Dan Mugisho M.

prediction markets and perps were never supposed to live separately traders want one wallet, one margin system, one feed. long BTC. hedge election risk. trade narratives in real time. CoinicX is the first place you can do all of it. live now. powered by Hyperliquid. https://t.co/hWlvJsoS0s

RustVault is officially complete! The last piece was the data layer: aggregated order stats, cross-wallet activity, cursor pagination of every list endpoint, and a WebSocket stream for real-time order updates over Tokio. Then came the benchmarks: 10,000 concurrent connections using wrk, and a p95 response time under 5ms. The full codebase is open source: auth, orders, wallet, data, everything... Kindly give it a star. https://t.co/8h3pbJE3mK #rust #buildinpublic #openSource #rustvault

Phase 4 of building RustVault in public Wallet service is fully implemented! It uses a double-entry ledger model: every operation generates a transaction record, and the balance is always computed from the log, just like in real financial systems. No single column to corrupt, no chance for the balance to go out of sync. Concurrent withdrawals are handled with SELECT FOR UPDATE. Rust’s type system made modeling the constraints way cleaner than I expected. https://t.co/8h3pbJE3mK #rust #buildinpublic #openSource #rustvault

Phase 3 of building RustVault in public Order service is now complete! It now supports full CRUD operations, cursor-based pagination, status filtering, and date-range queries. Each transition gets checked by the Rust service layer. If it is invalid, it does not even reach the database. Integration tests cover all possible transitions. https://t.co/8h3pbJE3mK #rust #buildinpublic #openSource #rustvault

Phase 2 of building RustVault in public Authentication is an aspect that many APIs struggle with. Here's how I approached it in RustVault. Passwords? Argon2 only, no bcrypt, no MD5, never in plain text. JWT access tokens expire after 15 minutes; refresh tokens last 7 days. API keys are random 32-byte hex strings (prefixed with rv_), and I only store the SHA-256 hash: raw keys are only displayed once. Each key has its own scope. And Redis handles rate limiting per key: 100 requests every 60 seconds, using a rolling window. A middleware extractor handles both Bearer tokens and X-API-Key headers, so managers don't have to worry about authentication. https://t.co/8h3pbJEBci #rust #buildinpublic #openSource #rustvault

Phase 1 of building RustVault in public Every solid project starts with decisions no one ever notices. Before I even wrote a line of business logic for RustVault, I set up a Cargo workspace with five crates: api, auth, orders, wallet, and data. Each service ran in its own sandbox from day one. Actix Web was up, SQLx plugged into Postgres, automated migrations on startup, and CI humming along with every push. Skipping this step can cost you later, I learned that the hard way on past projects, so this time, I didn’t. #rust #buildinpublic #openSource #rustvault

I'm building RustVault: a B2B REST API built from scratch in Rust. It features JWT authentication (access and refresh tokens), Stripe-style scoped API keys, secure password hashing with Argon2, and per-key rate limiting powered by Redis. The stack runs on Actix Web and SQLx with Postgres under the hood. I structured everything as a Cargo workspace, so each service (auth, orders, wallet, data) lives in its own crate, keeping boundaries clean and code easy to maintain. https://t.co/33gPZALN9x

Rust 1.80.0 is now available! 🦀🌈 This release brings you LazyCell, LazyLock, checked cfg names & values, exclusive ranges in patterns, IntoIterator for Box<[T]>, Option::take_if, split_at_checked, and more! Check out the announcement and release notes: https://t.co/0FjKCyHA9A