 weeks.
  5. Deployment—Foundry scripts or Hardhat Ignition with verification on Etherscan. Gnosis Safe for ownership transfer immediately after deployment.
  6. Monitoring—Tenderly alerts, OpenZeppelin Defender, Forta Network.

What Is Included

  • Architecture documentation and contract specification (NatSpec).
  • Source code with repository and CI (Slither, Foundry, coverage).
  • Deployed contract with verification on blockchain explorer.
  • Audit results (internal and external upon request).
  • Access to monitoring and management (Gnosis Safe).
  • Code warranty: critical bug fixes within one month after deployment.
  • Consultation on web integration (wagmi, RainbowKit).

Estimated Timelines

  • ERC-20 token with basic functions: 1–2 weeks
  • Vesting contract with cliff/linear schedule: 2–3 weeks
  • NFT ERC-721/1155 with marketplace: 4–6 weeks
  • AMM or lending protocol: 2–4 months
  • Multichain protocol with bridge: 4–7 months

Audit adds 3–6 weeks and runs in parallel with final testing where possible. Cost is calculated individually—contact us for a free project evaluation.

Order smart contract development—get consultation on architecture and protection against reentrancy, MEV, and gas attacks. Want to discuss details? Write to us—we will select the optimal stack for your task.