Update GUIDELINES.md

Co-authored-by: Ernesto García <ernestognw@gmail.com>
2023-07-04 17:47:41 -03:00 · 2023-07-03 12:32:45 -03:00 · 2023-07-03 12:05:50 -03:00 · 2023-07-01 01:36:10 -03:00 · 2023-06-30 16:52:45 -03:00 · 2023-06-30 13:48:37 -03:00
537 changed files with 9753 additions and 17980 deletions
--- a/.changeset/angry-ties-switch.md
+++ b/.changeset/angry-ties-switch.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`TimelockController`: Changed the role architecture to use `DEFAULT_ADMIN_ROLE` as the admin for all roles, instead of the bespoke `TIMELOCK_ADMIN_ROLE` that was used previously. This aligns with the general recommendation for `AccessControl` and makes the addition of new roles easier. Accordingly, the `admin` parameter and timelock will now be granted `DEFAULT_ADMIN_ROLE` instead of `TIMELOCK_ADMIN_ROLE`. ([#3799](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3799))
--- a/.changeset/beige-buses-drop.md
+++ b/.changeset/beige-buses-drop.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`Initializable`: optimize `_disableInitializers` by using `!=` instead of `<`. ([#3787](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3787))
--- a/.changeset/big-plums-cover.md
+++ b/.changeset/big-plums-cover.md
@ -0,0 +1,4 @@
+---
+'openzeppelin-solidity': major
+---
+Use `abi.encodeCall` in place of `abi.encodeWithSelector` and `abi.encodeWithSignature` for improved type-checking of parameters
--- a/.changeset/blue-horses-do.md
+++ b/.changeset/blue-horses-do.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC2771Forwarder`: Added `deadline` for expiring transactions, batching, and more secure handling of `msg.value`.
--- a/.changeset/blue-scissors-design.md
+++ b/.changeset/blue-scissors-design.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+`Math`: Make `ceilDiv` to revert on 0 division even if the numerator is 0
--- a/.changeset/bright-tomatoes-sing.md
+++ b/.changeset/bright-tomatoes-sing.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC20`, `ERC1155`: Deleted `_beforeTokenTransfer` and `_afterTokenTransfer` hooks, added a new internal `_update` function for customizations, and refactored all extensions using those hooks to use `_update` instead. ([#3838](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3838), [#3876](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3876))
--- a/.changeset/chilled-spiders-attack.md
+++ b/.changeset/chilled-spiders-attack.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC1155Supply`: add a `totalSupply()` function that returns the total amount of token circulating, this change will restrict the total tokens minted across all ids to 2\*\*256-1 .
--- a/.changeset/clever-pumas-beg.md
+++ b/.changeset/clever-pumas-beg.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`Ownable`: Add an `initialOwner` parameter to the constructor, making the ownership initialization explicit.
--- a/.changeset/curvy-shrimps-enjoy.md
+++ b/.changeset/curvy-shrimps-enjoy.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ReentrancyGuard`: Add a `_reentrancyGuardEntered` function to expose the guard status. ([#3714](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3714))
--- a/.changeset/curvy-suns-sort.md
+++ b/.changeset/curvy-suns-sort.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`Ownable2Step`: make `acceptOwnership` public virtual to enable usecases that require overriding it. ([#3960](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3960))
--- a/.changeset/early-oranges-raise.md
+++ b/.changeset/early-oranges-raise.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ERC721Wrapper`: add a new extension of the `ERC721` token which wraps an underlying token. Deposit and withdraw guarantee that the ownership of each token is backed by a corresponding underlying token with the same identifier.
--- a/.changeset/eighty-crabs-listen.md
+++ b/.changeset/eighty-crabs-listen.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': patch
+---
+
+Optimize `Strings.equal`
--- a/.changeset/famous-rules-burn.md
+++ b/.changeset/famous-rules-burn.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`EnumerableMap`: add a `keys()` function that returns an array containing all the keys. ([#3920](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3920))
--- a/.changeset/five-ducks-develop.md
+++ b/.changeset/five-ducks-develop.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`UUPSUpgradeable.sol`: Change visibility to the functions `upgradeTo ` and `upgradeToAndCall ` from `external` to `public`.
--- a/.changeset/five-poets-mix.md
+++ b/.changeset/five-poets-mix.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`TimelockController`: Add the `CallSalt` event to emit on operation schedule.
--- a/.changeset/flat-bottles-wonder.md
+++ b/.changeset/flat-bottles-wonder.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+Replace some uses of `abi.encodePacked` with clearer alternatives (e.g. `bytes.concat`, `string.concat`).
--- a/.changeset/flat-deers-end.md
+++ b/.changeset/flat-deers-end.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`Governor`: add a public `cancel(uint256)` function.
--- a/.changeset/four-adults-knock.md
+++ b/.changeset/four-adults-knock.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': patch
+---
+
+`ECDSA`: Use unchecked arithmetic for the `tryRecover` function that receives the `r` and `vs` short-signature fields separately.
--- a/.changeset/four-bats-sniff.md
+++ b/.changeset/four-bats-sniff.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`Governor`: Enable timestamp operation for blockchains without a stable block time. This is achieved by connecting a Governor's internal clock to match a voting token's EIP-6372 interface.
--- a/.changeset/fresh-birds-kiss.md
+++ b/.changeset/fresh-birds-kiss.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`Checkpoints`: library moved from `utils` to `utils/structs`
--- a/.changeset/funny-rockets-compete.md
+++ b/.changeset/funny-rockets-compete.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-Reformatted codebase with latest version of Prettier Solidity. ([#3898](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3898))
--- a/.changeset/gold-chicken-clean.md
+++ b/.changeset/gold-chicken-clean.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`Strings`: add `equal` method. ([#3774](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3774))
--- a/.changeset/grumpy-bulldogs-call.md
+++ b/.changeset/grumpy-bulldogs-call.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`Governor`: Optimized use of storage for proposal data
--- a/.changeset/grumpy-worms-tease.md
+++ b/.changeset/grumpy-worms-tease.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC1967Utils`: Refactor the `ERC1967Upgrade` abstract contract as a library.
--- a/.changeset/happy-falcons-walk.md
+++ b/.changeset/happy-falcons-walk.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`TransparentUpgradeableProxy`: Admin is now stored in an immutable variable (set during construction) to avoid unnecessary storage reads on every proxy call. This removed the ability to ever change the admin. Transfer of the upgrade capability is exclusively handled through the ownership of the `ProxyAdmin`.
--- a/.changeset/happy-socks-travel.md
+++ b/.changeset/happy-socks-travel.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`IERC5313`: Add an interface for EIP-5313 that is now final.
--- a/.changeset/healthy-squids-stare.md
+++ b/.changeset/healthy-squids-stare.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`Math`: optimize `log256` rounding check. ([#3745](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3745))
--- a/.changeset/heavy-drinks-fail.md
+++ b/.changeset/heavy-drinks-fail.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC20`: Remove `Approval` event previously emitted in `transferFrom` to indicate that part of the allowance was consumed. With this change, allowances are no longer reconstructible from events. See the code for guidelines on how to re-enable this event if needed.
--- a/.changeset/hip-beds-provide.md
+++ b/.changeset/hip-beds-provide.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+Move the logic to validate ERC-1822 during an upgrade from `ERC1967Utils` to `UUPSUpgradeable`.
--- a/.changeset/hot-coins-judge.md
+++ b/.changeset/hot-coins-judge.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+`Arrays`: Add `unsafeMemoryAccess` helpers to read from a memory array without checking the length.
--- a/.changeset/hot-plums-approve.md
+++ b/.changeset/hot-plums-approve.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+`GovernorTimelockControl`: Clean up timelock id on execution for gas refund.
--- a/.changeset/lemon-dogs-kiss.md
+++ b/.changeset/lemon-dogs-kiss.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`ERC20Votes`: optimize by using unchecked arithmetic. ([#3748](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3748))
--- a/.changeset/little-falcons-build.md
+++ b/.changeset/little-falcons-build.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+`EIP712`: Add internal getters for the name and version strings
--- a/.changeset/little-kiwis-ring.md
+++ b/.changeset/little-kiwis-ring.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`Multicall`: annotate `multicall` function as upgrade safe to not raise a flag for its delegatecall. ([#3961](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3961))
--- a/.changeset/lovely-dragons-appear.md
+++ b/.changeset/lovely-dragons-appear.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`IERC4906`: Add an interface for ERC-4906 that is now Final.
--- a/.changeset/lovely-geckos-hide.md
+++ b/.changeset/lovely-geckos-hide.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+Replace revert strings and require statements with custom errors.
--- a/.changeset/mean-walls-watch.md
+++ b/.changeset/mean-walls-watch.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`Nonces`: Added a new contract to keep track of user nonces. Used for signatures in `ERC20Permit`, `ERC20Votes`, and `ERC721Votes`. ([#3816](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3816))
--- a/.changeset/mighty-donuts-smile.md
+++ b/.changeset/mighty-donuts-smile.md
@ -0,0 +1,6 @@
+---
+'openzeppelin-solidity': patch
+---
+
+`Governor`: Add validation in ERC1155 and ERC721 receiver hooks to ensure Governor is the executor.
+
--- a/.changeset/modern-games-exist.md
+++ b/.changeset/modern-games-exist.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`StorageSlot`: Add support for `string` and `bytes`.
--- a/.changeset/new-ways-own.md
+++ b/.changeset/new-ways-own.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`ERC20Pausable`, `ERC721Pausable`, `ERC1155Pausable`: Add note regarding missing public pausing functionality
--- a/.changeset/ninety-hornets-kick.md
+++ b/.changeset/ninety-hornets-kick.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`Votes`, `ERC20Votes`, `ERC721Votes`: support timestamp checkpointing using EIP-6372.
--- a/.changeset/orange-apes-draw.md
+++ b/.changeset/orange-apes-draw.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+Switched to using explicit Solidity import statements. Some previously available symbols may now have to be separately imported.
--- a/.changeset/perfect-insects-listen.md
+++ b/.changeset/perfect-insects-listen.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ERC4626`: Add mitigation to the inflation attack through virtual shares and assets.
--- a/.changeset/pretty-hornets-play.md
+++ b/.changeset/pretty-hornets-play.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`Strings`: add `toString` method for signed integers. ([#3773](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3773))
--- a/.changeset/proud-comics-deliver.md
+++ b/.changeset/proud-comics-deliver.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ERC20Wrapper`: Make the `underlying` variable private and add a public accessor.
--- a/.changeset/red-dots-fold.md
+++ b/.changeset/red-dots-fold.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+Overrides are now used internally for a number of functions that were previously hardcoded to their default implementation in certain locations: `ERC1155Supply.totalSupply`, `ERC721.ownerOf`, `ERC721.balanceOf` and `ERC721.totalSupply` in `ERC721Enumerable`, `ERC20.totalSupply` in `ERC20FlashMint`, and `ERC1967._getImplementation` in `ERC1967Proxy`.
--- a/.changeset/rotten-insects-wash.md
+++ b/.changeset/rotten-insects-wash.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ProxyAdmin`: Removed `getProxyAdmin` and `getProxyImplementation` getters. ([#3820](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3820))
--- a/.changeset/serious-books-lie.md
+++ b/.changeset/serious-books-lie.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': patch
+---
+
+`ERC1155`: Optimize array allocation.
--- a/.changeset/short-eels-enjoy.md
+++ b/.changeset/short-eels-enjoy.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+Bump minimum compiler version required to 0.8.19
--- a/.changeset/short-roses-judge.md
+++ b/.changeset/short-roses-judge.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`EIP712`: add EIP-5267 support for better domain discovery.
--- a/.changeset/silent-dancers-type.md
+++ b/.changeset/silent-dancers-type.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`AccessControlDefaultAdminRules`: Add an extension of `AccessControl` with additional security rules for the `DEFAULT_ADMIN_ROLE`.
--- a/.changeset/silly-bees-beam.md
+++ b/.changeset/silly-bees-beam.md
@ -0,0 +1,7 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC20Votes`: Changed internal vote accounting to reusable `Votes` module previously used by `ERC721Votes`. Removed implicit `ERC20Permit` inheritance. Note that the `DOMAIN_SEPARATOR` getter was previously guaranteed to be available for `ERC20Votes` contracts, but is no longer available unless `ERC20Permit` is explicitly used; ERC-5267 support is included in `ERC20Votes` with `EIP712` and is recommended as an alternative.
+
+pr: #3816
--- a/.changeset/slimy-knives-hug.md
+++ b/.changeset/slimy-knives-hug.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`SignatureChecker`: Add `isValidERC1271SignatureNow` for checking a signature directly against a smart contract using ERC-1271.
--- a/.changeset/slimy-penguins-attack.md
+++ b/.changeset/slimy-penguins-attack.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`TransparentUpgradeableProxy`: Removed `admin` and `implementation` getters, which were only callable by the proxy owner and thus not very useful. ([#3820](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3820))
--- a/.changeset/small-cars-appear.md
+++ b/.changeset/small-cars-appear.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`ECDSA`: Add a function `toDataWithIntendedValidatorHash` that encodes data with version 0x00 following EIP-191.
--- a/.changeset/small-terms-sleep.md
+++ b/.changeset/small-terms-sleep.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`SafeERC20`: Add a `forceApprove` function to improve compatibility with tokens behaving like USDT.
--- a/.changeset/smooth-books-wink.md
+++ b/.changeset/smooth-books-wink.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`ERC1155`: Remove check for address zero in `balanceOf`.
--- a/.changeset/spotty-hotels-type.md
+++ b/.changeset/spotty-hotels-type.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': patch
+---
+
+`ERC721Consecutive`: Add a `_firstConsecutiveId` internal function that can be overridden to change the id of the first token minted through `_mintConsecutive`.
--- a/.changeset/strong-bulldogs-buy.md
+++ b/.changeset/strong-bulldogs-buy.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ERC1967Upgrade`: removed contract-wide `oz-upgrades-unsafe-allow delegatecall` annotation, replaced by granular annotation in `UUPSUpgradeable`.
--- a/.changeset/swift-bags-divide.md
+++ b/.changeset/swift-bags-divide.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': patch
+---
+
+`Governor`: Add a mechanism to restrict the address of the proposer using a suffix in the description.
--- a/.changeset/tame-ladybugs-sit.md
+++ b/.changeset/tame-ladybugs-sit.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': patch
---
-
-`MerkleProof`: optimize by using unchecked arithmetic. ([#3745](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3745))
--- a/.changeset/tasty-tomatoes-turn.md
+++ b/.changeset/tasty-tomatoes-turn.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`Strings`: Rename `toString(int256)` to `toStringSigned(int256)`.
--- a/.changeset/tender-needles-dance.md
+++ b/.changeset/tender-needles-dance.md
@ -1,7 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ERC20Wrapper`: self wrapping and deposit by the wrapper itself are now explicitelly forbiden.
-
-commit: 3214f6c25
--- a/.changeset/thin-camels-matter.md
+++ b/.changeset/thin-camels-matter.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+`ERC1155`: Bubble errors triggered in the `onERC1155Received` and `onERC1155BatchReceived` hooks.
--- a/.changeset/thin-dragons-report.md
+++ b/.changeset/thin-dragons-report.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ECDSA`: optimize bytes32 computation by using assembly instead of `abi.encodePacked`.
--- a/.changeset/thirty-swans-exercise.md
+++ b/.changeset/thirty-swans-exercise.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ERC721URIStorage`: Emit ERC-4906 `MetadataUpdate` in `_setTokenURI`.
--- a/.changeset/tough-drinks-hammer.md
+++ b/.changeset/tough-drinks-hammer.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': patch
+---
+
+`ERC1155`: Optimize array accesses by skipping bounds checking when unnecessary.
--- a/.changeset/violet-dancers-cough.md
+++ b/.changeset/violet-dancers-cough.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': minor
+---
+
+Remove the `override` specifier from functions that only override a single interface function.
--- a/.changeset/violet-frogs-hide.md
+++ b/.changeset/violet-frogs-hide.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`ShortStrings`: Added a library for handling short strings in a gas efficient way, with fallback to storage for longer strings.
--- a/.changeset/warm-masks-obey.md
+++ b/.changeset/warm-masks-obey.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`SignatureChecker`: Allow return data length greater than 32 from EIP-1271 signers.
--- a/.changeset/wild-windows-trade.md
+++ b/.changeset/wild-windows-trade.md
@ -0,0 +1,5 @@
+---
+'openzeppelin-solidity': major
+---
+
+`SafeERC20`: Refactor `safeDecreaseAllowance` and `safeIncreaseAllowance` to support USDT-like tokens.
--- a/.changeset/yellow-swans-cover.md
+++ b/.changeset/yellow-swans-cover.md
@ -1,5 +0,0 @@
---
-'openzeppelin-solidity': minor
---
-
-`UUPSUpgradeable`: added granular `oz-upgrades-unsafe-allow-reachable` annotation to improve upgrade safety checks on latest version of the Upgrades Plugins (starting with `@openzeppelin/upgrades-core@1.21.0`).
--- a/.github/workflows/checks.yml
+++ b/.github/workflows/checks.yml
@ -4,6 +4,7 @@ on:
  push:
    branches:
      - master
+      - next-v*
      - release-v*
  pull_request: {}
  workflow_dispatch: {}
@ -12,6 +13,9 @@ concurrency:
  group: checks-${{ github.ref }}
  cancel-in-progress: true

