npm - @croptop/core-v6 - Versions diffs - 0.0.38 → 0.0.39 - Mend

@croptop/core-v6 0.0.38 → 0.0.39

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (40) hide show

package/README.md +2 -2
package/foundry.toml +2 -1
package/package.json +25 -13
package/script/ConfigureFeeProject.s.sol +8 -5
package/src/CTDeployer.sol +52 -51
package/src/interfaces/ICTDeployer.sol +2 -2
package/ADMINISTRATION.md +0 -94
package/ARCHITECTURE.md +0 -96
package/AUDIT_INSTRUCTIONS.md +0 -88
package/RISKS.md +0 -78
package/SKILLS.md +0 -46
package/STYLE_GUIDE.md +0 -610
package/USER_JOURNEYS.md +0 -134
package/foundry.lock +0 -11
package/slither-ci.config.json +0 -10
package/sphinx.lock +0 -507
package/test/CTDeployer.t.sol +0 -616
package/test/CTProjectOwner.t.sol +0 -185
package/test/CTPublisher.t.sol +0 -869
package/test/ClaimCollectionOwnership.t.sol +0 -315
package/test/CroptopAttacks.t.sol +0 -437
package/test/Fork.t.sol +0 -227
package/test/TestAuditGaps.sol +0 -696
package/test/Test_MetadataGeneration.t.sol +0 -79
package/test/audit/CodexNemesisCroptopPublisherBoundary.t.sol +0 -329
package/test/audit/CodexNemesisCurrencyPoCs.t.sol +0 -371
package/test/audit/CodexNemesisFreshRound.t.sol +0 -395
package/test/audit/CodexNemesisMetadataShadow.t.sol +0 -196
package/test/audit/CodexNemesisPoCs.t.sol +0 -263
package/test/audit/CodexNemesisPolicyReuse.t.sol +0 -168
package/test/audit/CodexNemesisUriDrift.t.sol +0 -252
package/test/audit/DeployerPermissionBypass.t.sol +0 -213
package/test/audit/EmptyPostFeeBypass.t.sol +0 -53
package/test/audit/FeeBeneficiaryReentrancy.t.sol +0 -247
package/test/audit/FeeFallbackBlackhole.t.sol +0 -263
package/test/audit/Pass12Fixes.t.sol +0 -388
package/test/fork/PublishFork.t.sol +0 -440
package/test/regression/DuplicateUriFeeEvasion.t.sol +0 -312
package/test/regression/FeeEvasion.t.sol +0 -286
package/test/regression/StaleTierIdMapping.t.sol +0 -228

package/test/CroptopAttacks.t.sol DELETED Viewed

@@ -1,437 +0,0 @@
-// SPDX-License-Identifier: MIT
-pragma solidity 0.8.28;
-// forge-lint: disable-next-line(unaliased-plain-import)
-import "forge-std/Test.sol";
-import {IJBPermissions} from "@bananapus/core-v6/src/interfaces/IJBPermissions.sol";
-import {IJBDirectory} from "@bananapus/core-v6/src/interfaces/IJBDirectory.sol";
-import {IJBSplitHook} from "@bananapus/core-v6/src/interfaces/IJBSplitHook.sol";
-import {IJBOwnable} from "@bananapus/ownable-v6/src/interfaces/IJBOwnable.sol";
-import {IJB721Hook} from "@bananapus/721-hook-v6/src/interfaces/IJB721Hook.sol";
-import {IJB721TiersHook} from "@bananapus/721-hook-v6/src/interfaces/IJB721TiersHook.sol";
-import {IJB721TiersHookStore} from "@bananapus/721-hook-v6/src/interfaces/IJB721TiersHookStore.sol";
-import {JBConstants} from "@bananapus/core-v6/src/libraries/JBConstants.sol";
-import {JBSplit} from "@bananapus/core-v6/src/structs/JBSplit.sol";
-import {CTPublisher} from "../src/CTPublisher.sol";
-import {CTAllowedPost} from "../src/structs/CTAllowedPost.sol";
-import {CTPost} from "../src/structs/CTPost.sol";
-/// @title CroptopAttacks
-/// @notice Adversarial security tests for CTPublisher focusing on mintFrom edge cases,
-///         allowlist bypasses, input validation, and split percent enforcement.
