GP 11: Add 24 hour timelock to BOB contract on Optimism
Last updated
Last updated
The proposal has been confirmed and executed:
Optimism Safe
Optimism tx:
With the addition of zkBob on Optimism and increased BOB usage, this proposal enacts a 24 hour timelock for all admin and owner controlled actions on the BOB token contract on Optimism.
A timelock provides additional security and transparency, and serves to increase confidence for third-party applications looking to integrate BOB.
Timelock-bound actions include:
Token contract upgradeability
Token ownership transfer
Addition/removal of additional/existing token minters
Updating recovery/blocklist admins
The OpenZeppelin Timelock contract implementation is proposed for this integration.
The only address allowed to submit delayed proposals is the BOB Governance Multisig on Optimism.
The only address allowed to execute delayed proposals following the timelock is the BOB Deployer EOA.
The minimum enforced delay in the timelock contract is set to 24 hours.
The BOB protocol governance body is capable of changing the above configuration at any time, however any change is also subject to the existing timelock restrictions since the only admin of the timelock contract is the contract itself.
Action 2
1) Check the role id hashes. Go to the hasRole
function and check the following.
The transaction in the Safe on Optimism contains 2 actions:
Transfer proxy ownership and upgradeability rights on the BOB token contract to the timelock contracts
The action is executed by calling setAdmin
on the BOB token contract
Transfer token ownership rights on the BOB token contract to the Timelock contracts
The action is executed by calling transferOwnership
(the method selector is 0xf2fde38b
) on the BOB token contract
execute the following requests:
2) Check that the Timelock contract [] has the admin role.
3) Check that BOB Governance Multisig on Optimism [] has the proposer and canceler roles
4) Check that BOB Deployer EOA [] has the executor role.
Governance operations with the contracts can be verified using the following script -