Bump @openzeppelin/contracts from 4.5.0 to 4.8.0

[dependabot]

Bumps @openzeppelin/contracts from 4.5.0 to 4.8.0.

Release notes

Sourced from @​openzeppelin/contracts's releases.

v4.8.0

Note Don't miss the section on Breaking changes at the end.

• TimelockController: Added a new admin constructor parameter that is assigned the admin role instead of the deployer account. (#3722)
• Initializable: add internal functions _getInitializedVersion and _isInitializing (#3598)
• ERC165Checker: add supportsERC165InterfaceUnchecked for consulting individual interfaces without the full ERC165 protocol. (#3339)
• Address: optimize functionCall by calling functionCallWithValue directly. (#3468)
• Address: optimize functionCall functions by checking contract size only if there is no returned data. (#3469)
• Governor: make the relay function payable, and add support for EOA payments. (#3730)
• GovernorCompatibilityBravo: remove unused using statements. (#3506)
• ERC20: optimize _transfer, _mint and _burn by using unchecked arithmetic when possible. (#3513)
• ERC20Votes, ERC721Votes: optimize getPastVotes for looking up recent checkpoints. (#3673)
• ERC20FlashMint: add an internal _flashFee function for overriding. (#3551)
• ERC4626: use the same decimals() as the underlying asset by default (if available). (#3639)
• ERC4626: add internal _initialConvertToShares and _initialConvertToAssets functions to customize empty vaults behavior. (#3639)
• ERC721: optimize transfers by making approval clearing implicit instead of emitting an event. (#3481)
• ERC721: optimize burn by making approval clearing implicit instead of emitting an event. (#3538)
• ERC721: Fix balance accounting when a custom _beforeTokenTransfer hook results in a transfer of the token under consideration. (#3611)
• ERC721: use unchecked arithmetic for balance updates. (#3524)
• ERC721Consecutive: Implementation of EIP-2309 that allows batch minting of ERC721 tokens during construction. (#3311)
• ReentrancyGuard: Reduce code size impact of the modifier by using internal functions. (#3515)
• SafeCast: optimize downcasting of signed integers. (#3565)
• ECDSA: Remove redundant check on the v value. (#3591)
• VestingWallet: add releasable getters. (#3580)
• VestingWallet: remove unused library Math.sol. (#3605)
• VestingWallet: make constructor payable. (#3665)
• Create2: optimize address computation by using assembly instead of abi.encodePacked. (#3600)
• Clones: optimized the assembly to use only the scratch space during deployments, and optimized predictDeterministicAddress to use fewer operations. (#3640)
• Checkpoints: Use procedural generation to support multiple key/value lengths. (#3589)
• Checkpoints: Add new lookup mechanisms. (#3589)
• Arrays: Add unsafeAccess functions that allow reading and writing to an element in a storage array bypassing Solidity's "out-of-bounds" check. (#3589)
• Strings: optimize toString. (#3573)
• Ownable2Step: extension of Ownable that makes the ownership transfers a two step process. (#3620)
• Math and SignedMath: optimize function max by using > instead of >=. (#3679)
• Math: Add log2, log10 and log256. (#3670)
• Arbitrum: Update the vendored arbitrum contracts to match the nitro upgrade. (#3692)

Breaking changes

• ERC721: In order to add support for batch minting via ERC721Consecutive it was necessary to make a minor breaking change in the internal interface of ERC721. Namely, the hooks _beforeTokenTransfer and _afterTokenTransfer have one additional argument that may need to be added to overrides:

 function _beforeTokenTransfer(
     address from,
     address to,
     uint256 tokenId,
+    uint256 batchSize
 ) internal virtual override

... (truncated)

Changelog

Sourced from @​openzeppelin/contracts's changelog.