-contract CroptopAttacks is Test {
-    CTPublisher publisher;
-    IJBPermissions permissions = IJBPermissions(makeAddr("permissions"));
-    IJBDirectory directory = IJBDirectory(makeAddr("directory"));
-    address hookOwner = makeAddr("hookOwner");
-    address hookAddr = makeAddr("hook");
-    address hookStoreAddr = makeAddr("hookStore");
-    address terminalAddr = makeAddr("terminal");
-    address poster = makeAddr("poster");
-    address unauthorized = makeAddr("unauthorized");
-    uint256 feeProjectId = 1;
-    uint256 hookProjectId = 42;
-    function setUp() public {
-        publisher = new CTPublisher(directory, permissions, feeProjectId, address(0));
-        // Mock hook.owner().
-        vm.mockCall(hookAddr, abi.encodeWithSelector(IJBOwnable.owner.selector), abi.encode(hookOwner));
-        // Mock hook.PROJECT_ID().
-        vm.mockCall(hookAddr, abi.encodeWithSelector(IJB721Hook.PROJECT_ID.selector), abi.encode(hookProjectId));
-        // Mock hook.STORE().
-        vm.mockCall(hookAddr, abi.encodeWithSelector(IJB721TiersHook.STORE.selector), abi.encode(hookStoreAddr));
-        // Mock permissions to return true by default.
-        vm.mockCall(
-            address(permissions), abi.encodeWithSelector(IJBPermissions.hasPermission.selector), abi.encode(true)
-        );
-        // Fund test accounts so they can send ETH with mintFrom.
-        vm.deal(poster, 100 ether);
-        vm.deal(unauthorized, 100 ether);
-    }
-    /// @dev Configure a standard category for testing.
-    function _configureCategory(uint24 category, uint104 minPrice, uint32 minSupply, uint32 maxSupply) internal {
-        CTAllowedPost[] memory posts = new CTAllowedPost[](1);
-        posts[0] = CTAllowedPost({
-            hook: hookAddr,
-            category: category,
-            minimumPrice: minPrice,
-            minimumTotalSupply: minSupply,
-            maximumTotalSupply: maxSupply,
-            maximumSplitPercent: 0,
-            allowedAddresses: new address[](0)
-        });
-        vm.prank(hookOwner);
-        publisher.configurePostingCriteriaFor(posts);
-    }
-    /// @dev Configure a category with an allowlist.
-    function _configureCategoryWithAllowlist(uint24 category, address[] memory allowed) internal {
-        CTAllowedPost[] memory posts = new CTAllowedPost[](1);
-        posts[0] = CTAllowedPost({
-            hook: hookAddr,
-            category: category,
-            minimumPrice: 0,
-            minimumTotalSupply: 1,
-            maximumTotalSupply: 100,
-            maximumSplitPercent: 0,
-            allowedAddresses: allowed
-        });
-        vm.prank(hookOwner);
-        publisher.configurePostingCriteriaFor(posts);
-    }
-    /// @dev Configure a category with a maximum split percent.
-    function _configureCategoryWithSplits(
-        uint24 category,
-        uint104 minPrice,
-        uint32 minSupply,
-        uint32 maxSupply,
-        uint32 maxSplitPercent
-    )
-        internal
-    {
-        CTAllowedPost[] memory posts = new CTAllowedPost[](1);
-        posts[0] = CTAllowedPost({
-            hook: hookAddr,
-            category: category,
-            minimumPrice: minPrice,
-            minimumTotalSupply: minSupply,
-            maximumTotalSupply: maxSupply,
-            maximumSplitPercent: maxSplitPercent,
-            allowedAddresses: new address[](0)
-        });
-        vm.prank(hookOwner);
-        publisher.configurePostingCriteriaFor(posts);
-    }
-    /// @dev Set up mocks for mintFrom path.
