This project is not audited
If you want to use this project, perform your own verification or send an email to [email protected].
This project provides a modular deployment framework for CMTAT, a compliant token implementation, using three different upgradeability patterns: UUPS proxy, Transparent proxy, and Beacon proxy. Each factory contract automates deployment using deterministic addresses (via CREATE2) and initializes CMTAT instances with a structured set of parameters passed in arguments by the deployer.
[TOC]
- Multiple proxy types — choose UUPS, Transparent, or Beacon depending on your upgrade strategy.
- Role-based security — only authorized deployers can create new instances.
- Predictable deployments — computed addresses allow you to know the resulting contract address before deploying.
- Self-contained factories — each factory handles its own proxy administration logic.
- UUPS Proxy Factory
- Deploys CMTAT behind a UUPS proxy (ERC-1822) with minimal admin overhead.
- Contract: CMTAT_UUPS_FACTORY.sol
- Transparent Proxy Factory
- Deploys CMTAT behind a TransparentUpgradeableProxy with a dedicated ProxyAdmin contract.
- Contract: CMTAT_TRANSPARENT_FACTORY.sol
- Beacon Proxy Factory
- Deploys CMTAT behind a BeaconProxy using an UpgradeableBeacon for shared implementation upgrades.
- Contract: CMTAT_BEACON_FACTORY.sol
Library abstract contracts are imported by several different factories.
| Contract | Type | Bases | ||
|---|---|---|---|---|
| â”” | Function Name | Visibility | Mutability | Modifiers |
| CMTATFactoryBase | Implementation | CMTATFactoryRoot | ||
| └ | Public ❗️ | 🛑 | CMTATFactoryRoot |
| Contract | Type | Bases | ||
|---|---|---|---|---|
| â”” | Function Name | Visibility | Mutability | Modifiers |
| CMTATFactoryRoot | Implementation | AccessControl, CMTATFactoryInvariant | ||
| └ | Public ❗️ | 🛑 | NO❗️ | |
| └ | CMTATProxyAddress | Public ❗️ | NO❗️ | |
| └ | _checkAndDetermineDeploymentSalt | Internal 🔒 | 🛑 |
The struct CMTAT_ARGUMENT will be ABI encoded in function signature as: (address,(string,string,uint8),(string,(string,string,bytes32),string),(address,address,address)).
struct CMTAT_ARGUMENT {
address CMTATAdmin;
ICMTATConstructor.ERC20Attributes ERC20Attributes;
ICMTATConstructor.ExtraInformationAttributes extraInformationAttributes;
ICMTATConstructor.Engine engines;
}Details
- ERC20Attributes
struct ERC20Attributes {
string name;
string symbol;
uint8 decimalsIrrevocable;
}
=> (string,string,uint8)
- DocumentInfo
struct DocumentInfo {
string name;
string uri;
bytes32 documentHash;
}
=> (string,string,bytes32)
- ICMTATConstructor.ExtraInformationAttributes
struct ExtraInformationAttributes {
string tokenId;
IERC1643CMTAT.DocumentInfo terms;
string information;
}
=> (string,(string,string,bytes32),string)
- ICMTATConstructor.Engine
struct Engine {
IRuleEngine ruleEngine;
ISnapshotEngine snapshotEngine;
IERC1643 documentEngine;
}
=> (address,address,address)
A beacon proxy is very useful if you want to manage all your proxies in one place.
Unlike the transparent proxy, the beacon proxy does not point directly to the implementation contract. Instead, it stores the address of another contract called the Beacon contract. This contract is responsible for storing the address of the implementation.
When an entity (EOA or contract) calls the proxy, the proxy then calls the beacon contract to retrieve the implementation and delegate the call to it.
For example:
- The user (an EOA) calls the mintfunction on the proxy contract.
- The proxy calls the beacon contract to get the address of the implementation.
- The proxy calls the implementation contract with a delegateCall.
The factory will use the same beacon for each beacon proxy.
- This beacon provides the address of the implementation contract, a CMTAT_PROXY contract.
