@chainlink/ace 0.5.0

package/packages/policy-management/src/extractors/ComplianceTokenFreezeUnfreezeExtractor.sol

@@ -0,0 +1,54 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {ComplianceTokenERC20} from "../../../tokens/erc-20/src/ComplianceTokenERC20.sol";
+
+/**
+ * @title ComplianceTokenFreezeUnfreezeExtractor
+ * @notice Extracts parameters from Compliance Token ERC20 freeze and unfreeze function calls.
+ * @dev This extractor supports freeze() and unfreeze() function selectors from the ComplianceTokenERC20 contract
+ *      and extracts the target account address and amount parameters for compliance-related freezing operations.
+ */
+contract ComplianceTokenFreezeUnfreezeExtractor is IExtractor {
+  /// @notice Parameter key for the target account address in freeze/unfreeze operations
+  bytes32 public constant PARAM_ACCOUNT = keccak256("account");
+
+  /// @notice Parameter key for the amount being frozen or unfrozen
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @notice Extracts parameters from ComplianceTokenERC20 freeze and unfreeze function calls.
+   * @dev Supports freeze(address account, uint256 amount) and unfreeze(address account, uint256 amount) functions.
+   *      Both functions have identical parameter structures.
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of two parameters: PARAM_ACCOUNT and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    external
+    pure
+    override
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    address account = address(0);
+    uint256 amount = 0;
+
+    // Both freeze and unfreeze functions take identical parameters: (address account, uint256 amount)
+    if (
+      payload.selector == ComplianceTokenERC20.freeze.selector
+        || payload.selector == ComplianceTokenERC20.unfreeze.selector
+    ) {
+      (account, amount) = abi.decode(payload.data, (address, uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](2);
+    result[0] = IPolicyEngine.Parameter(PARAM_ACCOUNT, abi.encode(account));
+    result[1] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ComplianceTokenMintBurnExtractor.sol

@@ -0,0 +1,61 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {ComplianceTokenERC20} from "../../../tokens/erc-20/src/ComplianceTokenERC20.sol";
+
+/**
+ * @title ComplianceTokenMintBurnExtractor
+ * @notice Extracts parameters from Compliance Token ERC20 mint and burn function calls.
+ * @dev This extractor supports mint(), burn(), and burnFrom() function selectors from the
+ *      ComplianceTokenERC20 contract and extracts the account and amount parameters.
+ *      For burn(), the account is set to msg.sender since it burns from the caller's balance.
+ */
+contract ComplianceTokenMintBurnExtractor is IExtractor {
+  /// @notice Parameter key for the target account address in mint/burn operations
+  bytes32 public constant PARAM_ACCOUNT = keccak256("account");
+
+  /// @notice Parameter key for the amount being minted or burned
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @notice Extracts parameters from ComplianceTokenERC20 mint, burn, and burnFrom function calls.
+   * @dev Handles three function signatures:
+   *      - mint(address account, uint256 amount): account and amount from calldata
+   *      - burnFrom(address account, uint256 amount): account and amount from calldata
+   *      - burn(uint256 amount): account = msg.sender, amount from calldata
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of two parameters: PARAM_ACCOUNT and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    external
+    pure
+    override
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    uint256 amount = 0;
+    address account;
+
+    // Handle mint(address account, uint256 amount) and burnFrom(address account, uint256 amount)
+    if (
+      payload.selector == ComplianceTokenERC20.mint.selector
+        || payload.selector == ComplianceTokenERC20.burnFrom.selector
+    ) {
+      (account, amount) = abi.decode(payload.data, (address, uint256));
+      // Handle burn(uint256 amount) - account is the sender
+    } else if (payload.selector == ComplianceTokenERC20.burn.selector) {
+      account = payload.sender;
+      (amount) = abi.decode(payload.data, (uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](2);
+    result[0] = IPolicyEngine.Parameter(PARAM_ACCOUNT, abi.encode(account));
+    result[1] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ERC20ApproveExtractor.sol