-    function _setupMintMocks() internal {
-        vm.mockCall(
-            hookStoreAddr, abi.encodeWithSelector(IJB721TiersHookStore.maxTierIdOf.selector), abi.encode(uint256(0))
-        );
-        vm.mockCall(hookAddr, abi.encodeWithSelector(IJB721TiersHook.adjustTiers.selector), abi.encode());
-        // METADATA_ID_TARGET() selector.
-        vm.mockCall(hookAddr, abi.encodeWithSelector(bytes4(keccak256("METADATA_ID_TARGET()"))), abi.encode(address(0)));
-        vm.mockCall(
-            address(directory),
-            abi.encodeWithSelector(IJBDirectory.primaryTerminalOf.selector),
-            abi.encode(terminalAddr)
-        );
-        vm.mockCall(terminalAddr, "", abi.encode(uint256(0)));
-    }
-    // =========================================================================
-    // Test 1: Post to unconfigured category — should revert
-    // =========================================================================
-    function test_mintFrom_unconfiguredCategory_reverts() public {
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("test-content"),
-            totalSupply: 10,
-            price: 0.1 ether,
-            category: 999,
-            splitPercent: 0,
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert();
-        publisher.mintFrom{value: 0.1 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 2: Post with price below minimum — should revert
-    // =========================================================================
-    function test_mintFrom_belowMinPrice_reverts() public {
-        _configureCategory(5, 0.1 ether, 1, 100);
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("cheap-content"),
-            totalSupply: 10,
-            price: 0.01 ether,
-            category: 5,
-            splitPercent: 0,
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert();
-        publisher.mintFrom{value: 0.01 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 3: Post with supply above maximum — should revert
-    // =========================================================================
-    function test_mintFrom_exceedsMaxSupply_reverts() public {
-        _configureCategory(5, 0, 1, 50);
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("big-supply"),
-            totalSupply: 100,
-            price: 0.01 ether,
-            category: 5,
-            splitPercent: 0,
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert();
-        publisher.mintFrom{value: 0.01 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 4: Post with supply below minimum — should revert
-    // =========================================================================
-    function test_mintFrom_belowMinSupply_reverts() public {
-        _configureCategory(5, 0, 10, 100);
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("small-supply"),
-            totalSupply: 5,
-            price: 0.01 ether,
-            category: 5,
-            splitPercent: 0,
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert();
-        publisher.mintFrom{value: 0.01 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 5: Allowlist bypass — non-allowed address posts to restricted category
-    // =========================================================================
-    function test_mintFrom_allowlistBypass_reverts() public {
-        address[] memory allowed = new address[](1);
-        allowed[0] = poster;
-        _configureCategoryWithAllowlist(7, allowed);
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("sneaky-content"),
-            totalSupply: 10,
-            price: 0.01 ether,
-            category: 7,
-            splitPercent: 0,
-            splits: new JBSplit[](0)
-        });
-        vm.prank(unauthorized);
-        vm.expectRevert();
-        publisher.mintFrom{value: 0.01 ether}(IJB721TiersHook(hookAddr), posts, unauthorized, unauthorized, "", "");
-    }
-    // =========================================================================
-    // Test 6: Zero IPFS URI — should revert
-    // =========================================================================
-    function test_mintFrom_zeroIPFSUri_reverts() public {
-        _configureCategory(5, 0, 1, 100);
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: bytes32(0),
-            totalSupply: 10,
-            price: 0.01 ether,
-            category: 5,
-            splitPercent: 0,
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert();
-        publisher.mintFrom{value: 0.01 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 7: Configure with zero minSupply reverts