+env:
+  NODE_OPTIONS: --max_old_space_size=5120
+
 jobs:
  lint:
    runs-on: ubuntu-latest
@ -25,7 +29,6 @@ jobs:
    runs-on: ubuntu-latest
    env:
      FORCE_COLOR: 1
-      NODE_OPTIONS: --max_old_space_size=4096
      GAS: true
    steps:
      - uses: actions/checkout@v3
@ -56,8 +59,6 @@ jobs:
        run: bash scripts/upgradeable/transpile.sh
      - name: Run tests
        run: npm run test
-        env:
-          NODE_OPTIONS: --max_old_space_size=4096
      - name: Check linearisation of the inheritance graph
        run: npm run test:inheritance
      - name: Check storage layout
@ -85,8 +86,6 @@ jobs:
      - name: Set up environment
        uses: ./.github/actions/setup
      - run: npm run coverage
-        env:
-          NODE_OPTIONS: --max_old_space_size=4096
      - uses: codecov/codecov-action@v3
        with:
          token: ${{ secrets.CODECOV_TOKEN }}
@ -101,13 +100,15 @@ jobs:
      - uses: crytic/slither-action@v0.3.0
        with:
          node-version: 18.15
+          slither-version: 0.9.3

  codespell:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - name: Run CodeSpell
-        uses: codespell-project/actions-codespell@v1.0
+        uses: codespell-project/actions-codespell@v2.0
        with:
+          check_hidden: true
          check_filenames: true
          skip: package-lock.json,*.pdf
--- a/.github/workflows/release-cycle.yml
+++ b/.github/workflows/release-cycle.yml
@ -192,6 +192,8 @@ jobs:
      pull-requests: write
    if: needs.state.outputs.merge == 'true'
    runs-on: ubuntu-latest
+    env:
+      MERGE_BRANCH: merge/${{ github.ref_name }}
    steps:
      - uses: actions/checkout@v3
        with:
@ -200,7 +202,9 @@ jobs:
        uses: ./.github/actions/setup
      - run: bash scripts/git-user-config.sh
      - name: Create branch to merge
-        run: bash scripts/release/workflow/prepare-release-merge.sh
+        run: |
+          git checkout -B "$MERGE_BRANCH" "$GITHUB_REF_NAME"
+          git push -f origin "$MERGE_BRANCH"
      - name: Create PR back to master
        uses: actions/github-script@v6
        with:
@ -208,7 +212,7 @@ jobs:
            await github.rest.pulls.create({
              owner: context.repo.owner,
              repo: context.repo.repo,
-              head: 'merge/${{ github.ref_name }}',
+              head: process.env.MERGE_BRANCH,
              base: 'master',
              title: '${{ format('Merge {0} branch', github.ref_name) }}'
            });
--- a/.solhint.json
+++ b/.solhint.json
@ -9,6 +9,7 @@
    "modifier-name-mixedcase": "error",
    "private-vars-leading-underscore": "error",
    "var-name-mixedcase": "error",
-    "imports-on-top": "error"
+    "imports-on-top": "error",
+    "no-global-import": "error"
  }
 }
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -1,5 +1,114 @@
 # Changelog

