In case the back-end private key gets compromised, we need to be able to change it without re-deploying the contract
Moving to a role based access control will ensure that.

To avoid having to perform multiple calls from the back-end, we should add the possibility to publish a github contribution from the github handle.
This implies a link to be implemented between the contribution smart contract and the registry.

We want to move to a permission-less model for the metadata management in the NFT.
This way, anyone will be able to add a new metadata key and register its own metadata contract.
Only the admin of the metadata contract should be able to update it.
Ownership transfer should be supported as well.

In case the registry is upgraded to another contract
we won't be able to save the mapping between addresses and token_id minted
if we want to re-mint a badge from a given user, the same token id previously minted should be returned

upon contribution completion:
- update the status of the contribution
- increase the number of past contributions of the contributor

Contributions can only be added, they should be removable.

Add a function to remove a contribution, only accessible to the feeder role.

There should be tests on the developed code.

Context

Validator address is configured on a contribution to provide them specific rights, such as updating the contribution gate or validating the contribution.
Though it might not be the good one configured right from the start, and there is currently no way to update it after the contribution is created.

Acceptance criteria

• A new public function is exposed on the contract
• This function is only callable by the feeder role, or the currently set validator address
• When called with an address, this address becomes the new validator address
• A unit test is present on all the possible cases
• The end-to-end tests are updated with a validator address change

We can have several kinds of metadata:
- Github contributions
- Starklings challenges
- any other kind...

Each kind of metadata can have its own implementation, can be upgraded

The badge contract should hold its metadata implementers and delegate the metadata calls to the correct one

to make the code type-safe, we should consider creating dedicated types for ids:

• contribution_id
• contributor_id

We can use a rust-like new type pattern:

struct ContributionId:
   member inner : felt
end

deploying all contracts, we should be able to perform a full end-to-end test to validate interactions between the contracts:

• the badge registry
• the badge
• the metadata contract

Allow the following scenarii:

• a user can unregister its github handle from its account
• reject a github registration if already registered
• retrieve user information from github handle

Before assigning a contributor to a contribution, we should check the validity of the contributor ID by querying the profile contract

The badge is an NFT based on ERC-721 standard
The badge is not transferable
The purpose is to track contributions and challenges won from a given address
The badge can be linked to many different metadata, each having its own implementation as a dedicated smart contract
The badge will act as a proxy for those metadata

In order to test the integration with the developped back-ends, we need to deploy the smart contracts on goreli testnet
Do not forget to tag the repository when contracts are deployed !

Store a mapping between a badge id and contribution data
Contribution data is a list of PR
Each PR has a repository owner, repository name, Pull Request ID and a status

Right now the lead contributor role assignment is done following an upsert logic: the storage is written and the event is emitted regardless of the account already having this role.

Instead, we would like it to fail for redundant repeated role assignments.

Contribution'scontribution_count_required is currently set in the new_contribution method, and cannot be changed afterwards.
We need a function to modify it.

The function should only be accessible to the feeder role (like in https://github.com/onlydustxyz/marketplace-smart-contracts/blob/main/contracts/onlydust/deathnote/core/contributions/library.cairo#L114) or to the validator address (like in https://github.com/onlydustxyz/marketplace-smart-contracts/blob/main/contracts/onlydust/deathnote/core/contributions/library.cairo#L261).

There should also be tests to cover the developed feature.

In case the back-end private key is compromised, we will need to transfer the feeder role to a new key.
This cannot be done with the current implementation using the Ownable pattern.
We need to move to a role-based model:

• ADMIN role to manage roles
• FEEDER role for the back-end

• the badge registry can get or mint a badge from a wallet address and return the token id
• the badge registry will hold the mapping between SCM handles and the address/token id

modify the Contribution type to include the gate

No particular check on the contributor to be implemented, the gating part will be covered by dedicated issues