@chainlink/ace 0.5.0 → 1.0.0

package/packages/policy-management/src/core/PolicyProtected.sol

@@ -3,61 +3,32 @@ pragma solidity ^0.8.20;
 
 import {IPolicyEngine} from "../interfaces/IPolicyEngine.sol";
 import {IPolicyProtected} from "../interfaces/IPolicyProtected.sol";
-import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
-import {ERC165Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165Upgradeable.sol";
-import {Initializable} from "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
-import {OwnableUpgradeable} from "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
+import {IERC165, ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
+import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
 
 /**
  * @title PolicyProtected.sol
- * @dev Base implementation for attaching a policy engine to a smart contract. Uses ERC-7201 storage
- *      to not conflict with other storage slots of extending contracts. Provides modifiers to be attached to methods
- *      of the extending contract to run the policy engine before executing the method.
+ * @dev Base implementation for attaching a policy engine to a smart contract. Provides modifiers to be attached
+ *      to methods of the extending contract to run the policy engine before executing the method.
  */
-abstract contract PolicyProtected is Initializable, OwnableUpgradeable, ERC165Upgradeable, IPolicyProtected {
-  /// @custom:storage-location erc7201:policy-management.PolicyProtected
-  struct PolicyProtectedStorage {
-    IPolicyEngine policyEngine;
-    mapping(address sender => bytes context) senderContext; // use transient storage eventually
-  }
-
-  // keccak256(abi.encode(uint256(keccak256("policy-management.PolicyProtected")) - 1)) &
-  // ~bytes32(uint256(0xff))
-  // solhint-disable-next-line const-name-snakecase
-  bytes32 private constant policyProtectedStorageLocation =
-    0x381e6510830aa5d1f847c166134370760011d6c9becccc73371e64e18c3c4f00;
-
-  function _policyProtectedStorage() private pure returns (PolicyProtectedStorage storage $) {
-    // solhint-disable-next-line no-inline-assembly
-    assembly {
-      $.slot := policyProtectedStorageLocation
-    }
-  }
-
-  constructor() {
-    _disableInitializers();
-  }
-
-  function __PolicyProtected_init(address initialOwner, address policyEngine) internal onlyInitializing {
-    __Ownable_init(initialOwner);
-    __ERC165_init();
-    __PolicyProtected_init_unchained(policyEngine);
-  }
+abstract contract PolicyProtected is Ownable, ERC165, IPolicyProtected {
+  IPolicyEngine internal s_policyEngine;
+  mapping(address sender => bytes context) internal s_senderContext; // use transient storage eventually
 
-  function __PolicyProtected_init_unchained(address policyEngine) internal onlyInitializing {
+  constructor(address initialOwner, address policyEngine) Ownable(initialOwner) {
     _attachPolicyEngine(policyEngine);
   }
+
   /**
    * @dev Modifier to run the policy engine on the current method.
    * @notice After the function execution completes, any context that was set will be automatically cleared.
    */
-
   modifier runPolicy() {
-    if (address(_policyProtectedStorage().policyEngine) == address(0)) {
+    if (address(s_policyEngine) == address(0)) {
       revert IPolicyEngine.PolicyEngineUndefined();
     }
     bytes memory context = getContext();
-    _policyProtectedStorage().policyEngine.run(
+    s_policyEngine.run(
       IPolicyEngine.Payload({selector: msg.sig, sender: msg.sender, data: msg.data[4:], context: context})
     );
     _;
@@ -71,10 +42,10 @@ abstract contract PolicyProtected is Initializable, OwnableUpgradeable, ERC165Up
    * @param context Additional information or authorization to perform the operation.
    */
   modifier runPolicyWithContext(bytes calldata context) {
-    if (address(_policyProtectedStorage().policyEngine) == address(0)) {
+    if (address(s_policyEngine) == address(0)) {
       revert IPolicyEngine.PolicyEngineUndefined();
     }
-    _policyProtectedStorage().policyEngine.run(
+    s_policyEngine.run(
       IPolicyEngine.Payload({selector: msg.sig, sender: msg.sender, data: msg.data[4:], context: context})
     );
     _;
@@ -86,41 +57,43 @@ abstract contract PolicyProtected is Initializable, OwnableUpgradeable, ERC165Up
   }
 
   function _attachPolicyEngine(address policyEngine) internal {
-    _policyProtectedStorage().policyEngine = IPolicyEngine(policyEngine);
-    IPolicyEngine(policyEngine).attach();
+    require(policyEngine != address(0), "Policy engine is zero address");
+    if (address(s_policyEngine) != address(0)) {
+      try s_policyEngine.detach() {
+        // Detachment succeeded
+      } catch (bytes memory reason) {
+        emit PolicyEngineDetachFailed(address(s_policyEngine), reason);
+      }
+    }
+    s_policyEngine = IPolicyEngine(policyEngine);
+    s_policyEngine.attach();
     emit PolicyEngineAttached(policyEngine);
   }
 