-    // =========================================================================
-    function test_configure_zeroMinSupply_reverts() public {
-        CTAllowedPost[] memory posts = new CTAllowedPost[](1);
-        posts[0] = CTAllowedPost({
-            hook: hookAddr,
-            category: 5,
-            minimumPrice: 0,
-            minimumTotalSupply: 0,
-            maximumTotalSupply: 100,
-            maximumSplitPercent: 0,
-            allowedAddresses: new address[](0)
-        });
-        vm.prank(hookOwner);
-        vm.expectRevert(CTPublisher.CTPublisher_ZeroTotalSupply.selector);
-        publisher.configurePostingCriteriaFor(posts);
-    }
-    // =========================================================================
-    // Test 8: Configure without permission — should revert
-    // =========================================================================
-    function test_configure_noPermission_reverts() public {
-        vm.mockCall(
-            address(permissions), abi.encodeWithSelector(IJBPermissions.hasPermission.selector), abi.encode(false)
-        );
-        CTAllowedPost[] memory posts = new CTAllowedPost[](1);
-        posts[0] = CTAllowedPost({
-            hook: hookAddr,
-            category: 1,
-            minimumPrice: 0,
-            minimumTotalSupply: 1,
-            maximumTotalSupply: 100,
-            maximumSplitPercent: 0,
-            allowedAddresses: new address[](0)
-        });
-        vm.prank(unauthorized);
-        vm.expectRevert();
-        publisher.configurePostingCriteriaFor(posts);
-    }
-    // =========================================================================
-    // Test 9: Split percent exceeds maximum — should revert
-    // =========================================================================
-    function test_mintFrom_splitPercentExceedsMaximum_reverts() public {
-        _configureCategoryWithSplits(5, 0, 1, 100, 500_000_000); // 50% max
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("greedy-split"),
-            totalSupply: 10,
-            price: 0.1 ether,
-            category: 5,
-            splitPercent: 750_000_000, // 75% exceeds 50%
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert(
-            abi.encodeWithSelector(
-                CTPublisher.CTPublisher_SplitPercentExceedsMaximum.selector, 750_000_000, 500_000_000
-            )
-        );
-        publisher.mintFrom{value: 0.2 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 10: Split percent when splits disabled (max=0) — should revert
-    // =========================================================================
-    function test_mintFrom_splitPercentWhenDisabled_reverts() public {
-        _configureCategoryWithSplits(5, 0, 1, 100, 0); // Splits disabled
-        _setupMintMocks();
-        JBSplit[] memory splits = new JBSplit[](1);
-        splits[0] = JBSplit({
-            percent: 100_000_000,
-            projectId: 0,
-            beneficiary: payable(poster),
-            preferAddToBalance: false,
-            lockedUntil: 0,
-            hook: IJBSplitHook(address(0))
-        });
-        CTPost[] memory posts = new CTPost[](1);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("sneaky-split"),
-            totalSupply: 10,
-            price: 0.1 ether,
-            category: 5,
-            splitPercent: 100_000_000, // Any amount when disabled
-            splits: splits
-        });
-        vm.prank(poster);
-        vm.expectRevert(
-            abi.encodeWithSelector(CTPublisher.CTPublisher_SplitPercentExceedsMaximum.selector, 100_000_000, 0)
-        );
-        publisher.mintFrom{value: 0.2 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-    // =========================================================================
-    // Test 11: Attacker re-configures to raise split percent
-    // =========================================================================
-    function test_reconfigure_raiseSplitPercent_requiresPermission() public {
-        // Owner configures with 50% max split.
-        _configureCategoryWithSplits(5, 0, 1, 100, 500_000_000);
-        // Mock permissions to return false for unauthorized.
-        vm.mockCall(
-            address(permissions),
-            abi.encodeWithSelector(IJBPermissions.hasPermission.selector, unauthorized),
-            abi.encode(false)
-        );
-        // Attacker tries to reconfigure with 100% max split.
