fix(deps): update smart-contracts

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@openzeppelin/contracts (source)	5.0.2 -> 5.1.0
@openzeppelin/contracts-upgradeable5 (source)	5.0.2 -> 5.1.0
@openzeppelin/contracts5 (source)	5.0.2 -> 5.1.0
@openzeppelin/hardhat-upgrades (source)	3.4.0 -> 3.5.0
@openzeppelin/upgrades-core (source)	1.39.0 -> 1.40.0
eslint (source)	9.11.1 -> 9.14.0

---

Release Notes

OpenZeppelin/openzeppelin-contracts (@​openzeppelin/contracts)

v5.1.0

Compare Source

Breaking changes

• ERC1967Utils: Removed duplicate declaration of the Upgraded, AdminChanged and BeaconUpgraded events. These events are still available through the IERC1967 interface located under the contracts/interfaces/ directory. Minimum pragma version is now 0.8.21.
• Governor, GovernorCountingSimple: The _countVote virtual function now returns an uint256 with the total votes casted. This change allows for more flexibility for partial and fractional voting. Upgrading users may get a compilation error that can be fixed by adding a return statement to the _countVote function.

Custom error changes

This version comes with changes to the custom error identifiers. Contracts previously depending on the following errors should be replaced accordingly:

• Replace Address.FailedInnerCall with Errors.FailedCall
• Replace Address.AddressInsufficientBalance with Errors.InsufficientBalance
• Replace Clones.Create2InsufficientBalance with Errors.InsufficientBalance
• Replace Clones.ERC1167FailedCreateClone with Errors.FailedDeployment
• Replace Clones.Create2FailedDeployment with Errors.FailedDeployment
• SafeERC20: Replace Address.AddressEmptyCode with SafeERC20FailedOperation if there is no code at the token's address.
• SafeERC20: Replace generic Error(string) with SafeERC20FailedOperation if the returned data can't be decoded as bool.
• SafeERC20: Replace generic SafeERC20FailedOperation with the revert message from the contract call if it fails.

Changes by category

General

• AccessManager, VestingWallet, TimelockController and ERC2771Forwarder: Added a public initializer function in their corresponding upgradeable variants. (#​5008)

Access

• AccessControlEnumerable: Add a getRoleMembers method to return all accounts that have role. (#​4546)
• AccessManager: Allow the onlyAuthorized modifier to restrict functions added to the manager. (#​5014)

Finance

• VestingWalletCliff: Add an extension of the VestingWallet contract with an added cliff. (#​4870)

Governance

• GovernorCountingFractional: Add a governor counting module that allows distributing voting power amongst 3 options (For, Against, Abstain). (#​5045)
• Votes: Set _moveDelegateVotes visibility to internal instead of private. (#​5007)

Proxy

• Clones: Add version of clone and cloneDeterministic that support sending value at creation. (#​4936)
• TransparentUpgradeableProxy: Make internal _proxyAdmin() getter have view visibility. (#​4688)
• ProxyAdmin: Fixed documentation for UPGRADE_INTERFACE_VERSION getter. (#​5031)

Tokens

• ERC1363: Add implementation of the token payable standard allowing execution of contract code after transfers and approvals. (#​4631)
• ERC20TemporaryApproval: Add an ERC-20 extension that implements temporary approval using transient storage, based on ERC7674 (draft). (#​5071)
• SafeERC20: Add "relaxed" function for interacting with ERC-1363 functions in a way that is compatible with EOAs. (#​4631)
• SafeERC20: Document risks of safeIncreaseAllowance and safeDecreaseAllowance when associated with ERC-7674. (#​5262)
• ERC721Utils and ERC1155Utils: Add reusable libraries with functions to perform acceptance checks on IERC721Receiver and IERC1155Receiver implementers. (#​4845)
• ERC1363Utils: Add helper similar to the existing ERC721Utils and ERC1155Utils. (#​5133)