   /// @inheritdoc IPolicyProtected
   function getPolicyEngine() public view virtual override returns (address) {
-    return address(_policyProtectedStorage().policyEngine);
+    return address(s_policyEngine);
   }
 
   /// @inheritdoc IPolicyProtected
   function setContext(bytes calldata context) public override {
-    _policyProtectedStorage().senderContext[msg.sender] = context;
+    s_senderContext[msg.sender] = context;
   }
 
   /// @inheritdoc IPolicyProtected
   function getContext() public view override returns (bytes memory) {
-    return _policyProtectedStorage().senderContext[msg.sender];
+    return s_senderContext[msg.sender];
   }
 
   /// @inheritdoc IPolicyProtected
   function clearContext() public override {
-    delete _policyProtectedStorage().senderContext[msg.sender];
+    delete s_senderContext[msg.sender];
   }
 
   /**
    * @dev See {IERC165-supportsInterface}.
    */
-  function supportsInterface(bytes4 interfaceId)
-    public
-    view
-    virtual
-    override(ERC165Upgradeable, IERC165)
-    returns (bool)
-  {
+  function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {
     return interfaceId == type(IPolicyProtected).interfaceId || super.supportsInterface(interfaceId);
   }
 }

package/packages/policy-management/src/core/PolicyProtectedUpgradeable.sol

@@ -0,0 +1,134 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.20;
+
+import {IPolicyEngine} from "../interfaces/IPolicyEngine.sol";
+import {IPolicyProtected} from "../interfaces/IPolicyProtected.sol";
+import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
+import {ERC165Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165Upgradeable.sol";
+import {Initializable} from "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
+import {OwnableUpgradeable} from "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
+
+/**
+ * @title PolicyProtectedUpgradeable.sol
+ * @dev Base implementation for attaching a policy engine to an upgradeable smart contract. Uses ERC-7201 storage
+ *      to not conflict with other storage slots of extending contracts. Provides modifiers to be attached to methods
+ *      of the extending contract to run the policy engine before executing the method.
+ */
+abstract contract PolicyProtectedUpgradeable is Initializable, OwnableUpgradeable, ERC165Upgradeable, IPolicyProtected {
+  /// @custom:storage-location erc7201:chainlink.ace.PolicyProtected
+  struct PolicyProtectedStorage {
+    IPolicyEngine policyEngine;
+    mapping(address sender => bytes context) senderContext; // use transient storage eventually
+  }
+
+  // keccak256(abi.encode(uint256(keccak256("chainlink.ace.PolicyProtected")) - 1)) &
+  // ~bytes32(uint256(0xff))
+  // solhint-disable-next-line const-name-snakecase
+  bytes32 private constant policyProtectedStorageLocation =
+    0x5970a53874f73819f13c80052b0c1b19d6ce68b29b2ad28a7413019c8a409000;
+
+  function _policyProtectedStorage() private pure returns (PolicyProtectedStorage storage $) {
+    // solhint-disable-next-line no-inline-assembly
+    assembly {
+      $.slot := policyProtectedStorageLocation
+    }
+  }
+
+  constructor() {
+    _disableInitializers();
+  }
+
+  function __PolicyProtected_init(address initialOwner, address policyEngine) internal onlyInitializing {
+    __Ownable_init(initialOwner);
+    __ERC165_init();
+    __PolicyProtected_init_unchained(policyEngine);
+  }
+
+  function __PolicyProtected_init_unchained(address policyEngine) internal onlyInitializing {
+    _attachPolicyEngine(policyEngine);
+  }
+  /**
+   * @dev Modifier to run the policy engine on the current method.
+   * @notice After the function execution completes, any context that was set will be automatically cleared.
+   */
+
+  modifier runPolicy() {
+    if (address(_policyProtectedStorage().policyEngine) == address(0)) {
+      revert IPolicyEngine.PolicyEngineUndefined();
+    }
+    bytes memory context = getContext();