@@ -0,0 +1,57 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
+
+/**
+ * @title ERC20ApproveExtractor
+ * @notice Extracts parameters from ERC20 token approve function calls.
+ * @dev This extractor supports the approve() function selector and extracts the account (msg.sender),
+ *      spender address, and amount parameters from the function calldata.
+ */
+contract ERC20ApproveExtractor is IExtractor {
+  /// @notice Parameter key for the account granting the approval (msg.sender)
+  bytes32 public constant PARAM_ACCOUNT = keccak256("account");
+
+  /// @notice Parameter key for the spender address being approved
+  bytes32 public constant PARAM_SPENDER = keccak256("spender");
+
+  /// @notice Parameter key for the amount being approved
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @inheritdoc IExtractor
+   * @dev Extracts parameters from ERC20 approve(address spender, uint256 amount) function calls.
+   *      The account parameter is set to msg.sender since approve is called by the token owner.
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of three parameters: PARAM_ACCOUNT, PARAM_SPENDER, and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    public
+    pure
+    virtual
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    address account = address(0);
+    address spender = address(0);
+    uint256 amount = 0;
+
+    // Handle approve(address spender, uint256 amount) - account is the sender
+    if (payload.selector == IERC20.approve.selector) {
+      account = payload.sender;
+      (spender, amount) = abi.decode(payload.data, (address, uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](3);
+    result[0] = IPolicyEngine.Parameter(PARAM_ACCOUNT, abi.encode(account));
+    result[1] = IPolicyEngine.Parameter(PARAM_SPENDER, abi.encode(spender));
+    result[2] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ERC20TransferExtractor.sol

@@ -0,0 +1,62 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
+
+/**
+ * @title ERC20TransferExtractor
+ * @notice Extracts transfer parameters from ERC20 token transfer and transferFrom function calls.
+ * @dev This extractor supports both transfer() and transferFrom() function selectors and extracts
+ *      the from address, to address, and amount parameters. For transfer() calls, the from address
+ *      is set to the transaction sender (msg.sender).
+ */
+contract ERC20TransferExtractor is IExtractor {
+  /// @notice Parameter key for the sender/from address in transfer operations
+  bytes32 public constant PARAM_FROM = keccak256("from");
+
+  /// @notice Parameter key for the recipient/to address in transfer operations
+  bytes32 public constant PARAM_TO = keccak256("to");
+
+  /// @notice Parameter key for the amount being transferred
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @inheritdoc IExtractor
+   * @dev Extracts parameters from ERC20 transfer and transferFrom function calls.
+   *      - For transfer(address to, uint256 amount): from = msg.sender
+   *      - For transferFrom(address from, address to, uint256 amount): from = decoded from parameter
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of three parameters: PARAM_FROM, PARAM_TO, and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    public
+    pure
+    virtual
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    address from = address(0);
+    address to = address(0);
+    uint256 amount = 0;
+
+    // Handle transfer(address to, uint256 amount) - from is the sender
+    if (payload.selector == IERC20.transfer.selector) {
+      from = payload.sender;
+      (to, amount) = abi.decode(payload.data, (address, uint256));
+      // Handle transferFrom(address from, address to, uint256 amount)
+    } else if (payload.selector == IERC20.transferFrom.selector) {
+      (from, to, amount) = abi.decode(payload.data, (address, address, uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](3);
+    result[0] = IPolicyEngine.Parameter(PARAM_FROM, abi.encode(from));
+    result[1] = IPolicyEngine.Parameter(PARAM_TO, abi.encode(to));
+    result[2] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ERC3643ForcedTransferExtractor.sol

@@ -0,0 +1,56 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
+
+/**
+ * @title ERC3643ForcedTransferExtractor
+ * @notice Extracts parameters from ERC3643 token forced transfer function calls.
+ * @dev This extractor supports the forcedTransfer() function selector from the ERC3643 token standard
+ *      and extracts the from address, to address, and amount parameters from the function calldata.
+ *      Forced transfers allow authorized agents to move tokens between addresses without approval.
+ */
+contract ERC3643ForcedTransferExtractor is IExtractor {
+  /// @notice Parameter key for the sender/from address in forced transfer operations
+  bytes32 public constant PARAM_FROM = keccak256("from");
+
+  /// @notice Parameter key for the recipient/to address in forced transfer operations
+  bytes32 public constant PARAM_TO = keccak256("to");
+
+  /// @notice Parameter key for the amount being forcefully transferred
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @inheritdoc IExtractor
+   * @dev Extracts parameters from ERC3643 forcedTransfer(address from, address to, uint256 amount) function calls.
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of three parameters: PARAM_FROM, PARAM_TO, and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    public
+    pure
+    virtual
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    address from = address(0);
+    address to = address(0);
+    uint256 amount = 0;
+
+    // Handle forcedTransfer(address from, address to, uint256 amount)
+    if (payload.selector == IToken.forcedTransfer.selector) {
+      (from, to, amount) = abi.decode(payload.data, (address, address, uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](3);
+    result[0] = IPolicyEngine.Parameter(PARAM_FROM, abi.encode(from));
+    result[1] = IPolicyEngine.Parameter(PARAM_TO, abi.encode(to));
+    result[2] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ERC3643FreezeUnfreezeExtractor.sol