4.8.0 (2022-11-08)

• TimelockController: Added a new admin constructor parameter that is assigned the admin role instead of the deployer account. (#3722)
• Initializable: add internal functions _getInitializedVersion and _isInitializing (#3598)
• ERC165Checker: add supportsERC165InterfaceUnchecked for consulting individual interfaces without the full ERC165 protocol. (#3339)
• Address: optimize functionCall by calling functionCallWithValue directly. (#3468)
• Address: optimize functionCall functions by checking contract size only if there is no returned data. (#3469)
• Governor: make the relay function payable, and add support for EOA payments. (#3730)
• GovernorCompatibilityBravo: remove unused using statements. (#3506)
• ERC20: optimize _transfer, _mint and _burn by using unchecked arithmetic when possible. (#3513)
• ERC20Votes, ERC721Votes: optimize getPastVotes for looking up recent checkpoints. (#3673)
• ERC20FlashMint: add an internal _flashFee function for overriding. (#3551)
• ERC4626: use the same decimals() as the underlying asset by default (if available). (#3639)
• ERC4626: add internal _initialConvertToShares and _initialConvertToAssets functions to customize empty vaults behavior. (#3639)
• ERC721: optimize transfers by making approval clearing implicit instead of emitting an event. (#3481)
• ERC721: optimize burn by making approval clearing implicit instead of emitting an event. (#3538)
• ERC721: Fix balance accounting when a custom _beforeTokenTransfer hook results in a transfer of the token under consideration. (#3611)
• ERC721: use unchecked arithmetic for balance updates. (#3524)
• ERC721Consecutive: Implementation of EIP-2309 that allows batch minting of ERC721 tokens during construction. (#3311)
• ReentrancyGuard: Reduce code size impact of the modifier by using internal functions. (#3515)
• SafeCast: optimize downcasting of signed integers. (#3565)
• ECDSA: Remove redundant check on the v value. (#3591)
• VestingWallet: add releasable getters. (#3580)
• VestingWallet: remove unused library Math.sol. (#3605)
• VestingWallet: make constructor payable. (#3665)
• Create2: optimize address computation by using assembly instead of abi.encodePacked. (#3600)
• Clones: optimized the assembly to use only the scratch space during deployments, and optimized predictDeterministicAddress to use fewer operations. (#3640)
• Checkpoints: Use procedural generation to support multiple key/value lengths. (#3589)
• Checkpoints: Add new lookup mechanisms. (#3589)
• Arrays: Add unsafeAccess functions that allow reading and writing to an element in a storage array bypassing Solidity's "out-of-bounds" check. (#3589)
• Strings: optimize toString. (#3573)
• Ownable2Step: extension of Ownable that makes the ownership transfers a two step process. (#3620)
• Math and SignedMath: optimize function max by using > instead of >=. (#3679)
• Math: Add log2, log10 and log256. (#3670)
• Arbitrum: Update the vendored arbitrum contracts to match the nitro upgrade. (#3692)

Breaking changes

• ERC721: In order to add support for batch minting via ERC721Consecutive it was necessary to make a minor breaking change in the internal interface of ERC721. Namely, the hooks _beforeTokenTransfer and _afterTokenTransfer have one additional argument that may need to be added to overrides:

 function _beforeTokenTransfer(
     address from,
     address to,
     uint256 tokenId,
+    uint256 batchSize
 ) internal virtual override

• ERC4626: Conversion from shares to assets (and vice-versa) in an empty vault used to consider the possible mismatch between the underlying asset's and the vault's decimals. This initial conversion rate is now set to 1-to-1 irrespective of decimals, which are meant for usability purposes only. The vault now uses the assets decimals by default, so off-chain the numbers should appear the same. Developers overriding the vault decimals to a value that does not match the underlying asset may want to override the _initialConvertToShares and _initialConvertToAssets to replicate the previous behavior.

... (truncated)

Commits

• 49c0e43 4.8.0
• e0137d4 Fix outdated docs about timelock admin (#3806)
• e708b09 Remove outdated note about hooks from documentation (#3789)
• 16fa183 Fix MerkleProof natspec
• 8bfcb65 Update recommendation of JS library for merkle trees
• 014ce9c ERC721ConsecutiveEnumerable is no longer unreachable
• 1f18fea 4.8.0-rc.2
• 1a41a50 Skip deleted file when updating release version in comments
• 3742c16 Refactor consecutive transfer hooks (#3753)
• 4e18cdc Update merkle multiproof docs with a caution note
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #681.