+    _policyProtectedStorage().policyEngine.run(
+      IPolicyEngine.Payload({selector: msg.sig, sender: msg.sender, data: msg.data[4:], context: context})
+    );
+    _;
+    if (context.length > 0) {
+      clearContext();
+    }
+  }
+
+  /**
+   * @dev Modifier to run the policy engine on the current method with the provided context.
+   * @param context Additional information or authorization to perform the operation.
+   */
+  modifier runPolicyWithContext(bytes calldata context) {
+    if (address(_policyProtectedStorage().policyEngine) == address(0)) {
+      revert IPolicyEngine.PolicyEngineUndefined();
+    }
+    _policyProtectedStorage().policyEngine.run(
+      IPolicyEngine.Payload({selector: msg.sig, sender: msg.sender, data: msg.data[4:], context: context})
+    );
+    _;
+  }
+
+  /// @inheritdoc IPolicyProtected
+  function attachPolicyEngine(address policyEngine) external virtual override onlyOwner {
+    _attachPolicyEngine(policyEngine);
+  }
+
+  function _attachPolicyEngine(address policyEngine) internal {
+    require(policyEngine != address(0), "Policy engine is zero address");
+    if (address(_policyProtectedStorage().policyEngine) != address(0)) {
+      try _policyProtectedStorage().policyEngine.detach() {
+        // Detachment succeeded
+      } catch (bytes memory reason) {
+        emit PolicyEngineDetachFailed(address(_policyProtectedStorage().policyEngine), reason);
+      }
+    }
+    _policyProtectedStorage().policyEngine = IPolicyEngine(policyEngine);
+    IPolicyEngine(policyEngine).attach();
+    emit PolicyEngineAttached(policyEngine);
+  }
+
+  /// @inheritdoc IPolicyProtected
+  function getPolicyEngine() public view virtual override returns (address) {
+    return address(_policyProtectedStorage().policyEngine);
+  }
+
+  /// @inheritdoc IPolicyProtected
+  function setContext(bytes calldata context) public override {
+    _policyProtectedStorage().senderContext[msg.sender] = context;
+  }
+
+  /// @inheritdoc IPolicyProtected
+  function getContext() public view override returns (bytes memory) {
+    return _policyProtectedStorage().senderContext[msg.sender];
+  }
+
+  /// @inheritdoc IPolicyProtected
+  function clearContext() public override {
+    delete _policyProtectedStorage().senderContext[msg.sender];
+  }
+
+  /**
+   * @dev See {IERC165-supportsInterface}.
+   */
+  function supportsInterface(bytes4 interfaceId)
+    public
+    view
+    virtual
+    override(ERC165Upgradeable, IERC165)
+    returns (bool)
+  {
+    return interfaceId == type(IPolicyProtected).interfaceId || super.supportsInterface(interfaceId);
+  }
+}

package/packages/policy-management/src/extractors/ComplianceTokenForceTransferExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -13,6 +13,9 @@ import {ComplianceTokenERC20} from "../../../tokens/erc-20/src/ComplianceTokenER
  *      authorized agents to move tokens between addresses without approval for compliance purposes.
  */
 contract ComplianceTokenForceTransferExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ComplianceTokenForceTransferExtractor 1.0.0";
+
   /// @notice Parameter key for the sender/from address in forced transfer operations
   bytes32 public constant PARAM_FROM = keccak256("from");
 

package/packages/policy-management/src/extractors/ComplianceTokenFreezeUnfreezeExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -12,6 +12,9 @@ import {ComplianceTokenERC20} from "../../../tokens/erc-20/src/ComplianceTokenER
  *      and extracts the target account address and amount parameters for compliance-related freezing operations.
  */
 contract ComplianceTokenFreezeUnfreezeExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ComplianceTokenFreezeUnfreezeExtractor 1.0.0";
+
   /// @notice Parameter key for the target account address in freeze/unfreeze operations
   bytes32 public constant PARAM_ACCOUNT = keccak256("account");
 