@@ -0,0 +1,55 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
+
+/**
+ * @title ERC3643FreezeUnfreezeExtractor
+ * @notice Extracts parameters from ERC3643 token partial freeze and unfreeze function calls.
+ * @dev This extractor supports freezePartialTokens() and unfreezePartialTokens() function selectors
+ *      from the ERC3643 token standard and extracts the target account address and amount parameters.
+ */
+contract ERC3643FreezeUnfreezeExtractor is IExtractor {
+  /// @notice Parameter key for the target account address in freeze/unfreeze operations
+  bytes32 public constant PARAM_ACCOUNT = keccak256("account");
+
+  /// @notice Parameter key for the amount being frozen or unfrozen
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @notice Extracts parameters from ERC3643 partial freeze and unfreeze function calls.
+   * @dev Supports freezePartialTokens(address account, uint256 amount) and
+   *      unfreezePartialTokens(address account, uint256 amount) functions.
+   *      Both functions have identical parameter structures.
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of two parameters: PARAM_ACCOUNT and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    external
+    pure
+    override
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    address account = address(0);
+    uint256 amount = 0;
+
+    // Both freeze and unfreeze functions have the same signature: (address account, uint256 amount)
+    if (
+      payload.selector == IToken.freezePartialTokens.selector
+        || payload.selector == IToken.unfreezePartialTokens.selector
+    ) {
+      (account, amount) = abi.decode(payload.data, (address, uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](2);
+    result[0] = IPolicyEngine.Parameter(PARAM_ACCOUNT, abi.encode(account));
+    result[1] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ERC3643MintBurnExtractor.sol

@@ -0,0 +1,51 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
+
+/**
+ * @title ERC3643MintBurnExtractor
+ * @notice Extracts parameters from ERC3643 token mint and burn function calls.
+ * @dev This extractor supports both mint() and burn() function selectors from the ERC3643 token standard
+ *      and extracts the target account address and amount parameters from the function calldata.
+ */
+contract ERC3643MintBurnExtractor is IExtractor {
+  /// @notice Parameter key for the target account address in mint/burn operations
+  bytes32 public constant PARAM_ACCOUNT = keccak256("account");
+
+  /// @notice Parameter key for the amount being minted or burned
+  bytes32 public constant PARAM_AMOUNT = keccak256("amount");
+
+  /**
+   * @notice Extracts parameters from ERC3643 mint and burn function calls.
+   * @dev Supports mint(address account, uint256 amount) and burn(address account, uint256 amount) functions.
+   *      Both functions have identical parameter structures, so they can be handled with the same decoding logic.
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of two parameters: PARAM_ACCOUNT and PARAM_AMOUNT
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    external
+    pure
+    override
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    uint256 amount = 0;
+    address account;
+
+    // Both mint and burn functions have the same signature: (address account, uint256 amount)
+    if (payload.selector == IToken.mint.selector || payload.selector == IToken.burn.selector) {
+      (account, amount) = abi.decode(payload.data, (address, uint256));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](2);
+    result[0] = IPolicyEngine.Parameter(PARAM_ACCOUNT, abi.encode(account));
+    result[1] = IPolicyEngine.Parameter(PARAM_AMOUNT, abi.encode(amount));
+
+    return result;
+  }
+}

package/packages/policy-management/src/extractors/ERC3643SetAddressFrozenExtractor.sol