+## Unreleased
+
+> **Warning** Version 5.0 is under active development and should not be used. Install the releases from npm or use the version tags in the repository.
+
+### Removals
+
+The following contracts, libraries and functions were removed:
+
+- `Address.isContract` (because of its ambiguous nature and potential for misuse)
+- `Checkpoints.History`
+- `Counters`
+- `ERC20Snapshot`
+- `ERC20VotesComp`
+- `ERC165Storage` (in favor of inheritance based approach)
+- `ERC777`
+- `ERC1820Implementer`
+- `GovernorVotesComp`
+- `GovernorProposalThreshold` (deprecated since 4.4)
+- `PaymentSplitter`
+- `PullPayment`
+- `SafeMath`
+- `SignedSafeMath`
+- `Timers`
+- `TokenTimelock` (in favor of `VestingWallet`)
+- All escrow contracts (`Escrow`, `ConditionalEscrow` and `RefundEscrow`)
+- All cross-chain contracts, including `AccessControlCrossChain` and all the vendored bridge interfaces
+- All presets in favor of [OpenZeppelin Contracts Wizard](https://wizard.openzeppelin.com/)
+
+These removals were implemented in the following PRs: [#3637](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3637), [#3880](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3880), [#3945](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3945), [#4258](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4258), [#4276](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4276), [#4289](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4289)
+
+### How to upgrade from 4.x
+
+#### ERC20, ERC721, and ERC1155
+
+These breaking changes will require modifications to ERC20, ERC721, and ERC1155 contracts, since the `_afterTokenTransfer` and `_beforeTokenTransfer` functions were removed. Any customization made through those hooks should now be done overriding the new `_update` function instead.
+
+Minting and burning are implemented by `_update` and customizations should be done by overriding this function as well. `_mint` and `_burn` are no longer virtual (meaning they are not overridable) to guard against possible inconsistencies.
+
+For example, a contract using `ERC20`'s `_beforeTokenTransfer` hook would have to be changed in the following way.
+
+```diff
+- function _beforeTokenTransfer(
+ function _update(
+      address from,
+      address to,
+      uint256 amount
+  ) internal virtual override {
+-     super._beforeTokenTransfer(from, to, amount);
+      require(!condition(), "ERC20: wrong condition");
+     super._update(from, to, amount);
+  }
+```
+
+#### ERC165Storage
+
+Users that were registering EIP-165 interfaces with `_registerInterface` from `ERC165Storage` should instead do so so by overriding the `supportsInterface` function as seen below:
+
+```solidity
+function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
+    return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
+}
+```
+
+## 4.9.2 (2023-06-16)
+
+- `MerkleProof`: Fix a bug in `processMultiProof` and `processMultiProofCalldata` that allows proving arbitrary leaves if the tree contains a node with value 0 at depth 1.
+
+## 4.9.1 (2023-06-07)
+
+- `Governor`: Add a mechanism to restrict the address of the proposer using a suffix in the description.
+
+## 4.9.0 (2023-05-23)
+
+- `ReentrancyGuard`: Add a `_reentrancyGuardEntered` function to expose the guard status. ([#3714](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3714))
+- `ERC721Wrapper`: add a new extension of the `ERC721` token which wraps an underlying token. Deposit and withdraw guarantee that the ownership of each token is backed by a corresponding underlying token with the same identifier. ([#3863](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3863))
+- `EnumerableMap`: add a `keys()` function that returns an array containing all the keys. ([#3920](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3920))
+- `Governor`: add a public `cancel(uint256)` function. ([#3983](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3983))
+- `Governor`: Enable timestamp operation for blockchains without a stable block time. This is achieved by connecting a Governor's internal clock to match a voting token's EIP-6372 interface. ([#3934](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3934))
+- `Strings`: add `equal` method. ([#3774](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3774))
+- `IERC5313`: Add an interface for EIP-5313 that is now final. ([#4013](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4013))
+- `IERC4906`: Add an interface for ERC-4906 that is now Final. ([#4012](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4012))
+- `StorageSlot`: Add support for `string` and `bytes`. ([#4008](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4008))
+- `Votes`, `ERC20Votes`, `ERC721Votes`: support timestamp checkpointing using EIP-6372. ([#3934](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3934))
+- `ERC4626`: Add mitigation to the inflation attack through virtual shares and assets. ([#3979](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3979))
+- `Strings`: add `toString` method for signed integers. ([#3773](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3773))
+- `ERC20Wrapper`: Make the `underlying` variable private and add a public accessor. ([#4029](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4029))
+- `EIP712`: add EIP-5267 support for better domain discovery. ([#3969](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3969))
+- `AccessControlDefaultAdminRules`: Add an extension of `AccessControl` with additional security rules for the `DEFAULT_ADMIN_ROLE`. ([#4009](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4009))
+- `SignatureChecker`: Add `isValidERC1271SignatureNow` for checking a signature directly against a smart contract using ERC-1271. ([#3932](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3932))
+- `SafeERC20`: Add a `forceApprove` function to improve compatibility with tokens behaving like USDT. ([#4067](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4067))
+- `ERC1967Upgrade`: removed contract-wide `oz-upgrades-unsafe-allow delegatecall` annotation, replaced by granular annotation in `UUPSUpgradeable`. ([#3971](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3971))
+- `ERC20Wrapper`: self wrapping and deposit by the wrapper itself are now explicitly forbidden. ([#4100](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4100))
+- `ECDSA`: optimize bytes32 computation by using assembly instead of `abi.encodePacked`. ([#3853](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3853))
+- `ERC721URIStorage`: Emit ERC-4906 `MetadataUpdate` in `_setTokenURI`. ([#4012](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4012))
+- `ShortStrings`: Added a library for handling short strings in a gas efficient way, with fallback to storage for longer strings. ([#4023](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4023))
+- `SignatureChecker`: Allow return data length greater than 32 from EIP-1271 signers. ([#4038](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4038))
+- `UUPSUpgradeable`: added granular `oz-upgrades-unsafe-allow-reachable` annotation to improve upgrade safety checks on latest version of the Upgrades Plugins (starting with `@openzeppelin/upgrades-core@1.21.0`). ([#3971](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3971))
+- `Initializable`: optimize `_disableInitializers` by using `!=` instead of `<`. ([#3787](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3787))
+- `Ownable2Step`: make `acceptOwnership` public virtual to enable usecases that require overriding it. ([#3960](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3960))
+- `UUPSUpgradeable.sol`: Change visibility to the functions `upgradeTo ` and `upgradeToAndCall ` from `external` to `public`. ([#3959](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3959))
+- `TimelockController`: Add the `CallSalt` event to emit on operation schedule. ([#4001](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4001))
+- Reformatted codebase with latest version of Prettier Solidity. ([#3898](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3898))
+- `Math`: optimize `log256` rounding check. ([#3745](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3745))
+- `ERC20Votes`: optimize by using unchecked arithmetic. ([#3748](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3748))
+- `Multicall`: annotate `multicall` function as upgrade safe to not raise a flag for its delegatecall. ([#3961](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3961))
+- `ERC20Pausable`, `ERC721Pausable`, `ERC1155Pausable`: Add note regarding missing public pausing functionality ([#4007](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4007))
+- `ECDSA`: Add a function `toDataWithIntendedValidatorHash` that encodes data with version 0x00 following EIP-191. ([#4063](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/4063))
+- `MerkleProof`: optimize by using unchecked arithmetic. ([#3745](https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3745))
+
 ### Breaking changes

 - `EIP712`: Addition of ERC5267 support requires support for user defined value types, which was released in Solidity version 0.8.8. This requires a pragma change from `^0.8.0` to `^0.8.8`.
--- a/GUIDELINES.md
+++ b/GUIDELINES.md
@ -114,4 +114,30 @@ In addition to the official Solidity Style Guide we have a number of other conve
  interface IERC777 {
  ```

+* Contracts not intended to be used standalone should be marked abstract
+  so they are required to be inherited to other contracts.
+
+  ```solidity
+  abstract contract AccessControl is ..., {
+  ```
+
 * Unchecked arithmetic blocks should contain comments explaining why overflow is guaranteed not to happen. If the reason is immediately apparent from the line above the unchecked block, the comment may be omitted.
+
+* Custom errors should be declared following the [EIP-6093](https://eips.ethereum.org/EIPS/eip-6093) rationale whenever reasonable. Also, consider the following:
+  
+  * The domain prefix should be picked in the following order:
+    1. Use `ERC<number>` if the error is a violation of an ERC specification.
+    2. Use the name of the underlying component where it belongs (eg. `Governor`, `ECDSA`, or `Timelock`).
+
+  * The location of custom errors should be decided in the following order:
+    1. Take the errors from their underlying ERCs if they're already defined.
+    2. Declare the errors in the underlying interface/library if the error makes sense in its context.
+    3. Declare the error in the implementation if the underlying interface/library is not suitable to do so (eg. interface/library already specified in an ERC).
+    4. Declare the error in an extension if the error only happens in such extension or child contracts.
+
+  * Custom error names should not be declared twice along the library to avoid duplicated identifier declarations when inheriting from multiple contracts.
+
+* Solidity function overrides should follow the rules listed below in order to avoid introducing unintended consequences due to the interaction with multiple inheritance:
+
+    1. When overriding a function `foo`, always invoke `super.foo`, and pass the same arguments that were received.
+    2. Never use `super` outside of an override, or for a function other than the one being overridden.
--- a/README.md
+++ b/README.md
@ -1,3 +1,6 @@
+> **Warning**
+> Version 5.0 is under active development. The code in this branch is not recommended for use.
+
 # <img src="logo.svg" alt="OpenZeppelin" height="40px">

 [![NPM Package](https://img.shields.io/npm/v/@openzeppelin/contracts.svg)](https://www.npmjs.org/package/@openzeppelin/contracts)
@ -20,22 +23,32 @@

 ### Installation

+#### Hardhat, Truffle (npm)
+
 ```
 $ npm install @openzeppelin/contracts
 ```

 OpenZeppelin Contracts features a [stable API](https://docs.openzeppelin.com/contracts/releases-stability#api-stability), which means that your contracts won't break unexpectedly when upgrading to a newer minor version.

-An alternative to npm is to use the GitHub repository (`openzeppelin/openzeppelin-contracts`) to retrieve the contracts. When doing this, make sure to specify the tag for a release such as `v4.5.0`, instead of using the `master` branch.
+#### Foundry (git)
+
+> **Warning** When installing via git, it is a common error to use the `master` branch. This is a development branch that should be avoided in favor of tagged releases. The release process involves security measures that the `master` branch does not guarantee.
+
+> **Warning** Foundry installs the latest version initially, but subsequent `forge update` commands will use the `master` branch.
+
+```
+$ forge install OpenZeppelin/openzeppelin-contracts
+```

 ### Usage

 Once installed, you can use the contracts in the library by importing them:

 ```solidity
-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

-import "@openzeppelin/contracts/token/ERC721/ERC721.sol";
+import {ERC721} from "@openzeppelin/contracts/token/ERC721/ERC721.sol";

 contract MyCollectible is ERC721 {
    constructor() ERC721("MyCollectible", "MCO") {
@ -67,7 +80,9 @@ Finally, you may want to take a look at the [guides on our blog](https://blog.op

 This project is maintained by [OpenZeppelin](https://openzeppelin.com) with the goal of providing a secure and reliable library of smart contract components for the ecosystem. We address security through risk management in various areas such as engineering and open source best practices, scoping and API design, multi-layered review processes, and incident response preparedness.

