Subtleties of upgradeable contracts

abcoathup · August 27, 2019, 10:26pm

Some subtleties to consider with upgradeable contracts using the OpenZeppelin SDK:
(I split this into a new topic as I thought it was an interesting discussion on its own.)

Upgrades Pattern

Suggest reading about the upgrades pattern (if you haven't already): https://docs.openzeppelin.com/sdk/2.5/pattern

Governance

Need to consider the governance mechanisms to decide when and how to upgrade the contracts that will earn the trust of users:

Verify

Currently we can verify logic contracts on Etherscan with OpenZeppelin SDK and we can manually verify proxy contracts on Etherscan.
Etherscan doesn't currently support OpenZeppelin SDK proxy contracts.

Audits

Suggest reading the audits of the OpenZeppelin SDK contracts:

Topic		Replies	Views
What upgrade pattern does openzeppelin use? Upgrades	2	1382	July 14, 2021
Building for interoperability: why we’re focusing on Upgrades Plugins Announcements	0	4853	October 13, 2020
OpenZeppelin's Upgradable Contract References? Contracts	2	1163	October 18, 2021
Researching code patterns for upgradable smart contracts Upgrades	4	867	October 27, 2020
OpenZeppelin has terrible examples covering Upgradable smart contracts Upgrades erc20 , upgrades	3	1000	March 29, 2022

Subtleties of upgradeable contracts

Upgrades Pattern

Governance

Verify

Audits

Related Topics