Add ScheduledTxModule with EIP-712 support and related tests

- Implement ScheduledTxModule contract for scheduling transactions with time-based execution.
- Introduce ISafe interface for interacting with Safe contracts.
- Add MockERC20 and TestSafeBase for testing purposes.
- Configure submodules for safe-smart-account and openzeppelin-contracts.
- Update remappings for new dependencies.

Author: akshay-ap

.gitmodules

@@ -1,3 +1,11 @@
 [submodule "lib/forge-std"]
 	path = lib/forge-std
 	url = https://github.com/foundry-rs/forge-std
+[submodule "lib/safe-smart-account"]
+	path = lib/safe-smart-account
+	url = https://github.com/safe-fndn/safe-smart-account
+	branch = v1.4.1
+
+[submodule "lib/openzeppelin-contracts"]
+	path = lib/openzeppelin-contracts
+	url = https://github.com/OpenZeppelin/openzeppelin-contracts

foundry.toml

@@ -2,5 +2,12 @@
 src = "src"
 out = "out"
 libs = ["lib"]
+optimizer = true
+optimizer_runs = 200
+solc_version = "0.8.29"
+
+# Safe v1.4.1 contracts were compiled without via-ir
+# Enabling via-ir causes stack-too-deep errors in Safe's execTransaction
+# via_ir = false (default)
 
 # See more config options https://github.com/foundry-rs/foundry/blob/master/crates/config/README.md#all-options

lib/openzeppelin-contracts

@@ -0,0 +1,2 @@
+safe-smart-account/=lib/safe-smart-account/contracts/
+@openzeppelin/contracts/=lib/openzeppelin-contracts/contracts/

lib/safe-smart-account

@@ -1,4 +1,103 @@
 // SPDX-License-Identifier: UNLICENSED
 pragma solidity ^0.8.13;
 
-contract ScheduledTxModule {}
+import {ISafe} from "./interfaces/ISafe.sol";
+
+/**
+ * @title ScheduledTxModule
+ * @notice A Safe module that allows scheduling transactions with time-based execution windows
+ * @dev Uses EIP-712 signatures to authorize scheduled transactions that can only be executed within specified time windows
+ */
+contract ScheduledTxModule {
+    /**
+     * @notice EIP-712 type hash for scheduled transaction permits
+     * @dev Used to generate the struct hash for signature verification
+     */
+    bytes32 public immutable PERMIT_TYPEHASH = keccak256(
+        "ScheduledTxModule(address to,uint256 value,bytes data,uint256 nonce,uint64 executeAfter,uint64 deadline)"
+    );
+
+    /**
+     * @notice Tracks which nonces have been used for each Safe
+     * @dev Mapping from Safe address to nonce to execution status
+     */
+    mapping(address safe => mapping(uint256 nonce => bool used)) public nonces;
+
+    /**
+     * @notice Thrown when attempting to execute a transaction after its deadline
+     */
+    error TransactionExpired();
+
+    /**
+     * @notice Thrown when attempting to reuse a nonce that has already been executed
+     */
+    error AlreadyExecuted();
+
+    /**
+     * @notice Thrown when attempting to execute a transaction before its executeAfter timestamp
+     */
+    error TooEarly();
+
+    /**
+     * @notice Thrown when the module transaction execution fails
+     */
+    error ModuleTxFailed();
+
+    /**
+     * @notice Generates the EIP-712 domain separator for this contract
+     * @dev The domain separator includes the contract name, version, chain ID, and address
+     * @return The EIP-712 domain separator hash
+     */
+    function getDomainSeparator() private view returns (bytes32) {
+        return keccak256(
+            abi.encode(
+                keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"),
+                keccak256(bytes("ScheduledTxModule")),
+                keccak256(bytes("1")),
+                block.chainid,
+                address(this)
+            )
+        );
+    }
+
+    /**
+     * @notice Executes a scheduled transaction on behalf of a Safe
+     * @dev Validates timing constraints, signature, and marks nonce as used before execution
+     * @param safe The address of the Safe contract that will execute the transaction
+     * @param to The destination address for the transaction
+     * @param value The amount of ETH to send with the transaction (in wei)
+     * @param data The calldata to send with the transaction
+     * @param nonce A unique identifier for this scheduled transaction (prevents replay attacks)
+     * @param executeAfter The earliest timestamp when this transaction can be executed
+     * @param deadline The latest timestamp when this transaction can be executed
+     * @param signatures EIP-712 signature(s) from Safe owner(s) authorizing this transaction
+     * @custom:reverts TooEarly if current timestamp is before executeAfter
+     * @custom:reverts TransactionExpired if current timestamp is after deadline
+     * @custom:reverts AlreadyExecuted if this nonce has already been used for this Safe
+     * @custom:reverts ModuleTxFailed if the Safe transaction execution fails
+     */
+    function execute(
+        address safe,
+        address to,
+        uint256 value,
+        bytes memory data,
+        uint256 nonce,
+        uint64 executeAfter,
+        uint64 deadline,
+        bytes memory signatures
+    ) external {
+        require(block.timestamp <= deadline, TransactionExpired());
+        require(block.timestamp >= executeAfter, TooEarly());
+        require(nonces[safe][nonce] == false, AlreadyExecuted());
+
+        nonces[safe][nonce] = true;
+
+        bytes32 signatureData = keccak256(abi.encode(PERMIT_TYPEHASH, to, value, data, nonce, executeAfter, deadline));
+
+        bytes32 hash = keccak256(abi.encodePacked("\x19\x01", getDomainSeparator(), signatureData));
+
+        ISafe(payable(safe)).checkSignatures(hash, abi.encodePacked(signatureData), signatures);
+
+        require(ISafe(payable(safe)).execTransactionFromModule(to, value, data, 0), ModuleTxFailed());
+    }
+}

remappings.txt

@@ -0,0 +1,9 @@
+// SPDX-License-Identifier: UNLICENSED
+pragma solidity ^0.8.13;
+
+interface ISafe {
+    function checkSignatures(bytes32 dataHash, bytes memory data, bytes memory signatures) external;
+    function execTransactionFromModule(address to, uint256 value, bytes memory data, uint8 operation)
+        external
+        returns (bool success);
+}