-The security policy is detailed in [`SECURITY.md`](./SECURITY.md), and specifies how you can report security vulnerabilities, which versions will receive security patches, and how to stay informed about them. We run a [bug bounty program on Immunefi](https://immunefi.com/bounty/openzeppelin) to reward the responsible disclosure of vulnerabilities.
+The [OpenZeppelin Contracts Security Center](https://contracts.openzeppelin.com/security) contains more details about the secure development process.
+
+The security policy is detailed in [`SECURITY.md`](./SECURITY.md) as well, and specifies how you can report security vulnerabilities, which versions will receive security patches, and how to stay informed about them. We run a [bug bounty program on Immunefi](https://immunefi.com/bounty/openzeppelin) to reward the responsible disclosure of vulnerabilities.

 The engineering guidelines we follow to promote project quality can be found in [`GUIDELINES.md`](./GUIDELINES.md).

--- a/audits/2023-05-v4.9.pdf
+++ b/audits/2023-05-v4.9.pdf
--- a/certora/harnesses/AccessControlDefaultAdminRulesHarness.sol
+++ b/certora/harnesses/AccessControlDefaultAdminRulesHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/access/AccessControlDefaultAdminRules.sol";

--- a/certora/harnesses/AccessControlHarness.sol
+++ b/certora/harnesses/AccessControlHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/access/AccessControl.sol";

--- a/certora/harnesses/DoubleEndedQueueHarness.sol
+++ b/certora/harnesses/DoubleEndedQueueHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/utils/structs/DoubleEndedQueue.sol";

--- a/certora/harnesses/ERC20FlashMintHarness.sol
+++ b/certora/harnesses/ERC20FlashMintHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/token/ERC20/ERC20.sol";
 import "../patched/token/ERC20/extensions/ERC20Permit.sol";
--- a/certora/harnesses/ERC20PermitHarness.sol
+++ b/certora/harnesses/ERC20PermitHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/token/ERC20/extensions/ERC20Permit.sol";

--- a/certora/harnesses/ERC20WrapperHarness.sol
+++ b/certora/harnesses/ERC20WrapperHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/token/ERC20/extensions/ERC20Wrapper.sol";

--- a/certora/harnesses/ERC3156FlashBorrowerHarness.sol
+++ b/certora/harnesses/ERC3156FlashBorrowerHarness.sol
@ -2,7 +2,7 @@

 import "../patched/interfaces/IERC3156FlashBorrower.sol";

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 contract ERC3156FlashBorrowerHarness is IERC3156FlashBorrower {
    bytes32 somethingToReturn;
--- a/certora/harnesses/ERC721Harness.sol
+++ b/certora/harnesses/ERC721Harness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/token/ERC721/ERC721.sol";

--- a/certora/harnesses/ERC721ReceiverHarness.sol
+++ b/certora/harnesses/ERC721ReceiverHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/interfaces/IERC721Receiver.sol";

--- a/certora/harnesses/EnumerableMapHarness.sol
+++ b/certora/harnesses/EnumerableMapHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/utils/structs/EnumerableMap.sol";

--- a/certora/harnesses/EnumerableSetHarness.sol
+++ b/certora/harnesses/EnumerableSetHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/utils/structs/EnumerableSet.sol";

--- a/certora/harnesses/InitializableHarness.sol
+++ b/certora/harnesses/InitializableHarness.sol
@ -1,5 +1,5 @@
 // SPDX-License-Identifier: MIT
-pragma solidity ^0.8.2;
+pragma solidity ^0.8.19;

 import "../patched/proxy/utils/Initializable.sol";

--- a/certora/harnesses/Ownable2StepHarness.sol
+++ b/certora/harnesses/Ownable2StepHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/access/Ownable2Step.sol";

--- a/certora/harnesses/OwnableHarness.sol
+++ b/certora/harnesses/OwnableHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/access/Ownable.sol";

--- a/certora/harnesses/PausableHarness.sol
+++ b/certora/harnesses/PausableHarness.sol
@ -1,6 +1,6 @@
 // SPDX-License-Identifier: MIT

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/security/Pausable.sol";

--- a/certora/harnesses/TimelockControllerHarness.sol
+++ b/certora/harnesses/TimelockControllerHarness.sol
@ -1,4 +1,4 @@
-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

 import "../patched/governance/TimelockController.sol";

--- a/certora/specs/AccessControlDefaultAdminRules.spec
+++ b/certora/specs/AccessControlDefaultAdminRules.spec
@ -12,44 +12,23 @@ use rule onlyGrantCanGrant filtered {
 │ Helpers                                                                                                             │
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
+definition timeSanity(env e) returns bool =
+  e.block.timestamp > 0 && e.block.timestamp + defaultAdminDelay(e) < max_uint48();

-function max_uint48() returns mathint {
-    return (1 << 48) - 1;
-}
+definition delayChangeWaitSanity(env e, uint48 newDelay) returns bool =
+  e.block.timestamp + delayChangeWait_(e, newDelay) < max_uint48();

-function nonZeroAccount(address account) returns bool {
-  return account != 0;
-}
+definition isSet(uint48 schedule) returns bool =
+  schedule != 0;

-function timeSanity(env e) returns bool {
-  return
-    e.block.timestamp > 0 && // Avoids 0 schedules
-    e.block.timestamp + defaultAdminDelay(e) < max_uint48();
-}
+definition hasPassed(env e, uint48 schedule) returns bool =
+  schedule < e.block.timestamp;

-function delayChangeWaitSanity(env e, uint48 newDelay) returns bool {
-  return e.block.timestamp + delayChangeWait_(e, newDelay) < max_uint48();
-}
+definition increasingDelaySchedule(env e, uint48 newDelay) returns mathint =
+  e.block.timestamp + min(newDelay, defaultAdminDelayIncreaseWait());

-function isSet(uint48 schedule) returns bool {
-  return schedule != 0;
-}
-
-function hasPassed(env e, uint48 schedule) returns bool {
-  return schedule < e.block.timestamp;
-}
-
-function min(uint48 a, uint48 b) returns mathint {
-  return a < b ? a : b;
-}
-
-function increasingDelaySchedule(env e, uint48 newDelay) returns mathint {
-  return e.block.timestamp + min(newDelay, defaultAdminDelayIncreaseWait());
-}
-
-function decreasingDelaySchedule(env e, uint48 newDelay) returns mathint {
-  return e.block.timestamp + defaultAdminDelay(e) - newDelay;
-}
+definition decreasingDelaySchedule(env e, uint48 newDelay) returns mathint =
+  e.block.timestamp + defaultAdminDelay(e) - newDelay;

 /*
 ┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
@ -57,11 +36,10 @@ function decreasingDelaySchedule(env e, uint48 newDelay) returns mathint {
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 invariant defaultAdminConsistency(address account)
-  defaultAdmin() == account <=> hasRole(DEFAULT_ADMIN_ROLE(), account)
+  (account == defaultAdmin() && account != 0) <=> hasRole(DEFAULT_ADMIN_ROLE(), account)
  {
-    preserved {
-      // defaultAdmin() returns the zero address when there's no default admin
-      require nonZeroAccount(account);
+    preserved with (env e) {
+      require nonzerosender(e);
    }
  }

@ -72,10 +50,12 @@ invariant defaultAdminConsistency(address account)
 */
 invariant singleDefaultAdmin(address account, address another)
  hasRole(DEFAULT_ADMIN_ROLE(), account) && hasRole(DEFAULT_ADMIN_ROLE(), another) => another == account
-  // We filter here because we couldn't find a way to force Certora to have an initial state with
-  // only one DEFAULT_ADMIN_ROLE enforced, so a counter example is a different default admin since inception
-  // triggering the transfer, which is known to be impossible by definition.
-  filtered { f -> f.selector != acceptDefaultAdminTransfer().selector }
+  {
+    preserved {
+      requireInvariant defaultAdminConsistency(account);
+      requireInvariant defaultAdminConsistency(another);
+    }
+  }

 /*
 ┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
@ -118,7 +98,8 @@ rule revokeRoleEffect(env e, bytes32 role) {
      "roles can only be revoked by their owner except for the default admin role";

    // effect
-    assert success => !hasRole(role, account), "role is revoked";
+    assert success => !hasRole(role, account),
+      "role is revoked";

    // no side effect
    assert hasOtherRoleBefore != hasOtherRoleAfter => (role == otherRole && account == otherAccount),
@ -137,35 +118,59 @@ rule renounceRoleEffect(env e, bytes32 role) {
    address account;
    address otherAccount;

-    bool hasOtherRoleBefore = hasRole(otherRole, otherAccount);
-    uint48 scheduleBefore = pendingDefaultAdminSchedule_();
+    bool    hasOtherRoleBefore = hasRole(otherRole, otherAccount);
+    address adminBefore        = defaultAdmin();
    address pendingAdminBefore = pendingDefaultAdmin_();
+    uint48  scheduleBefore     = pendingDefaultAdminSchedule_();

    renounceRole@withrevert(e, role, account);
    bool success = !lastReverted;

-    bool hasOtherRoleAfter = hasRole(otherRole, otherAccount);
+    bool    hasOtherRoleAfter = hasRole(otherRole, otherAccount);
+    address adminAfter        = defaultAdmin();
+    address pendingAdminAfter = pendingDefaultAdmin_();
+    uint48  scheduleAfter     = pendingDefaultAdminSchedule_();

    // liveness
    assert success <=> (
      account == e.msg.sender &&
      (
+        role    != DEFAULT_ADMIN_ROLE() ||
+        account != adminBefore          ||
        (
-          role != DEFAULT_ADMIN_ROLE()
-        ) || (
-          role == DEFAULT_ADMIN_ROLE() &&
          pendingAdminBefore == 0 &&
          isSet(scheduleBefore) &&
          hasPassed(e, scheduleBefore)
        )
      )
-    ), "an account only can renounce by itself with a delay for the default admin role";
+    ),
+      "an account only can renounce by itself with a delay for the default admin role";

    // effect
-    assert success => !hasRole(role, account), "role is renounced";
+    assert success => !hasRole(role, account),
+      "role is renounced";
+
+    assert success => (
+      (
+        role    == DEFAULT_ADMIN_ROLE() &&
+        account == adminBefore
+      ) ? (
+        adminAfter        == 0 &&
+        pendingAdminAfter == 0 &&
+        scheduleAfter     == 0
+      ) : (
+        adminAfter        == adminBefore        &&
+        pendingAdminAfter == pendingAdminBefore &&
+        scheduleAfter     == scheduleBefore
+      )
+    ),
+      "renouncing default admin role cleans state iff called by previous admin";