Utils

• Arrays: add a sort functions for address[], bytes32[] and uint256[] memory arrays. (#​4846)
• Arrays: add new functions lowerBound, upperBound, lowerBoundMemory and upperBoundMemory for lookups in sorted arrays with potential duplicates. (#​4842)
• Arrays: deprecate findUpperBound in favor of the new lowerBound. (#​4842)
• Base64: Add encodeURL following section 5 of RFC4648 for URL encoding (#​4822)
• Comparator: A library of comparator functions, useful for customizing the behavior of the Heap structure. (#​5084)
• Create2: Bubbles up returndata from a deployed contract that reverted during construction. (#​5052)
• Create2, Clones: Mask computeAddress and cloneDeterministic outputs to produce a clean value for an address type (i.e. only use 20 bytes) (#​4941)
• Errors: New library of common custom errors. (#​4936)
• Hashes: A library with commonly used hash functions. (#​3617)
• Packing: Added a new utility for packing, extracting and replacing bytesXX values. (#​4992)
• Panic: Add a library for reverting with panic codes. (#​3298)
• ReentrancyGuardTransient: Added a variant of ReentrancyGuard that uses transient storage. (#​4988)
• Strings: Added a utility function for converting an address to checksummed string. (#​5067)
• SlotDerivation: Add a library of methods for derivating common storage slots. (#​4975)
• TransientSlot: Add primitives for operating on the transient storage space using a typed-slot representation. (#​4980)

Cryptography

• SignatureChecker: refactor isValidSignatureNow to avoid validating ECDSA signatures if there is code deployed at the signer's address. (#​4951)
• MerkleProof: Add variations of verify, processProof, multiProofVerify and processMultiProof (and equivalent calldata version) with support for custom hashing functions. (#​4887)
• P256: Library for verification and public key recovery of P256 (aka secp256r1) signatures. (#​4881)
• RSA: Library to verify signatures according to RFC 8017 Signature Verification Operation (#​4952)

Math

• Math: add an invMod function to get the modular multiplicative inverse of a number in Z/nZ. (#​4839)
• Math: Add modExp function that exposes the EIP-198 precompile. Includes uint256 and bytes memory versions. (#​3298)
• Math: Custom errors replaced with native panic codes. (#​3298)
• Math, SignedMath: Add a branchless ternary function that computescond ? a : b in constant gas cost. (#​4976)
• SafeCast: Add toUint(bool) for operating on bool values as uint256. (#​4878)

Structures

• CircularBuffer: Add a data structure that stores the last N values pushed to it. (#​4913)
• DoubleEndedQueue: Custom errors replaced with native panic codes. (#​4872)
• EnumerableMap: add UintToBytes32Map, AddressToAddressMap, AddressToBytes32Map and Bytes32ToAddressMap. (#​4843)
• Heap: A data structure that implements a heap-based priority queue. (#​5084)
• MerkleTree: A data structure that allows inserting elements into a merkle tree and updating its root hash. (#​3617)

OpenZeppelin/openzeppelin-contracts-upgradeable (@​openzeppelin/contracts-upgradeable5)

v5.1.0

Compare Source

Breaking changes

• ERC1967Utils: Removed duplicate declaration of the Upgraded, AdminChanged and BeaconUpgraded events. These events are still available through the IERC1967 interface located under the contracts/interfaces/ directory. Minimum pragma version is now 0.8.21.
• Governor, GovernorCountingSimple: The _countVote virtual function now returns an uint256 with the total votes casted. This change allows for more flexibility for partial and fractional voting. Upgrading users may get a compilation error that can be fixed by adding a return statement to the _countVote function.

Custom error changes

This version comes with changes to the custom error identifiers. Contracts previously depending on the following errors should be replaced accordingly:

• Replace Address.FailedInnerCall with Errors.FailedCall
• Replace Address.AddressInsufficientBalance with Errors.InsufficientBalance
• Replace Clones.Create2InsufficientBalance with Errors.InsufficientBalance
• Replace Clones.ERC1167FailedCreateClone with Errors.FailedDeployment
• Replace Clones.Create2FailedDeployment with Errors.FailedDeployment
• SafeERC20: Replace Address.AddressEmptyCode with SafeERC20FailedOperation if there is no code at the token's address.
• SafeERC20: Replace generic Error(string) with SafeERC20FailedOperation if the returned data can't be decoded as bool.
• SafeERC20: Replace generic SafeERC20FailedOperation with the revert message from the contract call if it fails.

