- OPB-05: Puts the signature verification before further unmarshaling to guard against mal-formed payloads.
- Adds a minimum size check to the payload decoding to ensure we always have at least a signature and a payload available.

Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>

* chore: Upgrade foundry

* Changeset

ops: Automatically upgrade deps, release v0.8.3

* op-bindings: Add storage layout generation

* semgrep

* add forgotten files

* fix op-node, remove deprecated script

* Remove deployed

* Remove targets

* go mod tidy

* goimports

* imports

* devnet fix

* parallelize bindgen, fix diff

* op-node: buffer unsafe payloads with priority queue, pop lowest number to maintain max size, and do not drop if the first payload is in the future

* payload queue testing

* op-node: payload queue metrics, error handling

* op-node: fix payloads queue test missing pop

* op-node: payloads queue false semgrep case
Co-authored-by: Matthew Slipper <me@matthewslipper.com>

* bedrock: update to latest op-geth, based on geth master, after v1.10.23

* op-chain-ops: fix test deep equal check
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>

Significantly improves the bundle size of the contracts package by
exporting deployments more intentionally and by removing certain
unnecessary exports.

We're moving to Bedrock, so these nightlies aren't used anymore. Additionally, they were pushing directly to our Docker Hub repository. If we need to bring these back, we'll need to update them to push to GCR instead.

Co-authored-by: Matthew Slipper <me@matthewslipper.com>

* style(batch-submitter): fix lint

* style(bss-core): fix lint

* chore(proxyd): use io and os instead of deprecated ioutil methods, fixes lint

Fixes withdrawals by specifying the correct storage slot. Note that this does not fix the op-e2e tests, which were incorrectly passing. @protolambda is working on this.

merge Master into Develop

develop => master

contracts-bedrock: use `MemorySafeCall`

Replace `ExcessivelySafeCall` with a local `SafeCall`
that does not copy any calldata back. We do not care about
returndata being returned so this prevents returndata bombs.

Co-authored-by: Matthew Slipper <me@matthewslipper.com>

contracts-bedrock: add gpo to Predeploys.sol

This bumps the open zeppelin contracts used in bedrock to the
latest release. This bump is happening because `Ownable` becomes
more flexible, allowing you to overwrite the logic for `onlyOwner`.
This would enable writing a `CrossDomainOwnable` contract like so:

```solidity
// SPDX-License-Identifier: MIT
pragma solidity 0.8.15;

import { AddressAliasHelper } from "../vendor/AddressAliasHelper.sol";
import { Ownable } from "@openzeppelin/contracts/access/Ownable.sol";

abstract contract CrossDomainOwnable is Ownable {
    /**
     * @dev Throws if the sender is not the owner.
     */
    function _checkOwner() internal view {
        address sender = AddressAliasHelper.undoL1ToL2Alias(msg.sender);
        require(owner() == sender, "Ownable: caller is not the owner");
    }
}
```

The main diff to the `Ownable` contract is that is now looks like this:

```solidity
    /**
     * @dev Throws if called by any account other than the owner.
     */
    modifier onlyOwner() {
        _checkOwner();
        _;
    }

    /**
     * @dev Returns the address of the current owner.
     */
    function owner() public view virtual returns (address) {
        return _owner;
    }

    /**
     * @dev Throws if the sender is not the owner.
     */
    function _checkOwner() internal view virtual {
        require(owner() == _msgSender(), "Ownable: caller is not the owner");
    }
```

The older version of the contracts doesn't have the `virtual`
`_checkOwner` function. This does add some additional gas overhead
as seen in the `.gas-snapshot`.