    // no side effect
-    assert hasOtherRoleBefore != hasOtherRoleAfter => (role == otherRole && account == otherAccount),
+    assert hasOtherRoleBefore != hasOtherRoleAfter => (
+      role == otherRole &&
+      account == otherAccount
+    ),
      "no other role is affected";
 }

@ -175,10 +180,6 @@ rule renounceRoleEffect(env e, bytes32 role) {
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 rule noDefaultAdminChange(env e, method f, calldataarg args) {
-  require nonZeroAccount(e.msg.sender);
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
-
  address adminBefore = defaultAdmin();
  f(e, args);
  address adminAfter = defaultAdmin();
@ -186,18 +187,17 @@ rule noDefaultAdminChange(env e, method f, calldataarg args) {
  assert adminBefore != adminAfter => (
    f.selector == acceptDefaultAdminTransfer().selector ||
    f.selector == renounceRole(bytes32,address).selector
-  ), "default admin is only affected by accepting an admin transfer or renoucing";
+  ),
+    "default admin is only affected by accepting an admin transfer or renoucing";
 }

 /*
 ┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
-│ Rule: pendingDefaultAdmin is only affected by beginning, accepting or canceling an admin transfer                   │
+│ Rule: pendingDefaultAdmin is only affected by beginning, completing (accept or renounce), or canceling an admin     │
+│ transfer                                                                                                            │
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 rule noPendingDefaultAdminChange(env e, method f, calldataarg args) {
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
-
  address pendingAdminBefore = pendingDefaultAdmin_();
  address scheduleBefore = pendingDefaultAdminSchedule_();
  f(e, args);
@ -210,8 +210,10 @@ rule noPendingDefaultAdminChange(env e, method f, calldataarg args) {
  ) => (
    f.selector == beginDefaultAdminTransfer(address).selector ||
    f.selector == acceptDefaultAdminTransfer().selector ||
-    f.selector == cancelDefaultAdminTransfer().selector
-  ), "pending admin and its schedule is only affected by beginning, accepting or cancelling an admin transfer";
+    f.selector == cancelDefaultAdminTransfer().selector ||
+    f.selector == renounceRole(bytes32,address).selector
+  ),
+    "pending admin and its schedule is only affected by beginning, completing, or cancelling an admin transfer";
 }

 /*
@ -224,7 +226,8 @@ rule noDefaultAdminDelayChange(env e, method f, calldataarg args) {
  f(e, args);
  uint48 delayAfter = defaultAdminDelay(e);

-  assert delayBefore == delayAfter, "delay can't be changed atomically by any function";
+  assert delayBefore == delayAfter,
+    "delay can't be changed atomically by any function";
 }

 /*
@ -240,7 +243,8 @@ rule noPendingDefaultAdminDelayChange(env e, method f, calldataarg args) {
  assert pendingDelayBefore != pendingDelayAfter => (
    f.selector == changeDefaultAdminDelay(uint48).selector ||
    f.selector == rollbackDefaultAdminDelay().selector
-  ), "pending delay is only affected by changeDefaultAdminDelay or rollbackDefaultAdminDelay";
+  ),
+    "pending delay is only affected by changeDefaultAdminDelay or rollbackDefaultAdminDelay";
 }

 /*
@ -263,10 +267,10 @@ rule noDefaultAdminDelayIncreaseWaitChange(env e, method f, calldataarg args) {
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 rule beginDefaultAdminTransfer(env e, address newAdmin) {
-  require nonpayable(e);
  require timeSanity(e);
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
+  require nonpayable(e);
+  require nonzerosender(e);
+  requireInvariant defaultAdminConsistency(e.msg.sender);

  beginDefaultAdminTransfer@withrevert(e, newAdmin);
  bool success = !lastReverted;
@ -288,18 +292,24 @@ rule beginDefaultAdminTransfer(env e, address newAdmin) {
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 rule pendingDefaultAdminDelayEnforced(env e1, env e2, method f, calldataarg args, address newAdmin) {
-  require e1.block.timestamp < e2.block.timestamp;
+  require e1.block.timestamp <= e2.block.timestamp;

  uint48 delayBefore = defaultAdminDelay(e1);
  address adminBefore = defaultAdmin();
+
  // There might be a better way to generalize this without requiring `beginDefaultAdminTransfer`, but currently
  // it's the only way in which we can attest that only `delayBefore` has passed before a change.
  beginDefaultAdminTransfer(e1, newAdmin);
  f(e2, args);
+
  address adminAfter = defaultAdmin();

-  assert adminAfter == newAdmin => ((e2.block.timestamp >= e1.block.timestamp + delayBefore) || adminBefore == newAdmin),
-    "A delay can't change in less than applied schedule";
+  // change can only happen towards the newAdmin, with the delay
+  assert adminAfter != adminBefore => (
+    adminAfter == newAdmin &&
+    e2.block.timestamp >= e1.block.timestamp + delayBefore
+  ),
+    "The admin can only change after the enforced delay and to the previously scheduled new admin";
 }

 /*
@ -309,17 +319,19 @@ rule pendingDefaultAdminDelayEnforced(env e1, env e2, method f, calldataarg args
 */
 rule acceptDefaultAdminTransfer(env e) {
  require nonpayable(e);
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());

  address pendingAdminBefore = pendingDefaultAdmin_();
-  uint48 scheduleAfter = pendingDefaultAdminSchedule_();
+  uint48 scheduleBefore = pendingDefaultAdminSchedule_();

  acceptDefaultAdminTransfer@withrevert(e);
  bool success = !lastReverted;

  // liveness
-  assert success <=> e.msg.sender == pendingAdminBefore && isSet(scheduleAfter) && hasPassed(e, scheduleAfter),
+  assert success <=> (
+    e.msg.sender == pendingAdminBefore &&
+    isSet(scheduleBefore) &&
+    hasPassed(e, scheduleBefore)
+  ),
    "only the pending default admin can accept the role after the schedule has been set and passed";

  // effect
@ -338,8 +350,8 @@ rule acceptDefaultAdminTransfer(env e) {
 */
 rule cancelDefaultAdminTransfer(env e) {
  require nonpayable(e);
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
+  require nonzerosender(e);
+  requireInvariant defaultAdminConsistency(e.msg.sender);

  cancelDefaultAdminTransfer@withrevert(e);
  bool success = !lastReverted;
@ -361,11 +373,11 @@ rule cancelDefaultAdminTransfer(env e) {
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 rule changeDefaultAdminDelay(env e, uint48 newDelay) {
-  require nonpayable(e);
  require timeSanity(e);
+  require nonpayable(e);
+  require nonzerosender(e);
  require delayChangeWaitSanity(e, newDelay);
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
+  requireInvariant defaultAdminConsistency(e.msg.sender);

  uint48 delayBefore = defaultAdminDelay(e);

@ -377,7 +389,9 @@ rule changeDefaultAdminDelay(env e, uint48 newDelay) {
    "only the current default admin can begin a delay change";

  // effect
-  assert success => pendingDelay_(e) == newDelay, "pending delay is set";
+  assert success => pendingDelay_(e) == newDelay,
+    "pending delay is set";
+
  assert success => (
    pendingDelaySchedule_(e) > e.block.timestamp ||
    delayBefore == newDelay || // Interpreted as decreasing, x - x = 0
@ -392,17 +406,22 @@ rule changeDefaultAdminDelay(env e, uint48 newDelay) {
 └─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
 */
 rule pendingDelayWaitEnforced(env e1, env e2, method f, calldataarg args, uint48 newDelay) {
-  require e1.block.timestamp < e2.block.timestamp;
+  require e1.block.timestamp <= e2.block.timestamp;

  uint48 delayBefore = defaultAdminDelay(e1);
+
  changeDefaultAdminDelay(e1, newDelay);
  f(e2, args);
+
  uint48 delayAfter = defaultAdminDelay(e2);

  mathint delayWait = newDelay > delayBefore ? increasingDelaySchedule(e1, newDelay) : decreasingDelaySchedule(e1, newDelay);

-  assert delayAfter == newDelay => (e2.block.timestamp >= delayWait || delayBefore == newDelay),
-    "A delay can't change in less than applied schedule";
+  assert delayAfter != delayBefore => (
+    delayAfter == newDelay &&
+    e2.block.timestamp >= delayWait
+  ),
+    "A delay can only change after the applied schedule";
 }

 /*
@ -427,8 +446,8 @@ rule pendingDelayWait(env e, uint48 newDelay) {
 */
 rule rollbackDefaultAdminDelay(env e) {
  require nonpayable(e);
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
+  require nonzerosender(e);
+  requireInvariant defaultAdminConsistency(e.msg.sender);