@@ -0,0 +1,51 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity 0.8.26;
+
+import {IExtractor} from "@chainlink/policy-management/interfaces/IExtractor.sol";
+import {IPolicyEngine} from "@chainlink/policy-management/interfaces/IPolicyEngine.sol";
+import {IToken} from "../../../vendor/erc-3643/token/IToken.sol";
+
+/**
+ * @title ERC3643SetAddressFrozenExtractor
+ * @notice Extracts parameters from ERC3643 token address freeze/unfreeze function calls.
+ * @dev This extractor supports the setAddressFrozen() function selector from the ERC3643 token standard
+ *      and extracts the target account address and freeze status (boolean value) parameters.
+ */
+contract ERC3643SetAddressFrozenExtractor is IExtractor {
+  /// @notice Parameter key for the target account address in freeze/unfreeze operations
+  bytes32 public constant PARAM_ACCOUNT = keccak256("account");
+
+  /// @notice Parameter key for the freeze status boolean value (true = frozen, false = unfrozen)
+  bytes32 public constant PARAM_VALUE = keccak256("value");
+
+  /**
+   * @notice Extracts parameters from ERC3643 setAddressFrozen function calls.
+   * @dev Extracts parameters from setAddressFrozen(address account, bool value) function calls.
+   *      The value parameter indicates whether to freeze (true) or unfreeze (false) the address.
+   * @param payload The policy engine payload containing the function selector and calldata
+   * @return An array of two parameters: PARAM_ACCOUNT and PARAM_VALUE
+   */
+  function extract(IPolicyEngine.Payload calldata payload)
+    external
+    pure
+    override
+    returns (IPolicyEngine.Parameter[] memory)
+  {
+    address account = address(0);
+    bool value;
+
+    // Handle setAddressFrozen(address account, bool value)
+    if (payload.selector == IToken.setAddressFrozen.selector) {
+      (account, value) = abi.decode(payload.data, (address, bool));
+    } else {
+      revert IPolicyEngine.UnsupportedSelector(payload.selector);
+    }
+
+    // Build the parameter array with extracted values
+    IPolicyEngine.Parameter[] memory result = new IPolicyEngine.Parameter[](2);
+    result[0] = IPolicyEngine.Parameter(PARAM_ACCOUNT, abi.encode(account));
+    result[1] = IPolicyEngine.Parameter(PARAM_VALUE, abi.encode(value));
+
+    return result;
+  }
+}

package/packages/policy-management/src/interfaces/IExtractor.sol

@@ -0,0 +1,17 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.20;
+
+import {IPolicyEngine} from "./IPolicyEngine.sol";
+
+/**
+ * @title IExtractor
+ * @dev Interface for extracting parameters from a payload.
+ */
+interface IExtractor {
+  /**
+   * @notice Extracts parameters from a payload.
+   * @param payload The payload to extract parameters from.
+   * @return The extracted parameters.
+   */
+  function extract(IPolicyEngine.Payload calldata payload) external view returns (IPolicyEngine.Parameter[] memory);
+}

package/packages/policy-management/src/interfaces/IMapper.sol

@@ -0,0 +1,17 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.20;
+
+import {IPolicyEngine} from "./IPolicyEngine.sol";
+
+/**
+ * @title IMapper
+ * @dev Interface for mapping extracted parameters to a list of policy parameters.
+ */
+interface IMapper {
+  /**
+   * @notice Maps extracted parameters to a list of policy parameters.
+   * @param extractedParameters The extracted parameters.
+   * @return The mapped parameters.
+   */
+  function map(IPolicyEngine.Parameter[] calldata extractedParameters) external view returns (bytes[] memory);
+}

package/packages/policy-management/src/interfaces/IPolicy.sol

@@ -0,0 +1,61 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.20;
+
+import {IPolicyEngine} from "./IPolicyEngine.sol";
+import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
+
+/**
+ * @title IPolicy
+ * @dev Interface for running a policy.
+ */
+interface IPolicy is IERC165 {
+  /**
+   * @notice Hook called upon installation of the policy.
+   * @param selector The selector of the policy.
+   */
+  function onInstall(bytes4 selector) external;
+
+  /**
+   * @notice Hook called upon uninstallation of the policy.
+   * @param selector The selector of the policy.
+   */
+  function onUninstall(bytes4 selector) external;
+
+  /**
+   * @notice Runs the policy.
+   * @param caller The address of the account which is calling the subject protected by the policy engine.
+   * @param subject The address of the contract which is being protected by the policy engine.
+   * @param selector The selector of the method being called on the protected contract.
+   * @param parameters The parameters to use for running the policy.
+   * @param context Additional information or authorization to perform the operation.
+   * @return The result of running the policy.
+   */
+  function run(
+    address caller,
+    address subject,
+    bytes4 selector,
+    bytes[] calldata parameters,
+    bytes calldata context
+  )
+    external
+    view
+    returns (IPolicyEngine.PolicyResult);
+
+  /**
+   * @notice Runs after the policy check if the check was successful, and MAY mutate state. State mutations SHOULD
+   * consider state relative to the target, as the policy MAY be shared across multiple targets.
+   * @param caller The address of the account which is calling the subject protected by the policy engine.
+   * @param subject The address of the contract which is being protected by the policy engine.
+   * @param selector The selector of the method being called on the protected contract.
+   * @param parameters The parameters to use for running the policy.
+   * @param context Additional information or authorization to perform the operation.
+   */
+  function postRun(
+    address caller,
+    address subject,
+    bytes4 selector,
+    bytes[] calldata parameters,
+    bytes calldata context
+  )
+    external;
+}