- If you upgrade the beacon to point to a new implementation, it will change the implementation contract for all beacon proxy.
Deploys a CMTAT token implementation behind a BeaconProxy.
Parameters:
| Name | Type | Description |
|---|---|---|
| deploymentSaltInput | bytes32 | Salt used for deterministic deployment (via CREATE2). |
| cmtatArgument | CMTAT_ARGUMENT | Struct containing initializer arguments for the CMTAT contract. |
Return Values:
| Name | Type | Description |
|---|---|---|
| cmtat | BeaconProxy | The deployed BeaconProxy instance pointing to the CMTAT implementation. |
Get the predicted BeaconProxy address for a given deployment salt without deploying it.
Parameters:
| Name | Type | Description |
|---|---|---|
| deploymentSalt | bytes32 | Salt used for deterministic deployment (via CREATE2). |
| cmtatArgument | CMTAT_ARGUMENT | Struct containing initializer arguments for the CMTAT contract. |
Return Values:
| Name | Type | Description |
|---|---|---|
| cmtatProxy | address | The computed address of the BeaconProxy for the given salt. |
Get the current implementation address stored in the UpgradeableBeacon.
Return Values:
| Name | Type | Description |
|---|---|---|
| beaconImplementation | address | Address of the CMTAT implementation contract. |
In the transparent proxy architecture, there are three contracts:
- Proxy admin contract: controls and upgrades the proxy contract.
- Transparent proxy contract: acts as the main entry point for the contract user.
- Implementation contract: contains the code of your smart contract, in this case, the CMTAT.
This architecture is more complex than a clone proxy because the proxy can be upgraded to point to a new implementation.
Moreover, the upgrade function is coded within the proxy itself, making the proxy larger to deploy than a UUPS proxy.
The factory will use the same implementation for each transparent proxy deployed.
- Each transparent proxy has its owned proxy admin, deployed inside the constructor of the transparent proxy.
- Each transparent proxy can upgrade their implementation to a new one independently and without impact on other proxies.
Get the predicted proxy address for a given deployment salt without deploying it.
Parameters:
| Name | Type | Description |
|---|---|---|
| deploymentSalt | bytes32 | Salt used for deterministic deployment (via CREATE2). |
| proxyAdminOwner | address | Address that will own the ProxyAdmin contract. |
| cmtatArgument | CMTAT_ARGUMENT | Struct containing initializer arguments for the CMTAT contract. |
Return Values:
| Name | Type | Description |
|---|---|---|
| cmtatProxy | address | The computed address of the CMTAT proxy for the given salt. |
Deploys a CMTAT token implementation behind a TransparentUpgradeableProxy, along with a new ProxyAdmin contract.
Parameters:
| Name | Type | Description |
|---|---|---|
| deploymentSaltInput | bytes32 | Salt used for deterministic deployment (via CREATE2). |
| proxyAdminOwner | address | Address that will own the ProxyAdmin contract. |
| cmtatArgument | CMTAT_ARGUMENT | Struct containing initializer arguments for the CMTAT contract. |
Return Values:
| Name | Type | Description |
|---|---|---|
| proxy | address | Address of the deployed TransparentUpgradeableProxy. |
Contrary to the Transparent Proxy, the logic to upgrade the proxy is situated in the implementation and not in the proxy, making the proxy cheaper to deploy.
The factory will use the same implementation for each UUPS proxy deployed.
- Each UUPS proxy can upgrade their implementation to a new one independently and without impact on other proxies.
- This is the reason whey there is a specific CMTAT contract which includes this logic to use:
CMTATUpgradeableUUPS
Deploys a CMTAT token implementation behind a UUPS proxy using a deterministic salt.
Parameters:
| Name | Type | Description |
|---|---|---|
| deploymentSaltInput | bytes32 | Salt used for deterministic deployment (via CREATE2). |
| cmtatArgument | CMTAT_ARGUMENT | Struct containing initializer arguments for the CMTAT contract. |
Return Values:
| Name | Type | Description |
|---|---|---|
| cmtat | ERC1967Proxy | The deployed ERC1967Proxy instance pointing to the CMTAT implementation. |
Get the predicted proxy address for a given deployment salt without deploying it.