Changes by category

General

• AccessManager, VestingWallet, TimelockController and ERC2771Forwarder: Added a public initializer function in their corresponding upgradeable variants. (#​5008)

Access

• AccessControlEnumerable: Add a getRoleMembers method to return all accounts that have role. (#​4546)
• AccessManager: Allow the onlyAuthorized modifier to restrict functions added to the manager. (#​5014)

Finance

• VestingWalletCliff: Add an extension of the VestingWallet contract with an added cliff. (#​4870)

Governance

• GovernorCountingFractional: Add a governor counting module that allows distributing voting power amongst 3 options (For, Against, Abstain). (#​5045)
• Votes: Set _moveDelegateVotes visibility to internal instead of private. (#​5007)

Proxy

• Clones: Add version of clone and cloneDeterministic that support sending value at creation. (#​4936)
• TransparentUpgradeableProxy: Make internal _proxyAdmin() getter have view visibility. (#​4688)
• ProxyAdmin: Fixed documentation for UPGRADE_INTERFACE_VERSION getter. (#​5031)

Tokens

• ERC1363: Add implementation of the token payable standard allowing execution of contract code after transfers and approvals. (#​4631)
• ERC20TemporaryApproval: Add an ERC-20 extension that implements temporary approval using transient storage, based on ERC7674 (draft). (#​5071)
• SafeERC20: Add "relaxed" function for interacting with ERC-1363 functions in a way that is compatible with EOAs. (#​4631)
• SafeERC20: Document risks of safeIncreaseAllowance and safeDecreaseAllowance when associated with ERC-7674. (#​5262)
• ERC721Utils and ERC1155Utils: Add reusable libraries with functions to perform acceptance checks on IERC721Receiver and IERC1155Receiver implementers. (#​4845)
• ERC1363Utils: Add helper similar to the existing ERC721Utils and ERC1155Utils. (#​5133)

Utils

• Arrays: add a sort functions for address[], bytes32[] and uint256[] memory arrays. (#​4846)
• Arrays: add new functions lowerBound, upperBound, lowerBoundMemory and upperBoundMemory for lookups in sorted arrays with potential duplicates. (#​4842)
• Arrays: deprecate findUpperBound in favor of the new lowerBound. (#​4842)
• Base64: Add encodeURL following section 5 of RFC4648 for URL encoding (#​4822)
• Comparator: A library of comparator functions, useful for customizing the behavior of the Heap structure. (#​5084)
• Create2: Bubbles up returndata from a deployed contract that reverted during construction. (#​5052)
• Create2, Clones: Mask computeAddress and cloneDeterministic outputs to produce a clean value for an address type (i.e. only use 20 bytes) (#​4941)
• Errors: New library of common custom errors. (#​4936)
• Hashes: A library with commonly used hash functions. (#​3617)
• Packing: Added a new utility for packing, extracting and replacing bytesXX values. (#​4992)
• Panic: Add a library for reverting with panic codes. (#​3298)
• ReentrancyGuardTransient: Added a variant of ReentrancyGuard that uses transient storage. (#​4988)
• Strings: Added a utility function for converting an address to checksummed string. (#​5067)
• SlotDerivation: Add a library of methods for derivating common storage slots. (#​4975)
• TransientSlot: Add primitives for operating on the transient storage space using a typed-slot representation. (#​4980)

Cryptography

• SignatureChecker: refactor isValidSignatureNow to avoid validating ECDSA signatures if there is code deployed at the signer's address. (#​4951)
• MerkleProof: Add variations of verify, processProof, multiProofVerify and processMultiProof (and equivalent calldata version) with support for custom hashing functions. (#​4887)
• P256: Library for verification and public key recovery of P256 (aka secp256r1) signatures. (#​4881)
• RSA: Library to verify signatures according to RFC 8017 Signature Verification Operation (#​4952)