  rollbackDefaultAdminDelay@withrevert(e);
  bool success = !lastReverted;
@ -443,58 +462,3 @@ rule rollbackDefaultAdminDelay(env e) {
  assert success => pendingDelaySchedule_(e) == 0,
    "Pending default admin delay is reset";
 }
-
-/*
-┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
-│ Rule: pending default admin and the delay can only change along with their corresponding schedules                  │
-└─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
-*/
-rule pendingValueAndScheduleCoupling(env e, address newAdmin, uint48 newDelay) {
-  requireInvariant defaultAdminConsistency(defaultAdmin());
-  requireInvariant singleDefaultAdmin(e.msg.sender, defaultAdmin());
-
-  // Pending admin
-  address pendingAdminBefore = pendingDefaultAdmin_();
-  uint48 pendingAdminScheduleBefore = pendingDefaultAdminSchedule_();
-
-  beginDefaultAdminTransfer(e, newAdmin);
-
-  address pendingAdminAfter = pendingDefaultAdmin_();
-  uint48 pendingAdminScheduleAfter = pendingDefaultAdminSchedule_();
-
-  assert (
-    pendingAdminScheduleBefore != pendingDefaultAdminSchedule_() &&
-    pendingAdminBefore == pendingAdminAfter
-  ) => newAdmin == pendingAdminBefore, "pending admin stays the same if the new admin set is the same";
-
-  assert (
-    pendingAdminBefore != pendingAdminAfter &&
-    pendingAdminScheduleBefore == pendingDefaultAdminSchedule_()
-  ) => (
-    // Schedule doesn't change if:
-    // - The defaultAdminDelay was reduced to a value such that added to the block.timestamp is equal to previous schedule
-    e.block.timestamp + defaultAdminDelay(e) == pendingAdminScheduleBefore
-  ), "pending admin stays the same if a default admin transfer is begun on accepted edge cases";
-
-  // Pending delay
-  address pendingDelayBefore = pendingDelay_(e);
-  uint48 pendingDelayScheduleBefore = pendingDelaySchedule_(e);
-
-  changeDefaultAdminDelay(e, newDelay);
-
-  address pendingDelayAfter = pendingDelay_(e);
-  uint48 pendingDelayScheduleAfter = pendingDelaySchedule_(e);
-
-  assert (
-    pendingDelayScheduleBefore != pendingDelayScheduleAfter &&
-    pendingDelayBefore == pendingDelayAfter
-  ) => newDelay == pendingDelayBefore || pendingDelayBefore == 0, "pending delay stays the same if the new delay set is the same";
-
-  assert (
-    pendingDelayBefore != pendingDelayAfter &&
-    pendingDelayScheduleBefore == pendingDelayScheduleAfter
-  ) => (
-    increasingDelaySchedule(e, newDelay) == pendingDelayScheduleBefore ||
-    decreasingDelaySchedule(e, newDelay) == pendingDelayScheduleBefore
-  ), "pending delay stays the same if a default admin transfer is begun on accepted edge cases";
-}
--- a/certora/specs/helpers/helpers.spec
+++ b/certora/specs/helpers/helpers.spec
@ -1 +1,10 @@
+// environment
 definition nonpayable(env e) returns bool = e.msg.value == 0;
+definition nonzerosender(env e) returns bool = e.msg.sender != 0;
+
+// constants
+definition max_uint48() returns mathint = (1 << 48) - 1;
+
+// math
+definition min(mathint a, mathint b) returns mathint = a < b ? a : b;
+definition max(mathint a, mathint b) returns mathint = a > b ? a : b;
--- a/contracts/access/AccessControl.sol
+++ b/contracts/access/AccessControl.sol
@ -1,12 +1,12 @@
 // SPDX-License-Identifier: MIT
-// OpenZeppelin Contracts (last updated v4.8.0) (access/AccessControl.sol)
+// OpenZeppelin Contracts (last updated v4.9.0) (access/AccessControl.sol)

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

-import "./IAccessControl.sol";
-import "../utils/Context.sol";
-import "../utils/Strings.sol";
-import "../utils/introspection/ERC165.sol";
+import {IAccessControl} from "./IAccessControl.sol";
+import {Context} from "../utils/Context.sol";
+import {Strings} from "../utils/Strings.sol";
+import {ERC165} from "../utils/introspection/ERC165.sol";

 /**
 * @dev Contract module that allows children to implement role-based access
@ -82,7 +82,7 @@ abstract contract AccessControl is Context, IAccessControl, ERC165 {
    /**
     * @dev Returns `true` if `account` has been granted `role`.
     */
-    function hasRole(bytes32 role, address account) public view virtual override returns (bool) {
+    function hasRole(bytes32 role, address account) public view virtual returns (bool) {
        return _roles[role].members[account];
    }

@ -107,16 +107,7 @@ abstract contract AccessControl is Context, IAccessControl, ERC165 {
     */
    function _checkRole(bytes32 role, address account) internal view virtual {
        if (!hasRole(role, account)) {
-            revert(
-                string(
-                    abi.encodePacked(
-                        "AccessControl: account ",
-                        Strings.toHexString(account),
-                        " is missing role ",
-                        Strings.toHexString(uint256(role), 32)
-                    )
-                )
-            );
+            revert AccessControlUnauthorizedAccount(account, role);
        }
    }

@ -126,7 +117,7 @@ abstract contract AccessControl is Context, IAccessControl, ERC165 {
     *
     * To change a role's admin, use {_setRoleAdmin}.
     */
-    function getRoleAdmin(bytes32 role) public view virtual override returns (bytes32) {
+    function getRoleAdmin(bytes32 role) public view virtual returns (bytes32) {
        return _roles[role].adminRole;
    }

@ -142,7 +133,7 @@ abstract contract AccessControl is Context, IAccessControl, ERC165 {
     *
     * May emit a {RoleGranted} event.
     */
-    function grantRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
+    function grantRole(bytes32 role, address account) public virtual onlyRole(getRoleAdmin(role)) {
        _grantRole(role, account);
    }

@ -157,7 +148,7 @@ abstract contract AccessControl is Context, IAccessControl, ERC165 {
     *
     * May emit a {RoleRevoked} event.
     */
-    function revokeRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
+    function revokeRole(bytes32 role, address account) public virtual onlyRole(getRoleAdmin(role)) {
        _revokeRole(role, account);
    }

@ -173,38 +164,16 @@ abstract contract AccessControl is Context, IAccessControl, ERC165 {
     *
     * Requirements:
     *
-     * - the caller must be `account`.
+     * - the caller must be `callerConfirmation`.
     *
     * May emit a {RoleRevoked} event.
     */
-    function renounceRole(bytes32 role, address account) public virtual override {
-        require(account == _msgSender(), "AccessControl: can only renounce roles for self");
+    function renounceRole(bytes32 role, address callerConfirmation) public virtual {
+        if (callerConfirmation != _msgSender()) {
+            revert AccessControlBadConfirmation();
+        }

-        _revokeRole(role, account);
-    }
-
-    /**
-     * @dev Grants `role` to `account`.
-     *
-     * If `account` had not been already granted `role`, emits a {RoleGranted}
-     * event. Note that unlike {grantRole}, this function doesn't perform any
-     * checks on the calling account.
-     *
-     * May emit a {RoleGranted} event.
-     *
-     * [WARNING]
-     * ====
-     * This function should only be called from the constructor when setting
-     * up the initial roles for the system.
-     *
-     * Using this function in any other way is effectively circumventing the admin
-     * system imposed by {AccessControl}.
-     * ====
-     *
-     * NOTE: This function is deprecated in favor of {_grantRole}.
-     */
-    function _setupRole(bytes32 role, address account) internal virtual {
-        _grantRole(role, account);
+        _revokeRole(role, callerConfirmation);
    }

    /**
--- a/contracts/access/AccessControlCrossChain.sol
+++ b/contracts/access/AccessControlCrossChain.sol
@ -1,45 +0,0 @@
-// SPDX-License-Identifier: MIT
-// OpenZeppelin Contracts (last updated v4.6.0) (access/AccessControlCrossChain.sol)
-
-pragma solidity ^0.8.4;
-
-import "./AccessControl.sol";
-import "../crosschain/CrossChainEnabled.sol";
-
-/**
- * @dev An extension to {AccessControl} with support for cross-chain access management.
- * For each role, is extension implements an equivalent "aliased" role that is used for
- * restricting calls originating from other chains.
- *
- * For example, if a function `myFunction` is protected by `onlyRole(SOME_ROLE)`, and
- * if an address `x` has role `SOME_ROLE`, it would be able to call `myFunction` directly.
- * A wallet or contract at the same address on another chain would however not be able
- * to call this function. In order to do so, it would require to have the role
- * `_crossChainRoleAlias(SOME_ROLE)`.
- *
- * This aliasing is required to protect against multiple contracts living at the same
- * address on different chains but controlled by conflicting entities.
- *
- * _Available since v4.6._
- */
-abstract contract AccessControlCrossChain is AccessControl, CrossChainEnabled {
-    bytes32 public constant CROSSCHAIN_ALIAS = keccak256("CROSSCHAIN_ALIAS");
-
-    /**
-     * @dev See {AccessControl-_checkRole}.
-     */
-    function _checkRole(bytes32 role) internal view virtual override {
-        if (_isCrossChain()) {
-            _checkRole(_crossChainRoleAlias(role), _crossChainSender());
-        } else {
-            super._checkRole(role);
-        }
-    }
-
-    /**
-     * @dev Returns the aliased role corresponding to `role`.
-     */
-    function _crossChainRoleAlias(bytes32 role) internal pure virtual returns (bytes32) {
-        return role ^ CROSSCHAIN_ALIAS;
-    }
-}
--- a/contracts/access/AccessControlDefaultAdminRules.sol
+++ b/contracts/access/AccessControlDefaultAdminRules.sol
@ -1,12 +1,13 @@
 // SPDX-License-Identifier: MIT
-// OpenZeppelin Contracts (last updated v4.8.0) (access/AccessControlDefaultAdminRules.sol)
+// OpenZeppelin Contracts (last updated v4.9.0) (access/AccessControlDefaultAdminRules.sol)

-pragma solidity ^0.8.0;
+pragma solidity ^0.8.19;

-import "./AccessControl.sol";
-import "./IAccessControlDefaultAdminRules.sol";
-import "../utils/math/SafeCast.sol";
-import "../interfaces/IERC5313.sol";
+import {AccessControl, IAccessControl} from "./AccessControl.sol";
+import {IAccessControlDefaultAdminRules} from "./IAccessControlDefaultAdminRules.sol";
+import {SafeCast} from "../utils/math/SafeCast.sol";
+import {Math} from "../utils/math/Math.sol";
+import {IERC5313} from "../interfaces/IERC5313.sol";

 /**
 * @dev Extension of {AccessControl} that allows specifying special rules to manage
@ -53,7 +54,9 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     * @dev Sets the initial values for {defaultAdminDelay} and {defaultAdmin} address.
     */
    constructor(uint48 initialDelay, address initialDefaultAdmin) {
-        require(initialDefaultAdmin != address(0), "AccessControl: 0 default admin");
+        if (initialDefaultAdmin == address(0)) {
+            revert AccessControlInvalidDefaultAdmin(address(0));
+        }
        _currentDelay = initialDelay;
        _grantRole(DEFAULT_ADMIN_ROLE, initialDefaultAdmin);
    }
@ -80,7 +83,9 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     * @dev See {AccessControl-grantRole}. Reverts for `DEFAULT_ADMIN_ROLE`.
     */
    function grantRole(bytes32 role, address account) public virtual override(AccessControl, IAccessControl) {
-        require(role != DEFAULT_ADMIN_ROLE, "AccessControl: can't directly grant default admin role");
+        if (role == DEFAULT_ADMIN_ROLE) {
+            revert AccessControlEnforcedDefaultAdminRules();
+        }
        super.grantRole(role, account);
    }

@ -88,7 +93,9 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     * @dev See {AccessControl-revokeRole}. Reverts for `DEFAULT_ADMIN_ROLE`.
     */
    function revokeRole(bytes32 role, address account) public virtual override(AccessControl, IAccessControl) {
-        require(role != DEFAULT_ADMIN_ROLE, "AccessControl: can't directly revoke default admin role");
+        if (role == DEFAULT_ADMIN_ROLE) {
+            revert AccessControlEnforcedDefaultAdminRules();
+        }
        super.revokeRole(role, account);
    }