package/packages/policy-management/src/extractors/ComplianceTokenMintBurnExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -13,6 +13,9 @@ import {ComplianceTokenERC20} from "../../../tokens/erc-20/src/ComplianceTokenER
  *      For burn(), the account is set to msg.sender since it burns from the caller's balance.
  */
 contract ComplianceTokenMintBurnExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ComplianceTokenMintBurnExtractor 1.0.0";
+
   /// @notice Parameter key for the target account address in mint/burn operations
   bytes32 public constant PARAM_ACCOUNT = keccak256("account");
 

package/packages/policy-management/src/extractors/ERC20ApproveExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -12,6 +12,9 @@ import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
  *      spender address, and amount parameters from the function calldata.
  */
 contract ERC20ApproveExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ERC20ApproveExtractor 1.0.0";
+
   /// @notice Parameter key for the account granting the approval (msg.sender)
   bytes32 public constant PARAM_ACCOUNT = keccak256("account");
 

package/packages/policy-management/src/extractors/ERC20TransferExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -13,6 +13,9 @@ import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
  *      is set to the transaction sender (msg.sender).
  */
 contract ERC20TransferExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ERC20TransferExtractor 1.0.0";
+
   /// @notice Parameter key for the sender/from address in transfer operations
   bytes32 public constant PARAM_FROM = keccak256("from");
 

package/packages/policy-management/src/extractors/ERC3643ForcedTransferExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -13,6 +13,9 @@ import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
  *      Forced transfers allow authorized agents to move tokens between addresses without approval.
  */
 contract ERC3643ForcedTransferExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ERC3643ForcedTransferExtractor 1.0.0";
+
   /// @notice Parameter key for the sender/from address in forced transfer operations
   bytes32 public constant PARAM_FROM = keccak256("from");
 

package/packages/policy-management/src/extractors/ERC3643FreezeUnfreezeExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -12,6 +12,9 @@ import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
  *      from the ERC3643 token standard and extracts the target account address and amount parameters.
  */
 contract ERC3643FreezeUnfreezeExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ERC3643FreezeUnfreezeExtractor 1.0.0";
+
   /// @notice Parameter key for the target account address in freeze/unfreeze operations
   bytes32 public constant PARAM_ACCOUNT = keccak256("account");
 

package/packages/policy-management/src/extractors/ERC3643MintBurnExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -12,6 +12,9 @@ import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
  *      and extracts the target account address and amount parameters from the function calldata.
  */
 contract ERC3643MintBurnExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ERC3643MintBurnExtractor 1.0.0";
+
   /// @notice Parameter key for the target account address in mint/burn operations
   bytes32 public constant PARAM_ACCOUNT = keccak256("account");
 

package/packages/policy-management/src/extractors/ERC3643SetAddressFrozenExtractor.sol

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: BUSL-1.1
-pragma solidity 0.8.26;
+pragma solidity ^0.8.20;
 
 import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
 import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
@@ -12,6 +12,9 @@ import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
  *      and extracts the target account address and freeze status (boolean value) parameters.
  */
 contract ERC3643SetAddressFrozenExtractor is IExtractor {
+  /// @notice Type and version of the extractor
+  string public constant override typeAndVersion = "ERC3643SetAddressFrozenExtractor 1.0.0";
+
   /// @notice Parameter key for the target account address in freeze/unfreeze operations
   bytes32 public constant PARAM_ACCOUNT = keccak256("account");
 