-        CTAllowedPost[] memory posts = new CTAllowedPost[](1);
-        posts[0] = CTAllowedPost({
-            hook: hookAddr,
-            category: 5,
-            minimumPrice: 0,
-            minimumTotalSupply: 1,
-            maximumTotalSupply: 100,
-            maximumSplitPercent: uint32(JBConstants.SPLITS_TOTAL_PERCENT),
-            allowedAddresses: new address[](0)
-        });
-        vm.prank(unauthorized);
-        vm.expectRevert();
-        publisher.configurePostingCriteriaFor(posts);
-    }
-    // =========================================================================
-    // Test 12: Multiple posts — first valid, second exceeds split
-    // =========================================================================
-    function test_mintFrom_batchWithOneExceedingSplit_reverts() public {
-        _configureCategoryWithSplits(5, 0, 1, 100, 500_000_000);
-        _setupMintMocks();
-        CTPost[] memory posts = new CTPost[](2);
-        posts[0] = CTPost({
-            encodedIPFSUri: keccak256("post-ok"),
-            totalSupply: 10,
-            price: 0.1 ether,
-            category: 5,
-            splitPercent: 250_000_000, // 25% OK
-            splits: new JBSplit[](0)
-        });
-        posts[1] = CTPost({
-            encodedIPFSUri: keccak256("post-bad"),
-            totalSupply: 10,
-            price: 0.1 ether,
-            category: 5,
-            splitPercent: 999_000_000, // 99.9% exceeds
-            splits: new JBSplit[](0)
-        });
-        vm.prank(poster);
-        vm.expectRevert(
-            abi.encodeWithSelector(
-                CTPublisher.CTPublisher_SplitPercentExceedsMaximum.selector, 999_000_000, 500_000_000
-            )
-        );
-        publisher.mintFrom{value: 0.4 ether}(IJB721TiersHook(hookAddr), posts, poster, poster, "", "");
-    }
-}

package/test/Fork.t.sol DELETED Viewed

@@ -1,227 +0,0 @@
-// SPDX-License-Identifier: MIT
-pragma solidity ^0.8.17;
-// forge-lint: disable-next-line(unaliased-plain-import)
-import "forge-std/Test.sol";
-// JB core — deploy fresh within fork.
-import {JBPermissions} from "@bananapus/core-v6/src/JBPermissions.sol";
-import {JBProjects} from "@bananapus/core-v6/src/JBProjects.sol";
-import {JBDirectory} from "@bananapus/core-v6/src/JBDirectory.sol";
-import {JBRulesets} from "@bananapus/core-v6/src/JBRulesets.sol";
-import {JBTokens} from "@bananapus/core-v6/src/JBTokens.sol";
-import {JBERC20} from "@bananapus/core-v6/src/JBERC20.sol";
-import {JBSplits} from "@bananapus/core-v6/src/JBSplits.sol";
-import {JBPrices} from "@bananapus/core-v6/src/JBPrices.sol";
-import {JBController} from "@bananapus/core-v6/src/JBController.sol";
-import {JBFundAccessLimits} from "@bananapus/core-v6/src/JBFundAccessLimits.sol";
-import {JBConstants} from "@bananapus/core-v6/src/libraries/JBConstants.sol";
-// 721 hook — deploy fresh within fork.
-import {JB721TiersHookStore} from "@bananapus/721-hook-v6/src/JB721TiersHookStore.sol";
-import {JB721TiersHook} from "@bananapus/721-hook-v6/src/JB721TiersHook.sol";
-import {JB721TiersHookDeployer} from "@bananapus/721-hook-v6/src/JB721TiersHookDeployer.sol";
-import {JB721CheckpointsDeployer} from "@bananapus/721-hook-v6/src/JB721CheckpointsDeployer.sol";
-import {JBAddressRegistry} from "@bananapus/address-registry-v6/src/JBAddressRegistry.sol";
-// Suckers — deploy fresh within fork.
-import {JBSuckerRegistry} from "@bananapus/suckers-v6/src/JBSuckerRegistry.sol";
-import {JBOptimismSuckerDeployer} from "@bananapus/suckers-v6/src/deployers/JBOptimismSuckerDeployer.sol";
-import {JBOptimismSucker} from "@bananapus/suckers-v6/src/JBOptimismSucker.sol";
-import {IOPMessenger} from "@bananapus/suckers-v6/src/interfaces/IOPMessenger.sol";
-import {IOPStandardBridge} from "@bananapus/suckers-v6/src/interfaces/IOPStandardBridge.sol";
-import {JBSuckerDeployerConfig} from "@bananapus/suckers-v6/src/structs/JBSuckerDeployerConfig.sol";
-import {JBTokenMapping} from "@bananapus/suckers-v6/src/structs/JBTokenMapping.sol";
-import {IJBSuckerDeployer} from "@bananapus/suckers-v6/src/interfaces/IJBSuckerDeployer.sol";
-import {JBTerminalConfig} from "@bananapus/core-v6/src/structs/JBTerminalConfig.sol";
-// Croptop — wildcard import pulls in all structs (CTProjectConfig, CTDeployerAllowedPost, etc.).