@ -106,12 +113,12 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     * non-administrated role.
     */
    function renounceRole(bytes32 role, address account) public virtual override(AccessControl, IAccessControl) {
-        if (role == DEFAULT_ADMIN_ROLE) {
+        if (role == DEFAULT_ADMIN_ROLE && account == defaultAdmin()) {
            (address newDefaultAdmin, uint48 schedule) = pendingDefaultAdmin();
-            require(
-                newDefaultAdmin == address(0) && _isScheduleSet(schedule) && _hasSchedulePassed(schedule),
-                "AccessControl: only can renounce in two delayed steps"
-            );
+            if (newDefaultAdmin != address(0) || !_isScheduleSet(schedule) || !_hasSchedulePassed(schedule)) {
+                revert AccessControlEnforcedDefaultAdminDelay(schedule);
+            }
+            delete _pendingDefaultAdminSchedule;
        }
        super.renounceRole(role, account);
    }
@ -127,7 +134,9 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     */
    function _grantRole(bytes32 role, address account) internal virtual override {
        if (role == DEFAULT_ADMIN_ROLE) {
-            require(defaultAdmin() == address(0), "AccessControl: default admin already granted");
+            if (defaultAdmin() != address(0)) {
+                revert AccessControlEnforcedDefaultAdminRules();
+            }
            _currentDefaultAdmin = account;
        }
        super._grantRole(role, account);
@ -137,7 +146,7 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     * @dev See {AccessControl-_revokeRole}.
     */
    function _revokeRole(bytes32 role, address account) internal virtual override {
-        if (role == DEFAULT_ADMIN_ROLE && account == _currentDefaultAdmin) {
+        if (role == DEFAULT_ADMIN_ROLE && account == defaultAdmin()) {
            delete _currentDefaultAdmin;
        }
        super._revokeRole(role, account);
@ -147,7 +156,9 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     * @dev See {AccessControl-_setRoleAdmin}. Reverts for `DEFAULT_ADMIN_ROLE`.
     */
    function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual override {
-        require(role != DEFAULT_ADMIN_ROLE, "AccessControl: can't violate default admin rules");
+        if (role == DEFAULT_ADMIN_ROLE) {
+            revert AccessControlEnforcedDefaultAdminRules();
+        }
        super._setRoleAdmin(role, adminRole);
    }

@ -235,7 +246,10 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     */
    function acceptDefaultAdminTransfer() public virtual {
        (address newDefaultAdmin, ) = pendingDefaultAdmin();
-        require(_msgSender() == newDefaultAdmin, "AccessControl: pending admin must accept");
+        if (_msgSender() != newDefaultAdmin) {
+            // Enforce newDefaultAdmin explicit acceptance.
+            revert AccessControlInvalidDefaultAdmin(_msgSender());
+        }
        _acceptDefaultAdminTransfer();
    }