Parameters:
| Name | Type | Description |
|---|---|---|
| deploymentSalt | bytes32 | Salt used for deterministic deployment (via CREATE2). |
| cmtatArgument | CMTAT_ARGUMENT | Struct containing initializer arguments for the CMTAT contract. |
Return Values:
| Name | Type | Description |
|---|---|---|
| cmtatProxy | address | The computed address of the CMTAT proxy for the given salt. |
The toolchain includes the following components, where the versions are the latest ones that we tested:
- npm 10.2.5
- Hardhat ^2.22.7
- Node 20.5.0
- Smart contract
- Clone the repository
Clone the git repository, with the option --recurse-submodules to fetch the submodules:
git clone [email protected]:CMTA/CMTATFactory.git --recurse-submodules
- Node.js version
We recommend to install the Node Version Manager nvm to manage multiple versions of Node.js on your machine. You can then, for example, install the version 20.5.0 of Node.js with the following command: nvm install 20.5.0
The file .nvmrc at the root of the project set the Node.js version. nvm usewill automatically use this version if no version is supplied on the command line.
- node modules
To install the node modules required by CMTAT, run the following command at the root of the project:
npm install
To use Hardhat, the recommended way is to use the version installed as part of the node modules, via the
npxcommand:
npx hardhat
Alternatively, you can install Hardhat globally:
npm install -g hardhat
See Hardhat's official documentation for more information.
You can get the size of the contract by running the following commands.
- Compile the contracts:
npx hardhat compile- Run the script:
npm run-script sizeThe script calls the plugin hardhat-contract-sizer with Hardhat.
Tests are written in JavaScript by using web3js and run only with Hardhat as follows:
npx hardhat test
To use the global hardhat install, use instead hardhat test.
Please see the Hardhat documentation for more information about the writing and running of Hardhat.
We use linters to ensure consistent coding style. If you contribute code, please run this following command:
For JavaScript:
npm run-script lint:js
npm run-script lint:js:fix For Solidity:
npm run-script lint:sol
npm run-script lint:sol:fixTo generate documentation with surya, you can call the three bash scripts in doc/script
| Task | Script | Command exemple |
|---|---|---|
| Generate graph | script_surya_graph.sh | npx surya graph -i contracts/**/*.sol npx surya graph contracts/CMTAT_TP_FACTORY.sol |
| Generate inheritance | script_surya_inheritance.sh | npx surya inheritance contracts/modules/CMTAT_TP_FACTORY.sol -i npx surya inheritance contracts/modules/CMTAT_TP_FACTORY.sol |
| Generate report | script_surya_report.sh | npx surya mdreport -i surya_report.md contracts/modules/CMTAT_TP_FACTORY.sol npx surya mdreport surya_report.md contracts/modules/CMTAT_TP_FACTORY.sol |
In the report, the path for the different files are indicated in absolute. You have to remove the part which correspond to your local filesystem.
Code coverage for Solidity smart-contracts, installed as a hardhat plugin
npm run-script coveragePlease see SECURITY.md (CMTAT main repository).
This project is not audited !
Slither is a Solidity static analysis framework written in Python3
slither . --checklist --filter-paths "openzeppelin-contracts-upgradeable|openzeppelin-contracts|@openzeppelin|test|CMTAT" > slither-report.mdHere is the list of report performed with Aderyn
aderyn -x mock --output aderyn-report.mdFor more details and test scenario, you can read this article on the Taurus blog: Making CMTAT Tokenization More Scalable and Cost-Effective with Proxy and Factory Contracts.
This article uses the CMTAT version 2.5.1 when the factory code was still included in the CMTAT repository. The factory code corresponds to the Factory release: 0.1.0
The code is copyright (c) Capital Market and Technology Association, 2018-2025, and is released under Mozilla Public License 2.0.