package/packages/policy-management/src/interfaces/ICertifiedActionValidator.sol

@@ -0,0 +1,110 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.20;
+
+interface ICertifiedActionValidator {
+  struct Permit {
+    bytes32 permitId;
+    address caller;
+    address subject;
+    bytes4 selector;
+    bytes[] parameters;
+    bytes metadata;
+    uint64 maxUses;
+    uint48 expiry;
+  }
+
+  struct SignedPermit {
+    Permit permit;
+    bytes signature;
+  }
+
+  /**
+   * @notice Emitted when an issuer is allowed to sign permits.
+   * @param issuerKey The key of the issuer.
+   */
+  event IssuerAllowed(bytes issuerKey);
+
+  /**
+   * @notice Emitted when an issuer is disallowed from signing permits.
+   * @param issuerKey The key of the issuer.
+   */
+  event IssuerDisAllowed(bytes issuerKey);
+
+  /**
+   * @notice Emitted when a permit is stored.
+   * @param permitId The ID of the permit.
+   */
+  event PermitStored(bytes32 indexed permitId);
+
+  /**
+   * @notice Emitted when a permit is used.
+   * @param permitId The ID of the permit.
+   */
+  event PermitUsed(bytes32 indexed permitId);
+
+  /**
+   * @notice Emitted when a permit is revoked.
+   * @param permitId The ID of the permit.
+   */
+  event PermitRevoked(bytes32 indexed permitId);
+
+  /// @notice Error emitted when a permit signature is invalid.
+  error InvalidSignature(bytes32 permitId);
+  /// @notice Error emitted when a permit has expired.
+  error PermitExpired(bytes32 permitId, uint48 expiration);
+  /// @notice Error emitted when an issuer is already allowed or disallowed.
+  error IssuerAllowedAlreadySet(bytes issuerKey, bool allowed);
+  /// @notice Error emitted when a permit has already been presented.
+  error PermitAlreadyPresented(bytes32 permitId);
+  /// @notice Error emitted when a permit has been revoked.
+  error PermitAlreadyRevoked(bytes32 permitId);
+
+  /**
+   * @notice Presents and stores a permit in the validator. Since only 1 valid permit for the same intent is allowed,
+   * presenting a new permit will override any previous permit for the same intent. Note that the act of presenting a
+   * permit override any ability for a context permit for the same intent.
+   * @param permit The permit to present.
+   * @param signature The signature of the permit.
+   */
+  function present(Permit calldata permit, bytes calldata signature) external;
+
+  /**
+   * @notice Checks if a permit is valid.
+   * @param permit The permit to check.
+   * @param signature The signature of the permit.
+   * @return True if the permit is valid, false otherwise.
+   */
+  function check(Permit calldata permit, bytes calldata signature) external view returns (bool);
+
+  /**
+   * @notice Revokes a permit.
+   * @param permitId The ID of the permit to revoke.
+   */
+  function revoke(bytes32 permitId) external;
+
+  /**
+   * @notice Gets the usage count of a permit.
+   * @param permitId The ID of the permit.
+   * @return The usage count of the permit.
+   */
+  function getUsage(bytes32 permitId) external view returns (uint256);
+
+  /**
+   * @notice Allows an issuer to sign permits.
+   * @param issuerKey The key of the issuer.
+   */
+  function allowIssuer(bytes calldata issuerKey) external;
+
+  /**
+   * @notice Disallows an issuer from signing permits.
+   * @param issuerKey The key of the issuer.
+   */
+  function disAllowIssuer(bytes calldata issuerKey) external;
+
+  /**
+   * @notice Gets if an issuer is allowed to sign permits.
+   * @param issuerKey The key of the issuer.
+   * @return True if the issuer is allowed, false otherwise.
+   */
+  function getIssuerAllowed(bytes calldata issuerKey) external view returns (bool);
+}

package/packages/policy-management/src/interfaces/IExtractor.sol

@@ -8,6 +8,12 @@ import {IPolicyEngine} from "./IPolicyEngine.sol";
  * @dev Interface for extracting parameters from a payload.
  */
 interface IExtractor {
+  /**
+   * @notice Returns the type and version of the extractor.
+   * @return A string representing the type and version of the extractor.
+   */
+  function typeAndVersion() external pure returns (string memory);
+
   /**
    * @notice Extracts parameters from a payload.
    * @param payload The payload to extract parameters from.

package/packages/policy-management/src/interfaces/IMapper.sol

@@ -8,6 +8,12 @@ import {IPolicyEngine} from "./IPolicyEngine.sol";
  * @dev Interface for mapping extracted parameters to a list of policy parameters.
  */
 interface IMapper {
+  /**
+   * @notice Returns the type and version of the mapper.
+   * @return A string representing the type and version of the mapper.
+   */
+  function typeAndVersion() external pure returns (string memory);
+
   /**
    * @notice Maps extracted parameters to a list of policy parameters.
    * @param extractedParameters The extracted parameters.

package/packages/policy-management/src/interfaces/IPolicy.sol

@@ -9,6 +9,12 @@ import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
  * @dev Interface for running a policy.
  */
 interface IPolicy is IERC165 {
+  /**
+   * @notice Returns the type and version of the policy.
+   * @return A string representing the type and version of the policy.
+   */
+  function typeAndVersion() external pure returns (string memory);
+
   /**
    * @notice Hook called upon installation of the policy.
    * @param selector The selector of the policy.