-// forge-lint: disable-next-line(unaliased-plain-import)
-import "./../src/CTDeployer.sol";
-import {CTPublisher} from "./../src/CTPublisher.sol";
-/// @notice Fork tests for Croptop. Deploys all JB infrastructure fresh within a mainnet fork.
-contract ForkTest is Test {
-    // ───────────────────────── Mainnet addresses
-    // ──────────────────────────
-    // OP L1 bridge contracts (exist on Ethereum mainnet).
-    IOPMessenger constant OP_L1_MESSENGER = IOPMessenger(0x25ace71c97B33Cc4729CF772ae268934F7ab5fA1);
-    IOPStandardBridge constant OP_L1_BRIDGE = IOPStandardBridge(0x99C9fc46f92E8a1c0deC1b1747d010903E884bE1);
-    // ───────────────────────── JB core (deployed fresh)
-    // ───────────────────
-    address multisig = address(0xBEEF);
-    address trustedForwarder = address(0);
-    JBPermissions jbPermissions;
-    JBProjects jbProjects;
-    JBDirectory jbDirectory;
-    JBRulesets jbRulesets;
-    JBTokens jbTokens;
-    JBSplits jbSplits;
-    JBPrices jbPrices;
-    JBFundAccessLimits jbFundAccessLimits;
-    JBController jbController;
-    // ───────────────────────── 721 hook (deployed fresh)
-    // ──────────────────
-    JB721TiersHookDeployer hookDeployer;
-    // ───────────────────────── Suckers (deployed fresh)
-    // ───────────────────
-    JBSuckerRegistry suckerRegistry;
-    JBOptimismSuckerDeployer opSuckerDeployer;
-    // ───────────────────────── Croptop
-    // ────────────────────────────────────
-    CTPublisher publisher;
-    CTDeployer deployer;
-    function setUp() public {
-        // Fork ETH mainnet.
-        vm.createSelectFork("ethereum");
-        // Deploy all JB core contracts fresh within the fork.
-        _deployJBCore();
-        // Deploy the 721 hook infrastructure.
-        _deploy721Hook();
-        // Deploy the sucker infrastructure.
-        _deploySuckers();
-        // Deploy the croptop contracts.
-        publisher = new CTPublisher(jbDirectory, jbPermissions, 1, trustedForwarder);
-        deployer = new CTDeployer(jbPermissions, jbProjects, hookDeployer, publisher, suckerRegistry, trustedForwarder);
-    }
-    function testDeployProject(address owner) public {
-        vm.assume(owner != address(0) && owner.code.length == 0);
-        // Create the project config.
-        CTProjectConfig memory config = CTProjectConfig({
-            terminalConfigurations: new JBTerminalConfig[](0),
-            projectUri: "https://croptop.eth.sucks/",
-            allowedPosts: new CTDeployerAllowedPost[](0),
-            contractUri: "https://croptop.eth.sucks/",
-            name: "Croptop",
-            symbol: "CROP",
-            salt: bytes32(0)
-        });
-        CTSuckerDeploymentConfig memory suckerConfig =
-            CTSuckerDeploymentConfig({deployerConfigurations: new JBSuckerDeployerConfig[](0), salt: bytes32(0)});
-        deployer.deployProjectFor(owner, config, suckerConfig, jbController);
-    }
-    function testDeployProjectWithSuckers(address owner, bytes32 salt, bytes32 suckerSalt) public {
-        vm.assume(owner != address(0) && owner.code.length == 0);
-        vm.assume(suckerSalt != bytes32(0));
-        // Create the project config.
-        CTProjectConfig memory config = CTProjectConfig({
-            terminalConfigurations: new JBTerminalConfig[](0),
-            projectUri: "https://croptop.eth.sucks/",
-            allowedPosts: new CTDeployerAllowedPost[](0),
-            contractUri: "https://croptop.eth.sucks/",
-            name: "Croptop",
-            symbol: "CROP",
-            salt: salt
-        });
-        // Create the sucker config.
