Bump @openzeppelin/contracts from 2.4.0 to 2.5.0

[dependabot-preview]

Bumps @openzeppelin/contracts from 2.4.0 to 2.5.0.

Release notes

Sourced from @openzeppelin/contracts's releases.

OpenZeppelin Contracts 2.5

We're very happy the announce the release of OpenZeppelin Contracts v2.5!

This new release features:

• EnumerableSet: similar to Solidity's mapping, but that lets you retrieve all the keys! Useful for dapps that need to display a set of accounts with some property, and cannot rely on events alone.
• Create2: a simple library for using the CREATE2 opcode, allowing for deployment and pre-computation of addresses when using it. To learn more about all the cool things you can do with it, head to Getting the Most out of CREATE2
• ERC721Metadata.baseURI: a neat extension for massive gas savings when the token URIs share a prefix, like https://my.cool.app/token/<id>

There are also some minor improvements, such as gas optimizations for ReentrancyGuard and additional extensibility of ERC777, among others.

For the complete list of changes, head to our changelog.

To install the new release, run:

$ npm install @openzeppelin/contracts@latest

New Documentation 📚

We've also recently done some some improvements to our documentation website, including new detailed guides and documentation for our other tools, such as the Test Helpers, our blazing-fast Test Environment and the OpenZeppelin Command Line Interface. Check them out for a radically better development experience!

Saying Goodbye to Solidity v0.5 👋

December 2019 saw the release of Solidity v0.6. This new version of the language has major improvements, and we're already underway to release the next version of OpenZeppelin Contracts with support for Solidity v0.6.

However, it also includes a lot of breaking changes, making it difficult to support both v0.5 and v0.6 code at the same time. For this reason, we've decided OpenZeppelin Contracts v2.5 will be the last version supporting Solidity v0.5.

The exciting good news it that the next OpenZeppelin Contracts release will be v3.0, where we'll get to redesign some quirky bits of the library, improving ease of use and flexibility. Stay tuned!

Changelog

Sourced from @openzeppelin/contracts's changelog.

2.5.0 (2020-02-04)

New features

• SafeCast.toUintXX: new library for integer downcasting, which allows for safe operation on smaller types (e.g. uint32) when combined with SafeMath. (#1926)
• ERC721Metadata: added baseURI, which can be used for dramatic gas savings when all token URIs share a prefix (e.g. http://api.myapp.com/tokens/<id>). (#1970)
• EnumerableSet: new library for storing enumerable sets of values. Only AddressSet is supported in this release. (#2061)
• Create2: simple library to make usage of the CREATE2 opcode easier. (#1744)

Improvements

• ERC777: _burn is now internal, providing more flexibility and making it easier to create tokens that deflate. (#1908)
• ReentrancyGuard: greatly improved gas efficiency by using the net gas metering mechanism introduced in the Istanbul hardfork. (#1992, #1996)
• ERC777: improve extensibility by making _send and related functions internal. (#2027)
• ERC721: improved revert reason when transferring tokens to a non-recipient contract. (#2018)

Breaking changes

• ERC165Checker now requires a minimum Solidity compiler version of 0.5.10. (#1829)

Commits

• 58a3368 2.5.0
• 941d305 Update docs
• 1b938e3 EnumerableSet improvements (#2077)
• 0ac83ce Fix EnumerableSetMock for 2.5.rc1 (#2069)
• d775e31 Update package homepage.
• e4a8a55 2.5.0-rc.0
• 88dc1ca Reorder functions to prevent shadowing warning
• 1e0f077 Implementation of an address Enumerable Set (#2061)
• 73abd54 Made private methods internal to allow for overriding (#2027)
• 7d7cbca Fix/improve revert reason #1727 (#2018)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by nventuro, a new releaser for @openzeppelin/contracts since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)