@ -246,7 +260,9 @@ abstract contract AccessControlDefaultAdminRules is IAccessControlDefaultAdminRu
     */
    function _acceptDefaultAdminTransfer() internal virtual {
        (address newAdmin, uint48 schedule) = pendingDefaultAdmin();
-        require(_isScheduleSet(schedule) && _hasSchedulePassed(schedule), "AccessControl: transfer delay not passed");
+        if (!_isScheduleSet(schedule) || !_hasSchedulePassed(schedule)) {
+            revert AccessControlEnforcedDefaultAdminDelay(schedule);
+        }
        _revokeRole(DEFAULT_ADMIN_ROLE, defaultAdmin());
        _grantRole(DEFAULT_ADMIN_ROLE, newAdmin);
        delete _pendingDefaultAdmin;
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Francisco	0251ffbded	Update GUIDELINES.md Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-07-04 17:47:41 -03:00
Francisco	da258a58ae	Update GUIDELINES.md	2023-07-03 12:32:45 -03:00
Francisco	ac48658397	Add override guidelines	2023-07-03 12:05:50 -03:00
Paul Razvan Berg	06861dce54	Update docs for `SafeERC20.forceApprove` (#4231 )	2023-07-01 01:36:10 -03:00
Francisco	37270eb08a	Add security considerations to ERC2771Forwarder (#4406 )	2023-06-30 16:52:45 -03:00
Sebastian T F	621b867b1a	Imrove `BitMaps` documentation (#4400 ) Co-authored-by: Francisco <fg@frang.io> Co-authored-by: ernestognw <ernestognw@gmail.com>	2023-06-30 13:48:37 -03:00
Hicham010	04342118dc	Fix visibility in ERC721._checkOnERC721Received documentation (#4386 )	2023-06-30 13:08:46 -03:00
Francisco	874c2d3c02	Use explicit imports (#4399 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: ernestognw <ernestognw@gmail.com>	2023-06-29 20:12:26 +00:00
Renan Souza	d6a8b2ccd7	Fix details AccessControl-test (#4391 )	2023-06-29 13:41:44 -03:00
Ernesto García	023894deef	Add `ERC2771Forwarder` as an enhanced successor to `MinimalForwarder` (#4346 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-29 13:00:35 -03:00
Francisco	f29307cfe0	Add Foundry installation instructions with required warnings (#4389 )	2023-06-26 11:36:46 -03:00
Ernesto García	8cab922347	Rename `ERC1155InsufficientApprovalForAll` to `ERC1155MissingApprovalForAll` (#4381 )	2023-06-26 14:20:01 +02:00
Francisco	cb4bf950df	Add unreleased disclaimer in readme	2023-06-24 00:23:25 -03:00
Renan Souza	c44c220254	Update Ownable2Step docs (#4384 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-23 19:37:27 -03:00
Hadrien Croubois	da89c438f1	Pack Governor's ProposalCore into a single slot (#4268 ) Co-authored-by: Ernesto García <ernestognw@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-06-23 13:05:22 -03:00
Sergei Tikhomirov	a7a94c7746	Update comment to reflect code logic in Ownable.sol (#4369 )	2023-06-22 16:34:53 -06:00
Hadrien Croubois	1e0e4e20bb	Do not emit Approval event when calling transferFrom (#4370 ) Co-authored-by: Ernesto García <ernestognw@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-06-22 10:41:56 -06:00
Hadrien Croubois	6ddacdbde8	Cleanup timelockId on execution for gas refund (#4118 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-20 16:38:03 -03:00
Hadrien Croubois	dac2457a80	Improve customError testing (#4376 )	2023-06-20 18:34:10 +02:00
Francisco	b66c77a1fc	Merge branch 'release-v4.9' into master (#4373 )	2023-06-20 13:06:56 -03:00
Francisco	9fa550c62f	Fix attempt to delete nonexistent npm tag (#4374 )	2023-06-20 13:06:39 -03:00
Hadrien Croubois	2271e2c58d	Use clones for testing non ERC1967 proxies (#4371 )	2023-06-20 10:01:30 +02:00
Hadrien Croubois	365aca6d60	Improve tests for ERC1155 and ERC721 error handling (#3781 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-20 03:20:02 +00:00
Ernesto García	1d0dbcf9ab	Make `TransparentUpgradeableProxy` admin immutable (#4354 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-06-19 20:57:30 -06:00
Balaji Shetty Pachai	1f4e33fb72	Add toStringSigned to Strings.sol (#4330 ) Co-authored-by: Francisco <fg@frang.io> Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-06-19 20:56:00 -03:00
Ernesto García	fc19a7947c	Change release cycle `prBackExists` definition (#4365 )	2023-06-19 19:33:21 -03:00
Francisco	c95a445130	Detect MerkleProof multiproof invariant violation (#4367 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-06-19 15:55:35 -03:00
Hadrien Croubois	1a77a508f9	Move upgradeToAndCallUUPS to UUPSUpgradeable (#4356 ) Co-authored-by: ernestognw <ernestognw@gmail.com>	2023-06-16 23:25:58 -03:00
Francisco	002a7c8812	Remove automatic conflict resolution for merge from release branch (#4362 )	2023-06-16 15:42:19 -03:00
Claudia Barcelo	cd48b3eab3	Add validation in Governor on ERC-721 or ERC-1155 received (#4314 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io> Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-06-15 21:43:17 -03:00
Hadrien Croubois	6724873895	Output contract name where storage inconsistency was found (#4357 )	2023-06-15 18:54:35 -03:00
Hadrien Croubois	c014c8f148	Use ERC721Holder & ERC1155Holder in the TimelockController (#4284 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-15 18:27:36 -03:00
Hadrien Croubois	ff85c7b0eb	Make ERC1967Upgrades a library instead of an abstract contract (#4325 )	2023-06-15 22:01:04 +02:00
Claudia Barcelo	05ef6924ac	Optimize array access in ERC1155 (#4300 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco Giordano <fg@frang.io>	2023-06-15 02:39:34 +00:00
Ernesto García	2477534260	Change behavior of ceilDiv(0, 0) and improve test coverage (#4348 )	2023-06-14 17:21:42 -03:00
Ernesto García	ac5480e7ca	Merge release-v4.9 branch (#4352 )	2023-06-14 20:11:37 +00:00
Hadrien Croubois	ef103f37e4	Replace some uses of abi.encodePacked with more explicit alternatives (#4296 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-14 21:11:12 +02:00
Ernesto García	5cc1ea0a39	Add `GUIDELINES.md` for marking `abstract` contracts (#4010 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco Giordano <fg@frang.io>	2023-06-14 19:01:33 +00:00
Hadrien Croubois	7cc2cbfeb5	Cleanup the structure of GovernorTimelockControl.test.js (#4302 )	2023-06-14 16:00:38 +02:00
Renan Souza	604025400f	Add EIP-712 `name` and `version` getters (#4303 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: ernestognw <ernestognw@gmail.com>	2023-06-13 23:54:09 -03:00
Zack Reneau-Wedeen	d6c7cee321	Update index.adoc (#4336 ) Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-06-13 17:32:24 -03:00
Zack Reneau-Wedeen	fe08f58c69	Update README.md (#4335 )	2023-06-13 16:50:16 -03:00
Ernesto García	b425a72240	Replace revert strings with custom errors (#4261 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-06-12 23:41:52 +00:00
Pascal Marco Caversaccio	08fd777f6d	Rename "`ecrecover` opcode" to "`ecrecover` precompile" in `ECDSA` (#4339 )	2023-06-12 11:00:35 +02:00
Pascal Marco Caversaccio	e73f90fa9d	Fix `IERC1155.safeBatchTransferFrom` documentation (#4340 )	2023-06-11 16:38:31 -03:00
Robb Walters	cc04263170	Highlight Reentrancy Risk in IERC1155 SafeTransferFrom Function (#4283 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-09 13:00:16 -03:00
Pascal Marco Caversaccio	1d5bcd04e7	`ECDSA`: Use unchecked arithmetic for the `tryRecover` function (#4301 ) Signed-off-by: Pascal Marco Caversaccio <pascal.caversaccio@hotmail.ch>	2023-06-07 19:10:43 -06:00
Hadrien Croubois	d9474327a4	Merge pull request from GHSA-5h3x-9wvq-w4m2 Co-authored-by: Francisco <fg@frang.io> Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-06-06 21:32:14 -03:00
Renan Souza	df2778f38e	Remove override interface implementations (#4315 ) Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-06-06 18:13:08 -06:00
Balaji Shetty Pachai	4fd2f8be33	Replace abi.encodeWithSelector & abi.encodeWithSignature with abi.encodeCall (#4293 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-06-06 17:32:55 -03:00
Francisco	85696d80ad	Remove further hardcoded function resolution (#4309 )	2023-06-06 11:42:50 -06:00
Pascal Marco Caversaccio	6c14de4f0c	`ECDSA`: Use hexadecimal literals (#4317 )	2023-06-06 10:00:01 -06:00
Igor Żuk	253bfa68c2	Optimize Strings.equal (#4262 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-06-05 18:37:12 -06:00
Francisco	ffceb3cd98	Remove hardcoded function resolution (#4299 )	2023-06-02 14:20:58 -03:00
Hadrien Croubois	eecd5e15c7	Make CHANGELOG more compact for improved readability (#4306 )	2023-06-02 15:42:02 +00:00
Hadrien Croubois	2d1da295e6	Move some changeset to the "Removals" section of CHANGELOG (#4290 ) Co-authored-by: Ernesto García <ernestognw@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-06-02 12:14:41 -03:00
Francisco	3902a410f1	Remove DOMAIN_SEPARATOR from Votes and update docs examples (#4297 ) Co-authored-by: Qiwei Yang <yangqiwei97@gmail.com> Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-06-02 12:02:57 -03:00
Renan Souza	5cef83d2c7	Optimize array allocation in ERC1155 (#4196 ) Co-authored-by: Francisco <fg@frang.io>	2023-06-02 11:37:59 -03:00
renovate[bot]	30256fa838	Update lockfile (#4294 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-01 20:15:51 -03:00
Hadrien Croubois	2ee1da12c4	Remove utils/Counters.sol (#4289 ) Co-authored-by: Francisco Giordano <fg@frang.io>	2023-05-31 11:40:28 -03:00
Francisco Giordano	4c713f8cea	Merge branch 'master' into next-v5.0	2023-05-30 17:02:47 -03:00
Ernesto García	7bb5592ad5	Bump minimum pragma version to `0.8.19` (#4288 )	2023-05-29 21:37:37 +02:00
Hadrien Croubois	15c5c71795	Remove TokenTimelock, PaymentSplitter, ERC20Snapshot, ERC20VotesComp, GovernorVotesComp (#4276 )	2023-05-26 23:30:00 +01:00
Hadrien Croubois	4448c13c3c	Move the Checkpoints library to utils/structs (#4275 )	2023-05-26 16:19:27 -03:00
kfishnchips	5420879d9b	Ability to set starting token id for ERC721Consecutive (#4097 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: ernestognw <ernestognw@gmail.com>	2023-05-26 10:07:16 -06:00
Hadrien Croubois	25edd3cd62	Use SafeERC20.forceApprove in safeIncreaseAllowance and safeDecreaseAllowance (#4260 ) Co-authored-by: Francisco <fg@frang.io>	2023-05-25 16:27:48 -03:00
Francisco	238d17cab9	Merge master in next-v5.0 (#4280 )	2023-05-25 17:01:25 +01:00
Hadrien Croubois	5955d8e85b	Merge remote-tracking branch 'upstream/master' into next-v5.0	2023-05-25 10:52:46 +02:00
github-actions[bot]	09329f8a18	Merge release-v4.9 branch (#4274 ) Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Francisco Giordano <fg@frang.io> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-05-24 10:37:00 -03:00
Balaji Shetty Pachai	cbc6145f5f	Removes zero address check from balanceOf in ERC1155 (#4263 ) Co-authored-by: bpachai <bpachai@v2soft.com> Co-authored-by: Francisco Giordano <fg@frang.io>	2023-05-24 08:39:06 +00:00
Hadrien Croubois	13d5e0466a	Make Ownable's initial owner explicit (#4267 ) Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-05-23 18:26:43 -03:00
Francisco	7e814a3074	Fix release merge script (#4273 ) Co-authored-by: Ernesto García <ernestognw@gmail.com>	2023-05-23 18:21:17 -03:00
Hadrien Croubois	a1d57bac50	Improve FV specifications for AccessControlDefaultAdminRules (#4223 ) Co-authored-by: ernestognw <ernestognw@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-05-23 12:54:34 -06:00
Hadrien Croubois	11d65442b3	Merge branch 'master' into next-v5.0	2023-05-23 14:11:36 +02:00
Hadrien Croubois	dfef6a68ee	Fix error when running hardhat test with parameters (#4265 )	2023-05-19 21:49:23 +00:00
Hadrien Croubois	0f10efe232	Remove code in preparation for v5.0 (#4258 ) Co-authored-by: Ernesto García <ernestognw@gmail.com> Co-authored-by: Francisco <fg@frang.io>	2023-05-19 22:48:05 +02:00
Bhaskar Kashyap	96b95592c3	Fix grammar in docs (#4250 )	2023-05-16 23:23:52 -03:00
Francisco Giordano	8de6eba8a3	Merge branch 'master' into next-v5.0	2023-05-16 00:07:07 -03:00
Francisco	1642b6639b	Reduce frequency of version comment updates (#4244 )	2023-05-12 14:22:26 -03:00
Hadrien Croubois	3ec4307c8a	Fix bug allowing anyone to cancel an admin renounce (#4238 ) Co-authored-by: Francisco Giordano <fg@frang.io>	2023-05-11 17:17:06 +00:00
Francisco	f355bd3a2a	Prevent attempt to publish to npm (#4239 )	2023-05-11 13:41:02 -03:00
Francisco	3e1b25a5cf	Clean up pending admin schedule on renounce in DefaultAdminRules (#4230 )	2023-05-10 20:08:05 +00:00
Francisco	f7b236dca8	Configure Codespell to check hidden files (#4236 )	2023-05-10 21:58:56 +02:00
Ernesto García	e5dbc7435e	Add final PDF report for v4.9 audit (#4235 )	2023-05-10 15:59:11 -03:00
renovate[bot]	9a2e4cb3a7	Update codespell-project/actions-codespell action to v2 (#4229 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-05-09 20:59:22 -03:00
Francisco Giordano	d095542fa4	Disable code size warnings on exposed contracts	2023-05-09 17:36:33 -03:00
Francisco Giordano	dff520afae	Specify changeset PRs manually	2023-05-09 16:53:55 -03:00
Francisco Giordano	2d05db171a	Add note about supply limit in ERC1155Supply	2023-01-31 17:27:05 -03:00
JulissaDantes	e919d96ff2	Add ERC1155.totalSupply that returns overall supply count (#3962 )	2023-01-25 21:39:02 +01:00
Francisco	54c31ad98b	Merge master into next-v5.0 (#3980 )	2023-01-24 19:48:49 -03:00
Hadrien Croubois	5ad74c6d10	Merge branch 'master' into next-v5.0	2023-01-24 19:37:11 -03:00
JulissaDantes	c5d040beb9	Remove Address.isContract (#3945 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco Giordano <fg@frang.io>	2023-01-24 17:59:07 -03:00
Hadrien Croubois	30c3c6c16e	Clean up after merging master into next-v5.0 (#3956 ) Co-authored-by: Francisco <fg@frang.io>	2023-01-14 21:19:47 -03:00
Hadrien Croubois	147dc89054	Merge branch 'master' into next-v5.0	2023-01-14 18:51:03 -03:00
Hadrien Croubois	7c6e289782	Prepare tests for hardhat-exposed transition (#3930 ) Co-authored-by: Francisco <frangio.1@gmail.com>	2023-01-12 09:51:29 +01:00
JulissaDantes	d210847e28	Fix ERC20._update (#3921 ) Co-authored-by: Francisco <frangio.1@gmail.com> Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>	2023-01-10 17:21:35 -03:00
Francisco	a290e13099	Add warning in next-v5.0 branch readme (#3941 )	2023-01-10 11:15:22 +01:00
JulissaDantes	97bba5adaa	Remove ERC1155 hooks (#3876 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <frangio.1@gmail.com>	2023-01-10 11:13:05 +01:00
Francisco Giordano	fbbaf3365b	Merge branch 'master' into next-v5.0	2022-12-26 23:31:13 -03:00
Francisco Giordano	4147005b0c	Update Prettier Solidity (#3898 )	2022-12-26 23:28:51 -03:00
JulissaDantes	81dbe643a0	Remove ERC165Storage (#3880 ) Co-authored-by: Francisco <frangio.1@gmail.com>	2022-12-19 18:18:33 -03:00
Francisco Giordano	9cbe8b340c	Merge branch 'master' into next-v5.0	2022-12-19 18:17:33 -03:00
JulissaDantes	3c80a42866	Remove hooks from ERC20 (#3838 ) Co-authored-by: Francisco <frangio.1@gmail.com>	2022-12-14 16:43:45 -03:00
JulissaDantes	e2d2ebc8fc	Make ERC20Votes independent from ERC20Permit (#3816 ) Co-authored-by: Francisco <frangio.1@gmail.com>	2022-11-29 11:25:52 -03:00
JulissaDantes	bc8f442d00	Remove admin and implementation getters from TransparentUpgradeableProxy (#3820 ) Co-authored-by: Francisco <frangio.1@gmail.com>	2022-11-25 15:27:58 -03:00
Hadrien Croubois	4a9db80cb9	Remove presets (#3637 ) Co-authored-by: Francisco Giordano <frangio.1@gmail.com> Co-authored-by: JulissaDantes <julissadcj@gmail.com>	2022-11-25 12:46:47 -03:00
JulissaDantes	887985413c	Use default admin role in TimelockController (#3799 ) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <frangio.1@gmail.com>	2022-11-09 13:18:27 -03:00
JulissaDantes	b18cf4ba42	Merge branch 'next-v5.0' of https://github.com/OpenZeppelin/openzeppelin-contracts into next-v5.0	2022-11-09 09:27:54 -04:00
Hadrien Croubois	39a752e398	Generate gas report for next-v* branches	2022-11-09 09:26:06 -04:00
JulissaDantes	6ff283bebc	Merge branch 'master' into next-v5.0	2022-11-04 11:36:45 -04:00
Hadrien Croubois	1cf4db9615	Generate gas report for next-v* branches	2022-08-19 16:30:19 +02:00