-        JBTokenMapping[] memory tokens = new JBTokenMapping[](1);
-        tokens[0] = JBTokenMapping({
-            localToken: address(JBConstants.NATIVE_TOKEN),
-            minGas: 200_000,
-            remoteToken: bytes32(uint256(uint160(JBConstants.NATIVE_TOKEN)))
-        });
-        JBSuckerDeployerConfig[] memory deployerConfigurations = new JBSuckerDeployerConfig[](1);
-        deployerConfigurations[0] =
-            JBSuckerDeployerConfig({deployer: IJBSuckerDeployer(address(opSuckerDeployer)), mappings: tokens});
-        CTSuckerDeploymentConfig memory suckerConfig =
-            CTSuckerDeploymentConfig({deployerConfigurations: deployerConfigurations, salt: suckerSalt});
-        // Deploy the project.
-        (uint256 projectId,) = deployer.deployProjectFor(owner, config, suckerConfig, jbController);
-        // Check that the projectId has a sucker.
-        assertEq(suckerRegistry.suckersOf(projectId).length, deployerConfigurations.length);
-    }
-    // ───────────────────────── Internal deployment helpers
-    // ────────────────
-    // forge-lint: disable-next-line(mixed-case-function)
-    function _deployJBCore() internal {
-        jbPermissions = new JBPermissions(trustedForwarder);
-        jbProjects = new JBProjects(multisig, address(0), trustedForwarder);
-        jbDirectory = new JBDirectory(jbPermissions, jbProjects, multisig);
-        JBERC20 jbErc20 = new JBERC20(jbPermissions, jbProjects);
-        jbTokens = new JBTokens(jbDirectory, jbErc20);
-        jbRulesets = new JBRulesets(jbDirectory);
-        jbPrices = new JBPrices(jbDirectory, jbPermissions, jbProjects, multisig, trustedForwarder);
-        jbSplits = new JBSplits(jbDirectory);
-        jbFundAccessLimits = new JBFundAccessLimits(jbDirectory);
-        jbController = new JBController(
-            jbDirectory,
-            jbFundAccessLimits,
-            jbPermissions,
-            jbPrices,
-            jbProjects,
-            jbRulesets,
-            jbSplits,
-            jbTokens,
-            address(0), // omnichainRulesetOperator
-            trustedForwarder
-        );
-        vm.prank(multisig);
-        jbDirectory.setIsAllowedToSetFirstController(address(jbController), true);
-    }
-    function _deploy721Hook() internal {
-        JB721TiersHookStore store = new JB721TiersHookStore();
-        JBAddressRegistry addressRegistry = new JBAddressRegistry();
-        JB721CheckpointsDeployer checkpointsDeployer = new JB721CheckpointsDeployer();
-        JB721TiersHook hookImpl = new JB721TiersHook(
-            jbDirectory, jbPermissions, jbPrices, jbRulesets, store, jbSplits, checkpointsDeployer, trustedForwarder
-        );
-        hookDeployer = new JB721TiersHookDeployer(hookImpl, store, addressRegistry, trustedForwarder);
-    }
-    function _deploySuckers() internal {
-        suckerRegistry = new JBSuckerRegistry(jbDirectory, jbPermissions, multisig, trustedForwarder);
-        // Deploy the OP sucker deployer with `multisig` as the configurator.
-        opSuckerDeployer =
-            new JBOptimismSuckerDeployer(jbDirectory, jbPermissions, jbTokens, multisig, trustedForwarder);
-        // Configure the OP sucker deployer with L1 bridge addresses.
-        vm.startPrank(multisig);
-        opSuckerDeployer.setChainSpecificConstants(OP_L1_MESSENGER, OP_L1_BRIDGE);
-        // Deploy and configure the singleton.
-        JBOptimismSucker singleton = new JBOptimismSucker(
-            opSuckerDeployer, jbDirectory, jbPermissions, jbTokens, 1, suckerRegistry, trustedForwarder
-        );
-        opSuckerDeployer.configureSingleton(singleton);
-        // Allow the deployer in the registry.
-        suckerRegistry.allowSuckerDeployer(address(opSuckerDeployer));
-        vm.stopPrank();
-    }
-}