Math

• Math: add an invMod function to get the modular multiplicative inverse of a number in Z/nZ. (#​4839)
• Math: Add modExp function that exposes the EIP-198 precompile. Includes uint256 and bytes memory versions. (#​3298)
• Math: Custom errors replaced with native panic codes. (#​3298)
• Math, SignedMath: Add a branchless ternary function that computescond ? a : b in constant gas cost. (#​4976)
• SafeCast: Add toUint(bool) for operating on bool values as uint256. (#​4878)

Structures

• CircularBuffer: Add a data structure that stores the last N values pushed to it. (#​4913)
• DoubleEndedQueue: Custom errors replaced with native panic codes. (#​4872)
• EnumerableMap: add UintToBytes32Map, AddressToAddressMap, AddressToBytes32Map and Bytes32ToAddressMap. (#​4843)
• Heap: A data structure that implements a heap-based priority queue. (#​5084)
• MerkleTree: A data structure that allows inserting elements into a merkle tree and updating its root hash. (#​3617)

OpenZeppelin/openzeppelin-upgrades (@​openzeppelin/hardhat-upgrades)

v3.5.0

Compare Source

• Support ignoring Hardhat compile errors when extracting detailed namespaced storage layouts for validations. (#​1090)

OpenZeppelin/openzeppelin-upgrades (@​openzeppelin/upgrades-core)

v1.40.0

Compare Source

• Fix Hardhat compile error when overriding interface functions with public constant variables. (#​1091)
• Support ignoring Hardhat compile errors when extracting detailed namespaced storage layouts for validations. (#​1090)

eslint/eslint (eslint)

v9.14.0

Compare Source

v9.13.0

Compare Source

v9.12.0

Compare Source

Features

• 5a6a053 feat: update to jiti v2 (#​18954) (Arya Emami)
• 17a07fb feat: Hooks for test cases (RuleTester) (#​18771) (Anna Bocharova)
• 2ff0e51 feat: Implement alternate config lookup (#​18742) (Nicholas C. Zakas)
• 2d17453 feat: Implement modified cyclomatic complexity (#​18896) (Dmitry Pashkevich)

Bug Fixes

• ea380ca fix: Upgrade retry to avoid EMFILE errors (#​18986) (Nicholas C. Zakas)
• fdd6319 fix: Issues with type definitions (#​18940) (Arya Emami)

Documentation

• ecbd522 docs: Mention code explorer (#​18978) (Nicholas C. Zakas)
• 7ea4ecc docs: Clarifying the Use of Meta Objects (#​18697) (Amaresh S M)
• d3e4b2e docs: Clarify how to exclude .js files (#​18976) (Milos Djermanovic)
• 57232ff docs: Mention plugin-kit in language docs (#​18973) (Nicholas C. Zakas)
• b80ed00 docs: Update README (GitHub Actions Bot)
• cb69ab3 docs: Update README (GitHub Actions Bot)
• 7fb0d95 docs: Update README (GitHub Actions Bot)
• 493348a docs: Update README (GitHub Actions Bot)
• 87a582c docs: fix typo in id-match rule (#​18944) (Jay)

Chores

• 555aafd chore: upgrade to @eslint/[email protected] (#​18987) (Francesco Trotta)
• 873ae60 chore: package.json update for @​eslint/js release (Jenkins)
• d0a5414 refactor: replace strip-ansi with native module (#​18982) (Cristopher)
• b827029 chore: Enable JSON5 linting (#​18979) (Milos Djermanovic)
• 8f55ca2 chore: Upgrade espree, eslint-visitor-keys, eslint-scope (#​18962) (Nicholas C. Zakas)
• c1a2725 chore: update dependency mocha to ^10.7.3 (#​18945) (Milos Djermanovic)

---

Configuration

📅 Schedule: Branch creation - "on the first day of the month" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Never, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.