Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps-dev): bump @openzeppelin/hardhat-upgrades from 1.27.0 to 3.0.0 #434

Closed
wants to merge 1 commit into from
Closed

build(deps-dev): bump @openzeppelin/hardhat-upgrades from 1.27.0 to 3.0.0 #434

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 11, 2023

Bumps @openzeppelin/hardhat-upgrades from 1.27.0 to 3.0.0.

Release notes

Sourced from @​openzeppelin/hardhat-upgrades's releases.

@​openzeppelin/hardhat-upgrades@​3.0.0

This is a major version of the Hardhat Upgrades plugin that contains breaking changes. Please review the changes below.

This version deploys proxy contracts from OpenZeppelin Contracts 5.0, and no longer supports deploying proxy contracts from OpenZeppelin Contracts 4.x. However, it still supports importing and/or managing existing proxies that were deployed from previous versions.

If you are using Hardhat Verify, this plugin now requires Hardhat Verify 2.0.0 or higher.

Summary

  • Deploy proxies from OpenZeppelin Contracts 5.0. (#919)
  • Support initialOwner option when deploying a transparent proxy or beacon. If not set, the externally owned account used during deployment will be the default owner for the transparent proxy's admin or the beacon, respectively.
  • Update optional peer dependency on @nomicfoundation/hardhat-verify to v2.0.0 or higher. (#937)
    • Note: Fully verifying proxies is only supported with Etherscan at the moment. The Hardhat Upgrades plugin does not currently assist with Sourcify verification for proxies.

Breaking changes

  • deployProxy, deployBeacon, deployBeaconProxy: Deploys proxy contracts from OpenZeppelin Contracts 5.0.
  • deployProxy:
    • Deploying a transparent proxy automatically causes a new proxy admin contract to be deployed along with the proxy.
    • New transparent proxy deployments no longer use an existing proxy admin, even if one was previously recorded in the network file.
    • New proxy admins are no longer recorded in the network file.
  • deployProxyAdmin: Removed, since proxy admins are deployed automatically by transparent proxies.
  • admin.changeProxyAdmin: Not supported with admins or proxies from OpenZeppelin Contracts 5.0. Only supported for previously deployed admins and proxies from OpenZeppelin Contracts 4.x or below.
  • admin.transferProxyAdminOwnership: This function no longer uses the proxy admin from the network file. It now requires a proxyAddress argument to be passed in.
  • @nomicfoundation/hardhat-verify v1.x and @nomicfoundation/hardhat-toolbox v3.x are no longer supported with this plugin. If you are using these packages, update them to @nomicfoundation/hardhat-verify v2.x and @nomicfoundation/hardhat-toolbox v4.x.

@​openzeppelin/hardhat-upgrades@​3.0.0-alpha.0

Disclaimer

This is an alpha release of a new major version which contains breaking changes. Additional breaking changes may be introduced leading up to the full release.

Documentation

API documentation for this alpha release can be found here.

Summary

  • Deploy proxies from OpenZeppelin Contracts 5.0.
  • Support initialOwner option when deploying a transparent proxy or beacon. If not set, the externally owned account used during deployment will be the default owner for the transparent proxy's admin or the beacon, respectively.

Breaking changes

  • deployProxy, deployBeacon, deployBeaconProxy: Deploys proxy contracts from OpenZeppelin Contracts 5.0.
  • deployProxy:
    • Deploying a transparent proxy automatically causes a new proxy admin contract to be deployed along with the proxy.
    • New transparent proxy deployments no longer use an existing proxy admin, even if one was previously recorded in the network file.
    • New proxy admins are no longer recorded in the network file.
  • deployProxyAdmin: Removed, since proxy admins are deployed automatically by transparent proxies.
  • admin.changeProxyAdmin: Not supported with admins or proxies from OpenZeppelin Contracts 5.0. Only supported for previously deployed admins and proxies from OpenZeppelin Contracts 4.x or below.
  • admin.transferProxyAdminOwnership: This function no longer uses the proxy admin from the network file. It now requires a proxyAddress argument to be passed in.

@​openzeppelin/hardhat-upgrades@​2.5.0

  • Add defender.getDeployApprovalProcess and defender.getUpgradeApprovalProcess functions. (#934)
  • Deprecate defender.getDefaultApprovalProcess function. This function is equivalent to defender.getUpgradeApprovalProcess.

Note: OpenZeppelin Defender deployments is in beta and its functionality is subject to change.

... (truncated)

Commits
  • 3b113ee Publish
  • 779854f Merge Hardhat Upgrades v3 to master (#940)
  • d7e77ee Avoid address clash when redeploying implementation (#939)
  • 68eaf92 Publish @​openzeppelin/hardhat-upgrades@​2.5.0
  • 8327d6e Add Defender getDeployApprovalProcess and getUpgradeApprovalProcess (#934)
  • 1cafe23 Add note to txOverrides doc
  • 49ac54c Publish @​openzeppelin/hardhat-upgrades@​2.4.3
  • 95eee46 Bump dependency on upgrades-core (#930)
  • 4094381 Publish @​openzeppelin/upgrades-core@​1.31.3
  • 5da44b1 Avoid duplicate file level functions and variables in namespace rewrite (#918)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps-dev): bump @openzeppelin/hardhat-upgrades
e6a1d39 
Bumps [@openzeppelin/hardhat-upgrades](https://github.com/OpenZeppelin/openzeppelin-upgrades) from 1.27.0 to 3.0.0.
- [Release notes](https://github.com/OpenZeppelin/openzeppelin-upgrades/releases)
- [Commits](https://github.com/OpenZeppelin/openzeppelin-upgrades/compare/@openzeppelin/[email protected]...@openzeppelin/[email protected])

---
updated-dependencies:
- dependency-name: "@openzeppelin/hardhat-upgrades"
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 11, 2023
@dependabot dependabot bot mentioned this pull request Dec 11, 2023
Closed
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Dec 11, 2023

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 21, 2023

Superseded by #437.

@dependabot dependabot bot closed this Dec 21, 2023
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/dev/openzeppelin/hardhat-upgrades-3.0.0 branch December 21, 2023 19:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants