diff --git a/AGENTS.md b/AGENTS.md
index 0057a7d..76854b9 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -107,7 +107,7 @@ function _onlyComplianceManager() internal virtual override onlyOwner {}
 Rule validation uses a two-layer override:
 
 1. **`RulesManagementModule._checkRule()`** — checks zero address + duplicates
-2. **`RuleEngineBase._checkRule()`** — calls `super._checkRule()` then validates ERC-165 interface
+2. **`RuleEngineBase._checkRule()`** — calls `RulesManagementModule._checkRule()` then validates ERC-165 interface
 
 ```solidity
 // RulesManagementModule (generic checks):
@@ -118,7 +118,7 @@ function _checkRule(address rule_) internal view virtual {
 
 // RuleEngineBase (adds ERC-165 check):
 function _checkRule(address rule_) internal view virtual override {
-    super._checkRule(rule_);
+    RulesManagementModule._checkRule(rule_);
     if (!ERC165Checker.supportsInterface(rule_, RuleInterfaceId.IRULE_INTERFACE_ID))
         revert RuleEngine_RuleInvalidInterface();
 }
@@ -233,6 +233,7 @@ Key points:
 - NatSpec comments on all public/external functions
 - Function ordering: constructor, receive, fallback, external, public, internal, private (view/pure last within each group)
 - Function declaration order: visibility, mutability, virtual, override, custom modifiers
+- In `src/`, avoid `super` calls and prefer explicit parent-contract calls (e.g., `AccessControl.grantRole(...)`) for readability and deterministic inheritance behavior.
 - Section headers: `/* ============ SECTION ============ */`
 - Run `forge fmt` before committing
 
diff --git a/CHANGELOG.md b/CHANGELOG.md
index ac5a2bd..142f30e 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -45,10 +45,66 @@ forge lint
   - Update surya doc by running the 3 scripts in [./doc/script](./doc/script)
   - Update changelog
 
+### v3.0.0-rc3 - 2026-05-06
 
+### Security
+
+- Enforce an on-chain maximum rule count in `RulesManagementModule` to mitigate transfer liveness risk from unbounded per-transfer rule iteration (Nethermind AuditAgent finding 3 follow-up).
+- Add cap checks in both `addRule` and `setRules`, reverting with `RuleEngine_RulesManagementModule_MaxRulesExceeded(uint256)` when exceeded.
+- Enforce on-chain privilege-separation for rule accounts:
+  - `RuleEngine.grantRole` now reverts for any role when `account` is currently in the rules set.
+  - `RuleEngineOwnable` and `RuleEngineOwnable2Step` now reject `transferOwnership` targets that are currently in the rules set.
+- Add T-REX compatibility path for compliance binding operations: `bindToken(token)` / `unbindToken(token)` now allow token self-calls (`msg.sender == token`) in addition to manager/owner authorization.
+
+### Added
+
+- Add `maxRules()` and `setMaxRules(uint256)` to `IRulesManagementModule`.
+- Add `DEFAULT_MAX_RULES = 10` and initialize module state with this default cap.
+- Add `SetMaxRules(uint256)` event emitted on cap updates.
+- Add interface ID libraries:
+  - `ERC1404InterfaceId` for `IERC1404` (`0xab84a5c8`)
+  - `OwnableInterfaceId` for `IERC173` (`0x7f5828d0`)
+  - `Ownable2StepInterfaceId` for Ownable2Step-specific methods (`0x9ab669ef`)
+- Add dedicated access-control hook for cap governance:
+  - `RuleEngine`: `DEFAULT_ADMIN_ROLE` can update cap.
+  - `RuleEngineOwnable` and `RuleEngineOwnable2Step`: owner can update cap.
+- Add `RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges()` error for rule-account privilege/ownership target protection.
+
+### Changed
+
+- Ownable variants now rely on OpenZeppelin `ERC165` inheritance in `RuleEngineOwnableShared` for base ERC-165 advertisement and extend it with RuleEngine + ERC-173 interface IDs.
+- `supportsInterface` advertisement now explicitly includes `IERC1404` in addition to `IERC1404Extend`.
+- `RuleEngineOwnable2Step.supportsInterface` now advertises the Ownable2Step-specific interface ID in addition to inherited RuleEngine/Ownable interfaces.
+
+### Testing
+
+- Add tests for default cap value, cap enforcement for `addRule` and `setRules`, and access control on `setMaxRules`.
+- Add event-emission coverage for `SetMaxRules`.
+- Extend interface advertisement tests to validate interface IDs through both:
+  - library constants
+  - `type(<mock interface>).interfaceId`
+  for `IERC1404` and `IERC173`.
+- Extend `RuleEngineOwnable2Step` interface support tests to assert:
+  - library constant support (`Ownable2StepInterfaceId.IOWNABLE2STEP_INTERFACE_ID`)
+  - mock interface support (`type(IOwnable2StepSubset).interfaceId`).
+- Add RBAC tests ensuring roles cannot be granted to rule accounts.
+- Add ownable and ownable2step tests ensuring ownership cannot be transferred to rule accounts.
+- Add compliance-binding authorization tests across RBAC/ownable/ownable2step variants for:
+  - token self-bind
+  - token self-unbind
+  - cross-token bind/unbind denial
+
+### Documentation
+
+- Clarify README multi-token guidance with explicit data-plane vs control-plane wording:
+  - data-plane = runtime compliance callbacks (`transferred`, `created`, `destroyed`)
+  - control-plane = governance/configuration actions (`bindToken`, `unbindToken`, role grants, ownership changes, and rule management)
+- Document that token-privilege separation in multi-token setups is an operational recommendation (not enforced on-chain) to preserve integrator flexibility for token-driven control-plane extensions.
 
 ### v3.0.0-rc2 - 2026-04-14
 
+Commit: `ec4a24a96ca30e2ef8f79a06e49846a431e9b4b1`
+
 ### Dependencies
 
 - Update CMTAT submodule to [v3.2.0](https://github.com/CMTA/CMTAT/releases/tag/v3.2.0).
diff --git a/CLAUDE.md b/CLAUDE.md
index 0057a7d..76854b9 100644
--- a/CLAUDE.md
+++ b/CLAUDE.md
@@ -107,7 +107,7 @@ function _onlyComplianceManager() internal virtual override onlyOwner {}
 Rule validation uses a two-layer override:
 
 1. **`RulesManagementModule._checkRule()`** — checks zero address + duplicates
-2. **`RuleEngineBase._checkRule()`** — calls `super._checkRule()` then validates ERC-165 interface
+2. **`RuleEngineBase._checkRule()`** — calls `RulesManagementModule._checkRule()` then validates ERC-165 interface
 
 ```solidity
 // RulesManagementModule (generic checks):
@@ -118,7 +118,7 @@ function _checkRule(address rule_) internal view virtual {
 
 // RuleEngineBase (adds ERC-165 check):
 function _checkRule(address rule_) internal view virtual override {
-    super._checkRule(rule_);
+    RulesManagementModule._checkRule(rule_);
     if (!ERC165Checker.supportsInterface(rule_, RuleInterfaceId.IRULE_INTERFACE_ID))
         revert RuleEngine_RuleInvalidInterface();
 }
@@ -233,6 +233,7 @@ Key points:
 - NatSpec comments on all public/external functions
 - Function ordering: constructor, receive, fallback, external, public, internal, private (view/pure last within each group)
 - Function declaration order: visibility, mutability, virtual, override, custom modifiers
+- In `src/`, avoid `super` calls and prefer explicit parent-contract calls (e.g., `AccessControl.grantRole(...)`) for readability and deterministic inheritance behavior.
 - Section headers: `/* ============ SECTION ============ */`
 - Run `forge fmt` before committing
 
diff --git a/README.md b/README.md
index 186cca7..38d8b8a 100644
--- a/README.md
+++ b/README.md
@@ -67,7 +67,7 @@ This diagram illustrates how a transfer with a CMTAT or ERC-3643 token with a Ru
 2. The transfer function inside the token calls the ERC-3643 function `transferred` from the RuleEngine with the following parameters inside: `from, to, value`.
 3. The Rule Engine calls each rule separately. If the transfer is not authorized by the rule, the rule must directly revert (no return value).
 
-> **Warning:** The RuleEngine iterates over all configured rules on every transfer (and on every call to `detectTransferRestriction`, `canTransfer`, etc.). Adding a large number of rules increases gas consumption for each transfer and may eventually exceed the block gas limit, effectively preventing any transfer from succeeding. There is no hard on-chain maximum rule count; administrators are responsible for sizing the rule set for their target blockchain and should keep it small. A misconfigured or gas-heavy rule can also impact all transfers.
+> **Warning:** The RuleEngine iterates over all configured rules on every transfer (and on every call to `detectTransferRestriction`, `canTransfer`, etc.). Adding a large number of rules increases gas consumption for each transfer and may eventually exceed the block gas limit, effectively preventing any transfer from succeeding. An on-chain rule cap is enforced (`maxRules`), set to `10` by default, and can be changed by governance (`DEFAULT_ADMIN_ROLE` on `RuleEngine`, owner on ownable variants). A misconfigured or gas-heavy rule can still impact all transfers.
 
 > **Warning (restriction code conventions):** Rule implementations should use unique ERC-1404 restriction codes across the rule set. If several rules intentionally share the same restriction code, they should return the exact same `messageForTransferRestriction` text for that code to avoid inconsistent operator/user feedback.
 
@@ -77,6 +77,7 @@ This diagram illustrates how a transfer with a CMTAT or ERC-3643 token with a Ru
 
 | RuleEngine version                                           | Compatible Versions                                          |
 | ------------------------------------------------------------ | ------------------------------------------------------------ |
+| **v3.0.0-rc3**                                               | CMTAT ≥ v3.0.0<br />CMTAT target version: [v3.2.0](https://github.com/CMTA/CMTAT/releases/tag/v3.2.0) |
 | **v3.0.0-rc2**                                               | CMTAT ≥ v3.0.0<br />CMTAT target version: [v3.2.0](https://github.com/CMTA/CMTAT/releases/tag/v3.2.0) |
 | **v3.0.0-rc1**                                               | CMTAT ≥ v3.0.0<br />CMTAT target version: [v3.2.0](https://github.com/CMTA/CMTAT/releases/tag/v3.2.0) |
 | **v3.0.0-rc0**                                               | CMTAT ≥ v3.0.0<br />                                         |
@@ -163,7 +164,7 @@ The `RuleEngine` base interface is defined in the CMTAT repository.
 
 ![cmtat_surya_inheritance_IRuleEngine.sol](./doc/schema/cmtat_surya_inheritance_IRuleEngine.sol.png)
 
-It inherits from several others interfaces: `IERC1404Extend`, `IERC7551Compliance`, `IERC3643ComplianceContract`
+It inherits from several others interfaces: `IERC1404`, `IERC1404Extend`, `IERC7551Compliance`, `IERC3643ComplianceContract`
 
 ```solidity
 // IRuleEngine
@@ -261,6 +262,28 @@ The `RuleEngineOwnable2Step` contract uses OpenZeppelin's `Ownable2Step`, which
 
 See also [docs.openzeppelin.com - Ownable2Step](https://docs.openzeppelin.com/contracts/5.x/api/access#Ownable2Step)
 
+### ERC-165 Support by Deployment Version
+
+The table below summarizes which ERC-165 interfaces are advertised by each deployment version via `supportsInterface(bytes4)`.
+
+| Interface | Interface ID | RuleEngine (RBAC deployment) | RuleEngineOwnable deployment | RuleEngineOwnable2Step deployment |
+| --- | --- | --- | --- | --- |
+| `IERC165` | `0x01ffc9a7` | Yes | Yes | Yes |
+| `IRuleEngine` | `0x20c49ce7` | Yes | Yes | Yes |
+| `IERC1404` | `0xab84a5c8` | Yes | Yes | Yes |
+| `IERC1404Extend` | `0x78a8de7d` | Yes | Yes | Yes |
+| `IERC3643Compliance` | `0x3144991c` | Yes | Yes | Yes |
+| `IERC7551Compliance` (subset) | `0x7157797f` | Yes | Yes | Yes |
+| `IERC173` | `0x7f5828d0` | No | Yes | Yes |
+| `Ownable2Step` specific (`pendingOwner()`, `acceptOwnership()`) | `0x9ab669ef` | No | No | Yes |
+| `IAccessControl` | `0x7965db0b` | Yes | No | No |
+| `IAccessControlEnumerable` | `0x5a05180f` | Yes | No | No |
+
+Notes:
+- `RuleEngine` advertises OpenZeppelin RBAC interfaces because it inherits `AccessControlEnumerable`.
+- `RuleEngineOwnable` / `RuleEngineOwnable2Step` intentionally do not advertise `IAccessControl`.
+- `Ownable2Step` specific interface ID is defined in `Ownable2StepInterfaceId` and includes only `pendingOwner()` and `acceptOwnership()`.
+
 #### Role list (RuleEngine only)
 
 Here is the list of roles and their 32 bytes identifier for the `RuleEngine` contract.
@@ -271,7 +294,7 @@ It is set in the constructor when the contract is deployed.
 
 > Note: For `RuleEngineOwnable` and `RuleEngineOwnable2Step`, all protected functions are controlled by the single `owner` address instead of roles.
 
-> **Warning (role assignment):** Rule contracts should be treated as trusted logic components, but they should not be granted `RULES_MANAGEMENT_ROLE` (or admin privileges). Keep rule-management roles on dedicated operator/admin accounts only.
+> **Warning (role assignment):** Rule contracts should be treated as trusted logic components and kept separate from governance/operator identities. The protocol now enforces key protections on-chain: in RBAC deployments, `grantRole` reverts if the target account is in the rule set; in ownable deployments, `transferOwnership` reverts if the new owner is in the rule set. In multi-token deployments, do not grant any governance/operator privileges to token contract addresses (bound tokens should remain data-plane callers only, meaning runtime compliance callbacks such as `transferred`, `created`, and `destroyed`). This token-privilege separation is intentionally documented as an operational constraint (not enforced on-chain) to preserve flexibility for integrators who explicitly want to extend their token and route selected RuleEngine control-plane actions through token logic (`control-plane` here means configuration/governance actions such as `bindToken`, `unbindToken`, role grants, ownership changes, and rule management).
 
 |                         | Defined in                       | 32 bytes identifier                                          |
 | ----------------------- | -------------------------------- | ------------------------------------------------------------ |
@@ -362,8 +385,9 @@ RuleEngineOwnable2Step
 **Key differences from RuleEngineOwnable:**
 - Uses a two-step ownership transfer flow: `transferOwnership()` then `acceptOwnership()`
 - The current owner retains privileges until the pending owner accepts ownership
-- Reuses `RuleEngineOwnableShared` for constructor, ERC-165, and ERC-2771 behavior
+- Reuses `RuleEngineOwnableShared` for constructor, ERC-165 (via OpenZeppelin `ERC165`), and ERC-2771 behavior
 - Implements ERC-173 interface (`supportsInterface(0x7f5828d0)` returns `true`)
+- Implements Ownable2Step-specific ERC-165 interface (`supportsInterface(0x9ab669ef)` returns `true`), covering `pendingOwner()` and `acceptOwnership()`
 
 
 
@@ -1307,9 +1331,9 @@ The final report is available in [ABDK_CMTA_CMTATRuleEngine_v_1_0.pdf](https://g
 |---|----------|---------|--------|
 | 1 | Medium | Cross-token rule state pollution in multi-tenant deployments | NatSpec + README warnings. Interface fix deferred (requires CMTAT coordination). |
 | 2 | Low | `RuleEngineOwnable` misreports `IAccessControl` via ERC-165 | Fixed: explicit interface whitelist + negative test added. |
-| 3 | Info | Unbounded rules loop — potential permanent DoS | NatSpec + README operator warnings (no hard cap by design). |
+| 3 | Info | Unbounded rules loop — potential permanent DoS | Fixed in `v3.0.0-rc3`: on-chain configurable cap (`maxRules`) with default `10`, enforced in `addRule` and `setRules`. |
 | 4 | Info | Restriction code and message can come from different rules | Convention documented in NatSpec and README (no logic change by design). |
-| 5 | Info | Re-entrant rule can modify rule set during `transferred()` | NatSpec + README warning — rules must not hold `RULES_MANAGEMENT_ROLE`. |
+| 5 | Info | Re-entrant rule can modify rule set during `transferred()` | Fixed in `v3.0.0-rc3`: rule accounts cannot receive roles in RBAC `RuleEngine`; ownable variants reject ownership transfer to rule accounts. |
 | 6 | Info | Missing ERC-3643 and IERC7551Compliance interface IDs | Fixed: both IDs added to `supportsInterface` in both contracts, with tests. |
 | 7 | Best Practices | `setRules` does not allow an empty array | NatSpec clarification added (behavior unchanged by design). |
 
@@ -1325,12 +1349,14 @@ Here is the list of report performed with [Slither](https://github.com/crytic/sl
 slither .  --checklist --filter-paths "openzeppelin-contracts|test|CMTAT|forge-std|mocks" > slither-report.md
 ```
 
-2 finding categories — 0 High · 0 Medium · 10 Low · 2 Informational
+4 finding categories — 0 High · 0 Medium · 10 Low · 4 Informational
 
 | ID | Detector | Impact | Instances | Assessment |
 |----|----------|--------|-----------|------------|
 | 0–9 | `calls-loop` | Low | 10 | Accepted by design — fan-out to rule contracts is the core architecture |
-| 10–11 | `unindexed-event-address` | Informational | 2 | Accepted — adding `indexed` to `TokenBound`/`TokenUnbound` is interface-breaking |
+| 10 | `dead-code` | Informational | 1 | Accepted / no action — `_msgData` override is required by inheritance/context pattern |
+| 11 | `naming-convention` | Informational | 1 | Ignored — finding is in external CMTAT dependency code |
+| 12–13 | `unindexed-event-address` | Informational | 2 | Deferred — adding `indexed` to `TokenBound`/`TokenUnbound` is interface-breaking |
 
 #### Aderyn
 
@@ -1344,19 +1370,20 @@ aderyn -x mocks --output aderyn-report.md
 | ------- | ------ | ---------- |
 | v3.0.0-rc2 | [aderyn-report.md](./doc/security/audits/tools/aderyn-report.md) | [aderyn-report-feedback.md](./doc/security/audits/tools/aderyn-report-feedback.md) |
 
-Report scope: 14 Solidity files, 425 nSLOC.
+Report scope: 18 Solidity files, 542 nSLOC.
 
-0 High · 7 Low
+0 High · 8 Low
 
 | ID | Finding | Instances | Assessment |
 |----|---------|-----------|------------|
-| L-1 | Centralization Risk | 6 | Accepted by design — privileged compliance tool |
-| L-2 | Unspecific Solidity Pragma | 12 | Accepted by design — intentional for library reusability |
-| L-3 | PUSH0 Opcode | 14 | Not applicable — project targets Prague EVM |
-| L-4 | Empty Block | 4 | Accepted by design — access-control hook pattern |
-| L-5 | Loop Contains `require`/`revert` | 1 | Accepted by design — `setRules` is an atomic batch operation |
-| L-6 | Costly Operations Inside Loop | 1 | Accepted — unavoidable `SSTORE` in `setRules` |
-| L-7 | Unchecked Return | 1 | Accepted — `_grantRole` return is irrelevant in constructor |
+| L-1 | Centralization Risk | 14 | Accepted by design — privileged compliance tool |
+| L-2 | Unspecific Solidity Pragma | 14 | Accepted by design — intentional for library reusability |
+| L-3 | PUSH0 Opcode | 18 | Not applicable — project targets Prague EVM |
+| L-4 | Modifier Invoked Only Once | 1 | Accepted by design — keeps hook-style access-control abstraction |
+| L-5 | Empty Block | 9 | Accepted by design — access-control hook pattern |
+| L-6 | Loop Contains `require`/`revert` | 1 | Accepted by design — `setRules` is an atomic batch operation |
+| L-7 | Costly Operations Inside Loop | 1 | Accepted — unavoidable `SSTORE` in `setRules` |
+| L-8 | Unchecked Return | 1 | Accepted — `_grantRole` return is irrelevant in constructor |
 
 ## Documentation
 
diff --git a/doc/ERCSpecification/erc-1404.md b/doc/ERCSpecification/erc-1404.md
new file mode 100644
index 0000000..af77c59
--- /dev/null
+++ b/doc/ERCSpecification/erc-1404.md
@@ -0,0 +1,83 @@
+|eip         |title  | authors| status | discussions-to | type | category | created |
+|---------|----|---------|-------|----------------|-----|----------|---------|
+| 1404 | Simple Restricted Token Standard|Ron Gierlach <@rongierlach>, James Poole <@pooleja>, Mason Borda <@masonicgit>, Lawson Baker <@lwsnbaker> | Draft | https://github.com/simple-restricted-token/simple-restricted-token/issues | Standards | ERC | 2018-07-27 |
+
+# Simple Restricted Token Standard
+
+## Simple Summary
+
+A simple and interoperable standard for issuing tokens with transfer restrictions. The following draws on input from top issuers, law firms, relevant US regulatory bodies, and exchanges.  
+
+## Abstract
+
+Current ERC token standards have provided the community with a platform on which to develop a decentralized economy that is focused on building Ethereum applications for the real world. As these applications mature and face consumer adoption, they begin to interface with corporate governance requirements as well as regulations. They must not only be able to meet corporate and regulatory requirements but must also be able to integrate with technology platforms underpinning their associated businesses. What follows is a simple and extendable standard that seeks to ease the burden of integration for wallets, exchanges, and issuers.
+
+## Motivation
+
+Token issuers need a way to restrict transfers of ERC-20 tokens to be compliant with securities laws and other contractual obligations. Current implementations do not address these requirements. 
+
+A few emergent examples:
+
+- Enforcing Token Lock-Up Periods
+- Enforcing Passed AML/KYC Checks
+- Private Real-Estate Investment Trusts
+- Delaware General Corporations Law Shares
+
+Furthermore, standards adoption amongst token issuers has the potential to evolve into a dynamic and interoperable landscape of automated compliance.
+
+The following design gives greater freedom / upgradability to token issuers and simultaneously decreases the burden of integration for developers and exchanges.
+
+Additionally, we see fit to provide a pattern by which human-readable messages may be returned when token transfers are reverted. Transparency as to _why_ a token's transfer was reverted is of equal importance to the successful enforcement of the transfer restriction itself.
+
+A widely adopted standard for detecting restrictions and messaging errors within token transfers will highly convenience the exchanges, wallets, and issuers of the future.
+
+## Specification
+
+The ERC-20 token provides the following basic features:
+```solidity
+contract ERC20 {
+  function totalSupply() public view returns (uint256);
+  function balanceOf(address who) public view returns (uint256);
+  function transfer(address to, uint256 value) public returns (bool);
+  function allowance(address owner, address spender) public view returns (uint256);
+  function transferFrom(address from, address to, uint256 value) public returns (bool);
+  function approve(address spender, uint256 value) public returns (bool);
+  event Approval(address indexed owner, address indexed spender, uint256 value);
+  event Transfer(address indexed from, address indexed to, uint256 value);
+}
+```
+The ERC-1404 standard builds on ERC-20's interface, adding two functions:
+```solidity
+contract ERC1404 is ERC20 {
+  function detectTransferRestriction (address from, address to, uint256 value) public view returns (uint8);
+  function messageForTransferRestriction (uint8 restrictionCode) public view returns (string);
+}
+```
+
+The logic of `detectTransferRestriction` and `messageForTransferRestriction` are left up to the issuer.
+
+The only requirement is that `detectTransferRestriction` must be evaluated inside a token's `transfer` and `transferFrom` methods.
+
+If, inside these transfer methods, `detectTransferRestriction` returns a value other than `0`, the transaction should be reverted.
+
+## Rationale
+
+The standard proposes two functions on top of the ERC-20 standard. Let's discuss the rationale for each.
+
+1. `detectTransferRestriction` - This function is where an issuer enforces the restriction logic of their token transfers. Some examples of this might include, checking if the token recipient is whitelisted, checking if a sender's tokens are frozen in a lock-up period, etc. Because implementation is up to the issuer, this function serves solely to standardize _where_ execution of such logic should be initiated. Additionally, 3rd parties may publicly call this function to check the expected outcome of a transfer. Because this function returns a `uint8` code rather than a boolean or just reverting, it allows the function caller to know the reason why a transfer might fail and report this to relevant counterparties.
+2. `messageForTransferRestriction` - This function is effectively an accessor for the "message", a human-readable explanation as to _why_ a transaction is restricted. By standardizing message look-ups, we empower user interface builders to effectively report errors to users.
+
+## Backwards Compatibility
+
+By design ERC-1404 is fully backwards compatible with ERC-20.  
+Some examples of how it may be integrated with common types of restricted tokens may be found [here](https://github.com/simple-restricted-token/simple-restricted-token-standard#readme).
+
+## Test Cases & Implementation
+
+See the reference implementation and tests [here](https://github.com/simple-restricted-token/reference-implementation#readme).  
+See some examples of common usage patterns for ERC-1404 [here](https://github.com/simple-restricted-token/simple-restricted-token-standard#readme).
+
+## Copyright
+
+Copyright and related rights waived via [CC0](https://creativecommons.org/publicdomain/zero/1.0/).
+
diff --git a/doc/ERCSpecification/erc-165.md b/doc/ERCSpecification/erc-165.md
new file mode 100644
index 0000000..77e6cbc
--- /dev/null
+++ b/doc/ERCSpecification/erc-165.md
@@ -0,0 +1,235 @@
+---
+eip: 165
+title: Standard Interface Detection
+author: Christian Reitwießner <chris@ethereum.org>, Nick Johnson <nick@ethereum.org>, Fabian Vogelsteller <fabian@lukso.network>, Jordi Baylina <jordi@baylina.cat>, Konrad Feldmeier <konrad.feldmeier@brainbot.com>, William Entriken <github.com@phor.net>
+type: Standards Track
+category: ERC
+status: Final
+created: 2018-01-23
+requires: 214
+---
+
+## Simple Summary
+
+Creates a standard method to publish and detect what interfaces a smart contract implements.
+
+## Abstract
+
+Herein, we standardize the following:
+
+1. How interfaces are identified
+2. How a contract will publish the interfaces it implements
+3. How to detect if a contract implements ERC-165
+4. How to detect if a contract implements any given interface
+
+## Motivation
+
+For some "standard interfaces" like [the ERC-20 token interface](./eip-20.md), it is sometimes useful to query whether a contract supports the interface and if yes, which version of the interface, in order to adapt the way in which the contract is to be interacted with. Specifically for ERC-20, a version identifier has already been proposed. This proposal standardizes the concept of interfaces and standardizes the identification (naming) of interfaces.
+
+## Specification
+
+### How Interfaces are Identified
+
+For this standard, an *interface* is a set of [function selectors as defined by the Ethereum ABI](https://solidity.readthedocs.io/en/develop/abi-spec.html#function-selector). This a subset of [Solidity's concept of interfaces](https://solidity.readthedocs.io/en/develop/abi-spec.html) and the  `interface` keyword definition which also defines return types, mutability and events.
+
+We define the interface identifier as the XOR of all function selectors in the interface. This code example shows how to calculate an interface identifier:
+
+```solidity
+pragma solidity ^0.4.20;
+
+interface Solidity101 {
+    function hello() external pure;
+    function world(int) external pure;
+}
+
+contract Selector {
+    function calculateSelector() public pure returns (bytes4) {
+        Solidity101 i;
+        return i.hello.selector ^ i.world.selector;
+    }
+}
+```
+
+Note: interfaces do not permit optional functions, therefore, the interface identity will not include them.
+
+### How a Contract will Publish the Interfaces it Implements
+
+A contract that is compliant with ERC-165 shall implement the following interface (referred as `ERC165.sol`):
+
+```solidity
+pragma solidity ^0.4.20;
+
+interface ERC165 {
+    /// @notice Query if a contract implements an interface
+    /// @param interfaceID The interface identifier, as specified in ERC-165
+    /// @dev Interface identification is specified in ERC-165. This function
+    ///  uses less than 30,000 gas.
+    /// @return `true` if the contract implements `interfaceID` and
+    ///  `interfaceID` is not 0xffffffff, `false` otherwise
+    function supportsInterface(bytes4 interfaceID) external view returns (bool);
+}
+```
+
+The interface identifier for this interface is `0x01ffc9a7`. You can calculate this by running `bytes4(keccak256('supportsInterface(bytes4)'));` or using the `Selector` contract above.
+
+Therefore the implementing contract will have a `supportsInterface` function that returns:
+
+- `true` when `interfaceID` is `0x01ffc9a7` (EIP165 interface)
+- `false` when `interfaceID` is `0xffffffff`
+- `true` for any other `interfaceID` this contract implements
+- `false` for any other `interfaceID`
+
+This function must return a bool and use at most 30,000 gas.
+
+Implementation note, there are several logical ways to implement this function. Please see the example implementations and the discussion on gas usage.
+
+### How to Detect if a Contract Implements ERC-165
+
+1. The source contract makes a `STATICCALL` to the destination address with input data: `0x01ffc9a701ffc9a700000000000000000000000000000000000000000000000000000000` and gas 30,000. This corresponds to `contract.supportsInterface(0x01ffc9a7)`.
+2. If the call fails or return false, the destination contract does not implement ERC-165.
+3. If the call returns true, a second call is made with input data `0x01ffc9a7ffffffff00000000000000000000000000000000000000000000000000000000`.
+4. If the second call fails or returns true, the destination contract does not implement ERC-165.
+5. Otherwise it implements ERC-165.
+
+### How to Detect if a Contract Implements any Given Interface
+
+1. If you are not sure if the contract implements ERC-165, use the above procedure to confirm.
+2. If it does not implement ERC-165, then you will have to see what methods it uses the old-fashioned way.
+3. If it implements ERC-165 then just call `supportsInterface(interfaceID)` to determine if it implements an interface you can use.
+
+## Rationale
+
+We tried to keep this specification as simple as possible. This implementation is also compatible with the current Solidity version.
+
+## Backwards Compatibility
+
+The mechanism described above (with `0xffffffff`) should work with most of the contracts previous to this standard to determine that they do not implement ERC-165.
+
+Also [the ENS](./eip-137.md) already implements this EIP.
+
+## Test Cases
+
+Following is a contract that detects which interfaces other contracts implement. From @fulldecent and @jbaylina.
+
+```solidity
+pragma solidity ^0.4.20;
+
+contract ERC165Query {
+    bytes4 constant InvalidID = 0xffffffff;
+    bytes4 constant ERC165ID = 0x01ffc9a7;
+
+    function doesContractImplementInterface(address _contract, bytes4 _interfaceId) external view returns (bool) {
+        uint256 success;
+        uint256 result;
+
+        (success, result) = noThrowCall(_contract, ERC165ID);
+        if ((success==0)||(result==0)) {
+            return false;
+        }
+
+        (success, result) = noThrowCall(_contract, InvalidID);
+        if ((success==0)||(result!=0)) {
+            return false;
+        }
+
+        (success, result) = noThrowCall(_contract, _interfaceId);
+        if ((success==1)&&(result==1)) {
+            return true;
+        }
+        return false;
+    }
+
+    function noThrowCall(address _contract, bytes4 _interfaceId) constant internal returns (uint256 success, uint256 result) {
+        bytes4 erc165ID = ERC165ID;
+
+        assembly {
+                let x := mload(0x40)               // Find empty storage location using "free memory pointer"
+                mstore(x, erc165ID)                // Place signature at beginning of empty storage
+                mstore(add(x, 0x04), _interfaceId) // Place first argument directly next to signature
+
+                success := staticcall(
+                                    30000,         // 30k gas
+                                    _contract,     // To addr
+                                    x,             // Inputs are stored at location x
+                                    0x24,          // Inputs are 36 bytes long
+                                    x,             // Store output over input (saves space)
+                                    0x20)          // Outputs are 32 bytes long
+
+                result := mload(x)                 // Load the result
+        }
+    }
+}
+```
+
+## Implementation
+
+This approach uses a `view` function implementation of `supportsInterface`. The execution cost is 586 gas for any input. But contract initialization requires storing each interface (`SSTORE` is 20,000 gas). The `ERC165MappingImplementation` contract is generic and reusable.
+
+```solidity
+pragma solidity ^0.4.20;
+
+import "./ERC165.sol";
+
+contract ERC165MappingImplementation is ERC165 {
+    /// @dev You must not set element 0xffffffff to true
+    mapping(bytes4 => bool) internal supportedInterfaces;
+
+    function ERC165MappingImplementation() internal {
+        supportedInterfaces[this.supportsInterface.selector] = true;
+    }
+
+    function supportsInterface(bytes4 interfaceID) external view returns (bool) {
+        return supportedInterfaces[interfaceID];
+    }
+}
+
+interface Simpson {
+    function is2D() external returns (bool);
+    function skinColor() external returns (string);
+}
+
+contract Lisa is ERC165MappingImplementation, Simpson {
+    function Lisa() public {
+        supportedInterfaces[this.is2D.selector ^ this.skinColor.selector] = true;
+    }
+
+    function is2D() external returns (bool){}
+    function skinColor() external returns (string){}
+}
+```
+
+Following is a `pure` function implementation of `supportsInterface`. The worst-case execution cost is 236 gas, but increases linearly with a higher number of supported interfaces.
+
+```solidity
+pragma solidity ^0.4.20;
+
+import "./ERC165.sol";
+
+interface Simpson {
+    function is2D() external returns (bool);
+    function skinColor() external returns (string);
+}
+
+contract Homer is ERC165, Simpson {
+    function supportsInterface(bytes4 interfaceID) external view returns (bool) {
+        return
+          interfaceID == this.supportsInterface.selector || // ERC165
+          interfaceID == this.is2D.selector
+                         ^ this.skinColor.selector; // Simpson
+    }
+
+    function is2D() external returns (bool){}
+    function skinColor() external returns (string){}
+}
+```
+
+With three or more supported interfaces (including ERC165 itself as a required supported interface), the mapping approach (in every case) costs less gas than the pure approach (at worst case).
+
+## Version history
+* PR 1640, finalized 2019-01-23 -- This corrects the noThrowCall test case to use 36 bytes rather than the previous 32 bytes. The previous code was an error that still silently worked in Solidity 0.4.x but which was broken by new behavior introduced in Solidity 0.5.0. This change was discussed at [#1640](https://github.com/ethereum/EIPs/pull/1640).
+
+* EIP 165, finalized 2018-04-20 -- Original published version.
+
+## Copyright
+
+Copyright and related rights waived via [CC0](../LICENSE.md).
diff --git a/doc/ERCSpecification/erc-173.md b/doc/ERCSpecification/erc-173.md
new file mode 100644
index 0000000..e79033e
--- /dev/null
+++ b/doc/ERCSpecification/erc-173.md
@@ -0,0 +1,97 @@
+---
+eip: 173
+title: Contract Ownership Standard
+description: A standard interface for ownership of contracts
+author: Nick Mudge (@mudgen), Dan Finlay <dan@danfinlay.com>
+discussions-to: https://github.com/ethereum/EIPs/issues/173
+type: Standards Track
+category: ERC
+status: Final
+created: 2018-06-07
+---
+
+## Abstract
+
+This specification defines standard functions for owning or controlling a contract. 
+
+An implementation allows reading the current owner (`owner() returns (address)`) and transferring ownership (`transferOwnership(address newOwner)`) along with a standardized event for when ownership is changed (`OwnershipTransferred(address indexed previousOwner, address indexed newOwner)`).
+
+## Motivation
+
+Many smart contracts require that they be owned or controlled in some way. For example to withdraw funds or perform administrative actions. It is so common that the contract interface used to handle contract ownership should be standardized to allow compatibility with user interfaces and contracts that manage contracts.
+
+Here are some examples of kinds of contracts and applications that can benefit from this standard:
+1. Exchanges that buy/sell/auction ethereum contracts. This is only widely possible if there is a standard for getting the owner of a contract and transferring ownership.
+2. Contract wallets that hold the ownership of contracts and that can transfer the ownership of contracts.
+3. Contract registries. It makes sense for some registries to only allow the owners of contracts to add/remove their contracts. A standard must exist for these contract registries to verify that a contract is being submitted by the owner of it before accepting it.
+4. User interfaces that show and transfer ownership of contracts.
+
+## Specification
+
+Every ERC-173 compliant contract must implement the `ERC173` interface. Contracts should also implement `ERC165` for the ERC-173 interface.
+
+```solidity
+
+/// @title ERC-173 Contract Ownership Standard
+///  Note: the ERC-165 identifier for this interface is 0x7f5828d0
+interface ERC173 /* is ERC165 */ {
+    /// @dev This emits when ownership of a contract changes.    
+    event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
+
+    /// @notice Get the address of the owner    
+    /// @return The address of the owner.
+    function owner() view external returns(address);
+	
+    /// @notice Set the address of the new owner of the contract
+    /// @dev Set _newOwner to address(0) to renounce any ownership.
+    /// @param _newOwner The address of the new owner of the contract    
+    function transferOwnership(address _newOwner) external;	
+}
+
+interface ERC165 {
+    /// @notice Query if a contract implements an interface
+    /// @param interfaceID The interface identifier, as specified in ERC-165
+    /// @dev Interface identification is specified in ERC-165. 
+    /// @return `true` if the contract implements `interfaceID` and
+    ///  `interfaceID` is not 0xffffffff, `false` otherwise
+    function supportsInterface(bytes4 interfaceID) external view returns (bool);
+}
+```
+
+The `owner()` function may be implemented as `pure` or `view`.
+
+The `transferOwnership(address _newOwner)` function may be implemented as `public` or `external`.
+
+To renounce any ownership of a contract set `_newOwner` to the zero address: `transferOwnership(address(0))`. If this is done then a contract is no longer owned by anybody.
+
+The OwnershipTransferred event should be emitted when a contract is created.
+
+## Rationale
+
+Key factors influencing the standard: 
+- Keeping the number of functions in the interface to a minimum to prevent contract bloat.
+- Backwards compatibility with existing contracts.
+- Simplicity
+- Gas efficient
+
+Several ownership schemes were considered. The scheme chosen in this standard was chosen because of its simplicity, low gas cost and backwards compatibility with existing contracts.
+
+Here are other schemes that were considered:
+1. **Associating an Ethereum Name Service (ENS) domain name with a contract.** A contract's `owner()` function could look up the owner address of a particular ENS name and use that as the owning address of the contract. Using this scheme a contract could be transferred by transferring the ownership of the ENS domain name to a different address. Short comings to this approach are that it is not backwards compatible with existing contracts and requires gas to make external calls to ENS related contracts to get the owner address.
+2. **Associating an ERC721-based non-fungible token (NFT) with a contract.** Ownership of a contract could be tied to the ownership of an NFT. The benefit of this approach is that the existing ERC721-based infrastructure could be used to sell/buy/auction contracts. Short comings to this approach are additional complexity and infrastructure required. A contract could be associated with a particular NFT but the NFT would not track that it had ownership of a contract unless it was programmed to track contracts. In addition handling ownership of contracts this way is not backwards compatible.
+
+This standard does not exclude the above ownership schemes or other schemes from also being implemented in the same contract. For example a contract could implement this standard and also implement the other schemes so that ownership could be managed and transferred in multiple ways. This standard does provide a simple ownership scheme that is backwards compatible, is light-weight and simple to implement, and can be widely adopted and depended on.
+
+This standard can be (and has been) extended by other standards to add additional ownership functionality. 
+
+## Security Considerations
+
+If the address returned by `owner()` is an externally owned account then its private key must not be lost or compromised.
+
+## Backwards Compatibility
+
+Many existing contracts already implement this standard.
+
+## Copyright
+
+Copyright and related rights waived via [CC0](../LICENSE.md).
diff --git a/doc/coverage/code-coverage.png b/doc/coverage/code-coverage.png
index 0686ade..84075e2 100644
Binary files a/doc/coverage/code-coverage.png and b/doc/coverage/code-coverage.png differ
diff --git a/doc/coverage/coverage/index-sort-b.html b/doc/coverage/coverage/index-sort-b.html
index 37cda05..140fc17 100644
--- a/doc/coverage/coverage/index-sort-b.html
+++ b/doc/coverage/coverage/index-sort-b.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">207</td>
+            <td class="headerCovTableEntry">212</td>
+            <td class="headerCovTableEntryHi">97.6 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">72</td>
+            <td class="headerCovTableEntry">76</td>
+            <td class="headerCovTableEntryHi">94.7 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">31</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntryMed">86.1 %</td>
+            <td class="headerCovTableEntry">37</td>
+            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntryMed">88.1 %</td>
           </tr>
           <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -84,38 +84,38 @@
     <tr>
       <td class="coverFile"><a href="src/modules/index.html">src/modules</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=95 height=10 alt="95.0%"><img src="snow.png" width=5 height=10 alt="95.0%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">79 / 79</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">25 / 25</td>
-      <td class="coverPerMed">81.5&nbsp;%</td>
-      <td class="coverNumMed">22 / 27</td>
+      <td class="coverPerHi">95.0&nbsp;%</td>
+      <td class="coverNumHi">95 / 100</td>
+      <td class="coverPerMed">87.5&nbsp;%</td>
+      <td class="coverNumMed">28 / 32</td>
+      <td class="coverPerMed">83.9&nbsp;%</td>
+      <td class="coverNumMed">26 / 31</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/index.html">src</a></td>
+      <td class="coverFile"><a href="src/deployment/index.html">src/deployment</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">49 / 49</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
+      <td class="coverNumHi">24 / 24</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverNumHi">5 / 5</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/deployment/index.html">src/deployment</a></td>
+      <td class="coverFile"><a href="src/index.html">src</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">63 / 63</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">15 / 15</td>
+      <td class="coverNumHi">20 / 20</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">5 / 5</td>
+      <td class="coverNumHi">6 / 6</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/index-sort-f.html b/doc/coverage/coverage/index-sort-f.html
index 4e0950c..1fedf73 100644
--- a/doc/coverage/coverage/index-sort-f.html
+++ b/doc/coverage/coverage/index-sort-f.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">207</td>
+            <td class="headerCovTableEntry">212</td>
+            <td class="headerCovTableEntryHi">97.6 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">72</td>
+            <td class="headerCovTableEntry">76</td>
+            <td class="headerCovTableEntryHi">94.7 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">31</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntryMed">86.1 %</td>
+            <td class="headerCovTableEntry">37</td>
+            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntryMed">88.1 %</td>
           </tr>
           <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -82,40 +82,40 @@
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><a href="index-sort-b.html"><img src="updown.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></a></span></td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/index.html">src</a></td>
+      <td class="coverFile"><a href="src/modules/index.html">src/modules</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=95 height=10 alt="95.0%"><img src="snow.png" width=5 height=10 alt="95.0%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverPerHi">95.0&nbsp;%</td>
+      <td class="coverNumHi">95 / 100</td>
+      <td class="coverPerMed">87.5&nbsp;%</td>
+      <td class="coverNumMed">28 / 32</td>
+      <td class="coverPerMed">83.9&nbsp;%</td>
+      <td class="coverNumMed">26 / 31</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/deployment/index.html">src/deployment</a></td>
+      <td class="coverFile"><a href="src/index.html">src</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">63 / 63</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">15 / 15</td>
+      <td class="coverNumHi">20 / 20</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">5 / 5</td>
+      <td class="coverNumHi">6 / 6</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/modules/index.html">src/modules</a></td>
+      <td class="coverFile"><a href="src/deployment/index.html">src/deployment</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">79 / 79</td>
+      <td class="coverNumHi">49 / 49</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">24 / 24</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">25 / 25</td>
-      <td class="coverPerMed">81.5&nbsp;%</td>
-      <td class="coverNumMed">22 / 27</td>
+      <td class="coverNumHi">5 / 5</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/index-sort-l.html b/doc/coverage/coverage/index-sort-l.html
index 130e77b..de8fcda 100644
--- a/doc/coverage/coverage/index-sort-l.html
+++ b/doc/coverage/coverage/index-sort-l.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">207</td>
+            <td class="headerCovTableEntry">212</td>
+            <td class="headerCovTableEntryHi">97.6 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">72</td>
+            <td class="headerCovTableEntry">76</td>
+            <td class="headerCovTableEntryHi">94.7 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">31</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntryMed">86.1 %</td>
+            <td class="headerCovTableEntry">37</td>
+            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntryMed">88.1 %</td>
           </tr>
           <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -82,16 +82,16 @@
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><a href="index-sort-b.html"><img src="updown.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></a></span></td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/index.html">src</a></td>
+      <td class="coverFile"><a href="src/modules/index.html">src/modules</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=95 height=10 alt="95.0%"><img src="snow.png" width=5 height=10 alt="95.0%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverPerHi">95.0&nbsp;%</td>
+      <td class="coverNumHi">95 / 100</td>
+      <td class="coverPerMed">87.5&nbsp;%</td>
+      <td class="coverNumMed">28 / 32</td>
+      <td class="coverPerMed">83.9&nbsp;%</td>
+      <td class="coverNumMed">26 / 31</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="src/deployment/index.html">src/deployment</a></td>
@@ -99,23 +99,23 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">49 / 49</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">15 / 15</td>
+      <td class="coverNumHi">24 / 24</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">5 / 5</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="src/modules/index.html">src/modules</a></td>
+      <td class="coverFile"><a href="src/index.html">src</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">79 / 79</td>
+      <td class="coverNumHi">63 / 63</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">20 / 20</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">25 / 25</td>
-      <td class="coverPerMed">81.5&nbsp;%</td>
-      <td class="coverNumMed">22 / 27</td>
+      <td class="coverNumHi">6 / 6</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/index.html b/doc/coverage/coverage/index.html
index 9e873ee..af90d9e 100644
--- a/doc/coverage/coverage/index.html
+++ b/doc/coverage/coverage/index.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntry">163</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">207</td>
+            <td class="headerCovTableEntry">212</td>
+            <td class="headerCovTableEntryHi">97.6 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntry">53</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">72</td>
+            <td class="headerCovTableEntry">76</td>
+            <td class="headerCovTableEntryHi">94.7 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">31</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntryMed">86.1 %</td>
+            <td class="headerCovTableEntry">37</td>
+            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntryMed">88.1 %</td>
           </tr>
           <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -87,11 +87,11 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">63 / 63</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
+      <td class="coverNumHi">20 / 20</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverNumHi">6 / 6</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="src/deployment/index.html">src/deployment</a></td>
@@ -99,23 +99,23 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">49 / 49</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">15 / 15</td>
+      <td class="coverNumHi">24 / 24</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">5 / 5</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="src/modules/index.html">src/modules</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=95 height=10 alt="95.0%"><img src="snow.png" width=5 height=10 alt="95.0%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">79 / 79</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">25 / 25</td>
-      <td class="coverPerMed">81.5&nbsp;%</td>
-      <td class="coverNumMed">22 / 27</td>
+      <td class="coverPerHi">95.0&nbsp;%</td>
+      <td class="coverNumHi">95 / 100</td>
+      <td class="coverPerMed">87.5&nbsp;%</td>
+      <td class="coverNumMed">28 / 32</td>
+      <td class="coverPerMed">83.9&nbsp;%</td>
+      <td class="coverNumMed">26 / 31</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/RuleEngineBase.sol.func-sort-c.html b/doc/coverage/coverage/src/RuleEngineBase.sol.func-sort-c.html
index 3814568..cad3862 100644
--- a/doc/coverage/coverage/src/RuleEngineBase.sol.func-sort-c.html
+++ b/doc/coverage/coverage/src/RuleEngineBase.sol.func-sort-c.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">48</td>
+            <td class="headerCovTableEntry">48</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">14</td>
+            <td class="headerCovTableEntry">14</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -69,56 +69,60 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#58">RuleEngineBase.created</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#63">RuleEngineBase.created</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#63">RuleEngineBase.destroyed</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#68">RuleEngineBase.destroyed</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#35">RuleEngineBase.transferred.0</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#40">RuleEngineBase.transferred.0</a></td>
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#89">RuleEngineBase.detectTransferRestrictionFrom</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#94">RuleEngineBase.detectTransferRestrictionFrom</a></td>
               <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#48">RuleEngineBase.transferred.1</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#53">RuleEngineBase.transferred.1</a></td>
               <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#174">RuleEngineBase._messageForTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#179">RuleEngineBase._messageForTransferRestriction</a></td>
               <td class="coverFnHi">19</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#102">RuleEngineBase.messageForTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#107">RuleEngineBase.messageForTransferRestriction</a></td>
               <td class="coverFnHi">19</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#128">RuleEngineBase.canTransferFrom</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#133">RuleEngineBase.canTransferFrom</a></td>
               <td class="coverFnHi">21</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#115">RuleEngineBase.canTransfer</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#120">RuleEngineBase.canTransfer</a></td>
               <td class="coverFnHi">25</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#76">RuleEngineBase.detectTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#81">RuleEngineBase.detectTransferRestriction</a></td>
               <td class="coverFnHi">34</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#152">RuleEngineBase._detectTransferRestrictionFrom</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#157">RuleEngineBase._detectTransferRestrictionFrom</a></td>
               <td class="coverFnHi">39</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#141">RuleEngineBase._detectTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#203">RuleEngineBase._supportsRuleEngineBaseInterface</a></td>
+              <td class="coverFnHi">46</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#146">RuleEngineBase._detectTransferRestriction</a></td>
               <td class="coverFnHi">59</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#187">RuleEngineBase._checkRule</a></td>
-              <td class="coverFnHi">217</td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#192">RuleEngineBase._checkRule</a></td>
+              <td class="coverFnHi">253</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/RuleEngineBase.sol.func.html b/doc/coverage/coverage/src/RuleEngineBase.sol.func.html
index 95e4dbb..906ea70 100644
--- a/doc/coverage/coverage/src/RuleEngineBase.sol.func.html
+++ b/doc/coverage/coverage/src/RuleEngineBase.sol.func.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">48</td>
+            <td class="headerCovTableEntry">48</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">14</td>
+            <td class="headerCovTableEntry">14</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -69,55 +69,59 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="RuleEngineBase.sol.func-sort-c.html"><img src="../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#187">RuleEngineBase._checkRule</a></td>
-              <td class="coverFnHi">217</td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#192">RuleEngineBase._checkRule</a></td>
+              <td class="coverFnHi">253</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#141">RuleEngineBase._detectTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#146">RuleEngineBase._detectTransferRestriction</a></td>
               <td class="coverFnHi">59</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#152">RuleEngineBase._detectTransferRestrictionFrom</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#157">RuleEngineBase._detectTransferRestrictionFrom</a></td>
               <td class="coverFnHi">39</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#174">RuleEngineBase._messageForTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#179">RuleEngineBase._messageForTransferRestriction</a></td>
               <td class="coverFnHi">19</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#115">RuleEngineBase.canTransfer</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#203">RuleEngineBase._supportsRuleEngineBaseInterface</a></td>
+              <td class="coverFnHi">46</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#120">RuleEngineBase.canTransfer</a></td>
               <td class="coverFnHi">25</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#128">RuleEngineBase.canTransferFrom</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#133">RuleEngineBase.canTransferFrom</a></td>
               <td class="coverFnHi">21</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#58">RuleEngineBase.created</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#63">RuleEngineBase.created</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#63">RuleEngineBase.destroyed</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#68">RuleEngineBase.destroyed</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#76">RuleEngineBase.detectTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#81">RuleEngineBase.detectTransferRestriction</a></td>
               <td class="coverFnHi">34</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#89">RuleEngineBase.detectTransferRestrictionFrom</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#94">RuleEngineBase.detectTransferRestrictionFrom</a></td>
               <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#102">RuleEngineBase.messageForTransferRestriction</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#107">RuleEngineBase.messageForTransferRestriction</a></td>
               <td class="coverFnHi">19</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#35">RuleEngineBase.transferred.0</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#40">RuleEngineBase.transferred.0</a></td>
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#48">RuleEngineBase.transferred.1</a></td>
+              <td class="coverFn"><a href="RuleEngineBase.sol.gcov.html#53">RuleEngineBase.transferred.1</a></td>
               <td class="coverFnHi">18</td>
             </tr>
   </table>
diff --git a/doc/coverage/coverage/src/RuleEngineBase.sol.gcov.html b/doc/coverage/coverage/src/RuleEngineBase.sol.gcov.html
index 9a123d7..343a1c7 100644
--- a/doc/coverage/coverage/src/RuleEngineBase.sol.gcov.html
+++ b/doc/coverage/coverage/src/RuleEngineBase.sol.gcov.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">48</td>
+            <td class="headerCovTableEntry">48</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">14</td>
+            <td class="headerCovTableEntry">14</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -74,196 +74,213 @@
 <a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
 <a name="4"><span class="lineNum">       4 </span>                :            : </a>
 <a name="5"><span class="lineNum">       5 </span>                :            : /* ==== OpenZeppelin === */</a>
-<a name="6"><span class="lineNum">       6 </span>                :            : import {ERC165Checker} from &quot;OZ/utils/introspection/ERC165Checker.sol&quot;;</a>
-<a name="7"><span class="lineNum">       7 </span>                :            : /* ==== CMTAT === */</a>
-<a name="8"><span class="lineNum">       8 </span>                :            : import {IRuleEngine, IRuleEngineERC1404} from &quot;CMTAT/interfaces/engine/IRuleEngine.sol&quot;;</a>
-<a name="9"><span class="lineNum">       9 </span>                :            : import {IERC1404, IERC1404Extend} from &quot;CMTAT/interfaces/tokenization/draft-IERC1404.sol&quot;;</a>
-<a name="10"><span class="lineNum">      10 </span>                :            : import {IERC3643ComplianceRead, IERC3643IComplianceContract} from &quot;CMTAT/interfaces/tokenization/IERC3643Partial.sol&quot;;</a>
-<a name="11"><span class="lineNum">      11 </span>                :            : import {IERC7551Compliance} from &quot;CMTAT/interfaces/tokenization/draft-IERC7551.sol&quot;;</a>
-<a name="12"><span class="lineNum">      12 </span>                :            : </a>
-<a name="13"><span class="lineNum">      13 </span>                :            : /* ==== Modules === */</a>
-<a name="14"><span class="lineNum">      14 </span>                :            : import {ERC3643ComplianceModule, IERC3643Compliance} from &quot;./modules/ERC3643ComplianceModule.sol&quot;;</a>
-<a name="15"><span class="lineNum">      15 </span>                :            : import {VersionModule} from &quot;./modules/VersionModule.sol&quot;;</a>
-<a name="16"><span class="lineNum">      16 </span>                :            : import {RulesManagementModule} from &quot;./modules/RulesManagementModule.sol&quot;;</a>
-<a name="17"><span class="lineNum">      17 </span>                :            : </a>
-<a name="18"><span class="lineNum">      18 </span>                :            : /* ==== Interface and other library === */</a>
-<a name="19"><span class="lineNum">      19 </span>                :            : import {IRule} from &quot;./interfaces/IRule.sol&quot;;</a>
-<a name="20"><span class="lineNum">      20 </span>                :            : import {RuleEngineInvariantStorage} from &quot;./modules/library/RuleEngineInvariantStorage.sol&quot;;</a>
-<a name="21"><span class="lineNum">      21 </span>                :            : import {RuleInterfaceId} from &quot;./modules/library/RuleInterfaceId.sol&quot;;</a>
-<a name="22"><span class="lineNum">      22 </span>                :            : </a>
-<a name="23"><span class="lineNum">      23 </span>                :            : /**</a>
-<a name="24"><span class="lineNum">      24 </span>                :            :  * @title Implementation of a ruleEngine as defined by the CMTAT</a>
-<a name="25"><span class="lineNum">      25 </span>                :            :  */</a>
-<a name="26"><span class="lineNum">      26 </span>                :            : abstract contract RuleEngineBase is</a>
-<a name="27"><span class="lineNum">      27 </span>                :            :     VersionModule,</a>
-<a name="28"><span class="lineNum">      28 </span>                :            :     RulesManagementModule,</a>
-<a name="29"><span class="lineNum">      29 </span>                :            :     ERC3643ComplianceModule,</a>
-<a name="30"><span class="lineNum">      30 </span>                :            :     RuleEngineInvariantStorage,</a>
-<a name="31"><span class="lineNum">      31 </span>                :            :     IRuleEngineERC1404</a>
-<a name="32"><span class="lineNum">      32 </span>                :            : {</a>
-<a name="33"><span class="lineNum">      33 </span>                :            :     /* ============ State functions ============ */</a>
-<a name="34"><span class="lineNum">      34 </span>                :            :     /*</a>
-<a name="35"><span class="lineNum">      35 </span>                :            :      * @inheritdoc IRuleEngine</a>
-<a name="36"><span class="lineNum">      36 </span>                :            :      */</a>
-<a name="37"><span class="lineNum">      37 </span>                :<span class="lineCov">          5 :     function transferred(address spender, address from, address to, uint256 value)</span></a>
-<a name="38"><span class="lineNum">      38 </span>                :            :         public</a>
-<a name="39"><span class="lineNum">      39 </span>                :            :         virtual</a>
-<a name="40"><span class="lineNum">      40 </span>                :            :         override(IRuleEngine)</a>
-<a name="41"><span class="lineNum">      41 </span>                :            :         onlyBoundToken</a>
-<a name="42"><span class="lineNum">      42 </span>                :            :     {</a>
-<a name="43"><span class="lineNum">      43 </span>                :            :         // Apply  on RuleEngine</a>
-<a name="44"><span class="lineNum">      44 </span>                :<span class="lineCov">          4 :         RulesManagementModule._transferred(spender, from, to, value);</span></a>
-<a name="45"><span class="lineNum">      45 </span>                :            :     }</a>
-<a name="46"><span class="lineNum">      46 </span>                :            : </a>
-<a name="47"><span class="lineNum">      47 </span>                :            :     /**</a>
-<a name="48"><span class="lineNum">      48 </span>                :            :      * @inheritdoc IERC3643IComplianceContract</a>
-<a name="49"><span class="lineNum">      49 </span>                :            :      */</a>
-<a name="50"><span class="lineNum">      50 </span>                :<span class="lineCov">         18 :     function transferred(address from, address to, uint256 value)</span></a>
-<a name="51"><span class="lineNum">      51 </span>                :            :         public</a>
-<a name="52"><span class="lineNum">      52 </span>                :            :         virtual</a>
-<a name="53"><span class="lineNum">      53 </span>                :            :         override(IERC3643IComplianceContract)</a>
-<a name="54"><span class="lineNum">      54 </span>                :            :         onlyBoundToken</a>
-<a name="55"><span class="lineNum">      55 </span>                :            :     {</a>
-<a name="56"><span class="lineNum">      56 </span>                :<span class="lineCov">         16 :         _transferred(from, to, value);</span></a>
-<a name="57"><span class="lineNum">      57 </span>                :            :     }</a>
-<a name="58"><span class="lineNum">      58 </span>                :            : </a>
-<a name="59"><span class="lineNum">      59 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
-<a name="60"><span class="lineNum">      60 </span>                :<span class="lineCov">          4 :     function created(address to, uint256 value) public virtual override(IERC3643Compliance) onlyBoundToken {</span></a>
-<a name="61"><span class="lineNum">      61 </span>                :<span class="lineCov">          2 :         _transferred(address(0), to, value);</span></a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {ERC165Checker} from &quot;@openzeppelin/contracts/utils/introspection/ERC165Checker.sol&quot;;</a>
+<a name="7"><span class="lineNum">       7 </span>                :            : /* ==== CMTAT interface IDs === */</a>
+<a name="8"><span class="lineNum">       8 </span>                :            : import {ERC1404ExtendInterfaceId} from &quot;CMTAT/library/ERC1404ExtendInterfaceId.sol&quot;;</a>
+<a name="9"><span class="lineNum">       9 </span>                :            : import {RuleEngineInterfaceId} from &quot;CMTAT/library/RuleEngineInterfaceId.sol&quot;;</a>
+<a name="10"><span class="lineNum">      10 </span>                :            : /* ==== CMTAT === */</a>
+<a name="11"><span class="lineNum">      11 </span>                :            : import {IRuleEngine, IRuleEngineERC1404} from &quot;CMTAT/interfaces/engine/IRuleEngine.sol&quot;;</a>
+<a name="12"><span class="lineNum">      12 </span>                :            : import {IERC1404, IERC1404Extend} from &quot;CMTAT/interfaces/tokenization/draft-IERC1404.sol&quot;;</a>
+<a name="13"><span class="lineNum">      13 </span>                :            : import {IERC3643ComplianceRead, IERC3643IComplianceContract} from &quot;CMTAT/interfaces/tokenization/IERC3643Partial.sol&quot;;</a>
+<a name="14"><span class="lineNum">      14 </span>                :            : import {IERC7551Compliance} from &quot;CMTAT/interfaces/tokenization/draft-IERC7551.sol&quot;;</a>
+<a name="15"><span class="lineNum">      15 </span>                :            : </a>
+<a name="16"><span class="lineNum">      16 </span>                :            : /* ==== Modules === */</a>
+<a name="17"><span class="lineNum">      17 </span>                :            : import {ERC3643ComplianceModule, IERC3643Compliance} from &quot;./modules/ERC3643ComplianceModule.sol&quot;;</a>
+<a name="18"><span class="lineNum">      18 </span>                :            : import {VersionModule} from &quot;./modules/VersionModule.sol&quot;;</a>
+<a name="19"><span class="lineNum">      19 </span>                :            : import {RulesManagementModule} from &quot;./modules/RulesManagementModule.sol&quot;;</a>
+<a name="20"><span class="lineNum">      20 </span>                :            : </a>
+<a name="21"><span class="lineNum">      21 </span>                :            : /* ==== Interface and other library === */</a>
+<a name="22"><span class="lineNum">      22 </span>                :            : import {IRule} from &quot;./interfaces/IRule.sol&quot;;</a>
+<a name="23"><span class="lineNum">      23 </span>                :            : import {ComplianceInterfaceId} from &quot;./modules/library/ComplianceInterfaceId.sol&quot;;</a>
+<a name="24"><span class="lineNum">      24 </span>                :            : import {ERC1404InterfaceId} from &quot;./modules/library/ERC1404InterfaceId.sol&quot;;</a>
+<a name="25"><span class="lineNum">      25 </span>                :            : import {RuleEngineInvariantStorage} from &quot;./modules/library/RuleEngineInvariantStorage.sol&quot;;</a>
+<a name="26"><span class="lineNum">      26 </span>                :            : import {RuleInterfaceId} from &quot;./modules/library/RuleInterfaceId.sol&quot;;</a>
+<a name="27"><span class="lineNum">      27 </span>                :            : </a>
+<a name="28"><span class="lineNum">      28 </span>                :            : /**</a>
+<a name="29"><span class="lineNum">      29 </span>                :            :  * @title Implementation of a ruleEngine as defined by the CMTAT</a>
+<a name="30"><span class="lineNum">      30 </span>                :            :  */</a>
+<a name="31"><span class="lineNum">      31 </span>                :            : abstract contract RuleEngineBase is</a>
+<a name="32"><span class="lineNum">      32 </span>                :            :     VersionModule,</a>
+<a name="33"><span class="lineNum">      33 </span>                :            :     RulesManagementModule,</a>
+<a name="34"><span class="lineNum">      34 </span>                :            :     ERC3643ComplianceModule,</a>
+<a name="35"><span class="lineNum">      35 </span>                :            :     RuleEngineInvariantStorage,</a>
+<a name="36"><span class="lineNum">      36 </span>                :            :     IRuleEngineERC1404</a>
+<a name="37"><span class="lineNum">      37 </span>                :            : {</a>
+<a name="38"><span class="lineNum">      38 </span>                :            :     /* ============ State functions ============ */</a>
+<a name="39"><span class="lineNum">      39 </span>                :            :     /*</a>
+<a name="40"><span class="lineNum">      40 </span>                :            :      * @inheritdoc IRuleEngine</a>
+<a name="41"><span class="lineNum">      41 </span>                :            :      */</a>
+<a name="42"><span class="lineNum">      42 </span>                :<span class="lineCov">          5 :     function transferred(address spender, address from, address to, uint256 value)</span></a>
+<a name="43"><span class="lineNum">      43 </span>                :            :         public</a>
+<a name="44"><span class="lineNum">      44 </span>                :            :         virtual</a>
+<a name="45"><span class="lineNum">      45 </span>                :            :         override(IRuleEngine)</a>
+<a name="46"><span class="lineNum">      46 </span>                :            :         onlyBoundToken</a>
+<a name="47"><span class="lineNum">      47 </span>                :            :     {</a>
+<a name="48"><span class="lineNum">      48 </span>                :            :         // Apply  on RuleEngine</a>
+<a name="49"><span class="lineNum">      49 </span>                :<span class="lineCov">          4 :         RulesManagementModule._transferred(spender, from, to, value);</span></a>
+<a name="50"><span class="lineNum">      50 </span>                :            :     }</a>
+<a name="51"><span class="lineNum">      51 </span>                :            : </a>
+<a name="52"><span class="lineNum">      52 </span>                :            :     /**</a>
+<a name="53"><span class="lineNum">      53 </span>                :            :      * @inheritdoc IERC3643IComplianceContract</a>
+<a name="54"><span class="lineNum">      54 </span>                :            :      */</a>
+<a name="55"><span class="lineNum">      55 </span>                :<span class="lineCov">         18 :     function transferred(address from, address to, uint256 value)</span></a>
+<a name="56"><span class="lineNum">      56 </span>                :            :         public</a>
+<a name="57"><span class="lineNum">      57 </span>                :            :         virtual</a>
+<a name="58"><span class="lineNum">      58 </span>                :            :         override(IERC3643IComplianceContract)</a>
+<a name="59"><span class="lineNum">      59 </span>                :            :         onlyBoundToken</a>
+<a name="60"><span class="lineNum">      60 </span>                :            :     {</a>
+<a name="61"><span class="lineNum">      61 </span>                :<span class="lineCov">         16 :         _transferred(from, to, value);</span></a>
 <a name="62"><span class="lineNum">      62 </span>                :            :     }</a>
 <a name="63"><span class="lineNum">      63 </span>                :            : </a>
 <a name="64"><span class="lineNum">      64 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
-<a name="65"><span class="lineNum">      65 </span>                :<span class="lineCov">          4 :     function destroyed(address from, uint256 value) public virtual override(IERC3643Compliance) onlyBoundToken {</span></a>
-<a name="66"><span class="lineNum">      66 </span>                :<span class="lineCov">          2 :         _transferred(from, address(0), value);</span></a>
+<a name="65"><span class="lineNum">      65 </span>                :<span class="lineCov">          4 :     function created(address to, uint256 value) public virtual override(IERC3643Compliance) onlyBoundToken {</span></a>
+<a name="66"><span class="lineNum">      66 </span>                :<span class="lineCov">          2 :         _transferred(address(0), to, value);</span></a>
 <a name="67"><span class="lineNum">      67 </span>                :            :     }</a>
 <a name="68"><span class="lineNum">      68 </span>                :            : </a>
-<a name="69"><span class="lineNum">      69 </span>                :            :     /* ============ View functions ============ */</a>
-<a name="70"><span class="lineNum">      70 </span>                :            :     /**</a>
-<a name="71"><span class="lineNum">      71 </span>                :            :      * @notice Go through all the rule to know if a restriction exists on the transfer</a>
-<a name="72"><span class="lineNum">      72 </span>                :            :      * @param from the origin address</a>
-<a name="73"><span class="lineNum">      73 </span>                :            :      * @param to the destination address</a>
-<a name="74"><span class="lineNum">      74 </span>                :            :      * @param value to transfer</a>
-<a name="75"><span class="lineNum">      75 </span>                :            :      * @return The restricion code or REJECTED_CODE_BASE.TRANSFER_OK (0) if the transfer is valid</a>
-<a name="76"><span class="lineNum">      76 </span>                :            :      *</a>
-<a name="77"><span class="lineNum">      77 </span>                :            :      */</a>
-<a name="78"><span class="lineNum">      78 </span>                :<span class="lineCov">         34 :     function detectTransferRestriction(address from, address to, uint256 value)</span></a>
-<a name="79"><span class="lineNum">      79 </span>                :            :         public</a>
-<a name="80"><span class="lineNum">      80 </span>                :            :         view</a>
-<a name="81"><span class="lineNum">      81 </span>                :            :         virtual</a>
-<a name="82"><span class="lineNum">      82 </span>                :            :         override(IERC1404)</a>
-<a name="83"><span class="lineNum">      83 </span>                :            :         returns (uint8)</a>
-<a name="84"><span class="lineNum">      84 </span>                :            :     {</a>
-<a name="85"><span class="lineNum">      85 </span>                :<span class="lineCov">         59 :         return _detectTransferRestriction(from, to, value);</span></a>
-<a name="86"><span class="lineNum">      86 </span>                :            :     }</a>
-<a name="87"><span class="lineNum">      87 </span>                :            : </a>
-<a name="88"><span class="lineNum">      88 </span>                :            :     /**</a>
-<a name="89"><span class="lineNum">      89 </span>                :            :      * @inheritdoc IERC1404Extend</a>
-<a name="90"><span class="lineNum">      90 </span>                :            :      */</a>
-<a name="91"><span class="lineNum">      91 </span>                :<span class="lineCov">         18 :     function detectTransferRestrictionFrom(address spender, address from, address to, uint256 value)</span></a>
-<a name="92"><span class="lineNum">      92 </span>                :            :         public</a>
-<a name="93"><span class="lineNum">      93 </span>                :            :         view</a>
-<a name="94"><span class="lineNum">      94 </span>                :            :         virtual</a>
-<a name="95"><span class="lineNum">      95 </span>                :            :         override(IERC1404Extend)</a>
-<a name="96"><span class="lineNum">      96 </span>                :            :         returns (uint8)</a>
-<a name="97"><span class="lineNum">      97 </span>                :            :     {</a>
-<a name="98"><span class="lineNum">      98 </span>                :<span class="lineCov">         39 :         return _detectTransferRestrictionFrom(spender, from, to, value);</span></a>
-<a name="99"><span class="lineNum">      99 </span>                :            :     }</a>
-<a name="100"><span class="lineNum">     100 </span>                :            : </a>
-<a name="101"><span class="lineNum">     101 </span>                :            :     /**</a>
-<a name="102"><span class="lineNum">     102 </span>                :            :      * @inheritdoc IERC1404</a>
-<a name="103"><span class="lineNum">     103 </span>                :            :      */</a>
-<a name="104"><span class="lineNum">     104 </span>                :<span class="lineCov">         19 :     function messageForTransferRestriction(uint8 restrictionCode)</span></a>
-<a name="105"><span class="lineNum">     105 </span>                :            :         public</a>
-<a name="106"><span class="lineNum">     106 </span>                :            :         view</a>
-<a name="107"><span class="lineNum">     107 </span>                :            :         virtual</a>
-<a name="108"><span class="lineNum">     108 </span>                :            :         override(IERC1404)</a>
-<a name="109"><span class="lineNum">     109 </span>                :            :         returns (string memory)</a>
-<a name="110"><span class="lineNum">     110 </span>                :            :     {</a>
-<a name="111"><span class="lineNum">     111 </span>                :<span class="lineCov">         19 :         return _messageForTransferRestriction(restrictionCode);</span></a>
-<a name="112"><span class="lineNum">     112 </span>                :            :     }</a>
-<a name="113"><span class="lineNum">     113 </span>                :            : </a>
-<a name="114"><span class="lineNum">     114 </span>                :            :     /**</a>
-<a name="115"><span class="lineNum">     115 </span>                :            :      * @inheritdoc IERC3643ComplianceRead</a>
-<a name="116"><span class="lineNum">     116 </span>                :            :      */</a>
-<a name="117"><span class="lineNum">     117 </span>                :<span class="lineCov">         25 :     function canTransfer(address from, address to, uint256 value)</span></a>
-<a name="118"><span class="lineNum">     118 </span>                :            :         public</a>
-<a name="119"><span class="lineNum">     119 </span>                :            :         view</a>
-<a name="120"><span class="lineNum">     120 </span>                :            :         virtual</a>
-<a name="121"><span class="lineNum">     121 </span>                :            :         override(IERC3643ComplianceRead)</a>
-<a name="122"><span class="lineNum">     122 </span>                :            :         returns (bool)</a>
-<a name="123"><span class="lineNum">     123 </span>                :            :     {</a>
-<a name="124"><span class="lineNum">     124 </span>                :<span class="lineCov">         25 :         return detectTransferRestriction(from, to, value) == uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
-<a name="125"><span class="lineNum">     125 </span>                :            :     }</a>
-<a name="126"><span class="lineNum">     126 </span>                :            : </a>
-<a name="127"><span class="lineNum">     127 </span>                :            :     /**</a>
-<a name="128"><span class="lineNum">     128 </span>                :            :      * @inheritdoc IERC7551Compliance</a>
-<a name="129"><span class="lineNum">     129 </span>                :            :      */</a>
-<a name="130"><span class="lineNum">     130 </span>                :<span class="lineCov">         21 :     function canTransferFrom(address spender, address from, address to, uint256 value)</span></a>
-<a name="131"><span class="lineNum">     131 </span>                :            :         public</a>
-<a name="132"><span class="lineNum">     132 </span>                :            :         view</a>
-<a name="133"><span class="lineNum">     133 </span>                :            :         virtual</a>
-<a name="134"><span class="lineNum">     134 </span>                :            :         override(IERC7551Compliance)</a>
-<a name="135"><span class="lineNum">     135 </span>                :            :         returns (bool)</a>
-<a name="136"><span class="lineNum">     136 </span>                :            :     {</a>
-<a name="137"><span class="lineNum">     137 </span>                :<span class="lineCov">         21 :         return detectTransferRestrictionFrom(spender, from, to, value) == uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
-<a name="138"><span class="lineNum">     138 </span>                :            :     }</a>
-<a name="139"><span class="lineNum">     139 </span>                :            : </a>
-<a name="140"><span class="lineNum">     140 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
-<a name="141"><span class="lineNum">     141 </span>                :            :                             INTERNAL/PRIVATE FUNCTIONS</a>
-<a name="142"><span class="lineNum">     142 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
-<a name="143"><span class="lineNum">     143 </span>                :<span class="lineCov">         59 :     function _detectTransferRestriction(address from, address to, uint256 value) internal view virtual returns (uint8) {</span></a>
-<a name="144"><span class="lineNum">     144 </span>                :<span class="lineCov">         59 :         uint256 rulesLength = rulesCount();</span></a>
-<a name="145"><span class="lineNum">     145 </span>                :<span class="lineCov">         59 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
-<a name="146"><span class="lineNum">     146 </span>                :<span class="lineCov">         59 :             uint8 restriction = IRule(rule(i)).detectTransferRestriction(from, to, value);</span></a>
-<a name="147"><span class="lineNum">     147 </span>           [<span class="branchCov" title="Branch 0 was taken 43 times"> + </span>]:<span class="lineCov">         59 :             if (restriction &gt; 0) {</span></a>
-<a name="148"><span class="lineNum">     148 </span>                :<span class="lineCov">         43 :                 return restriction;</span></a>
-<a name="149"><span class="lineNum">     149 </span>                :            :             }</a>
-<a name="150"><span class="lineNum">     150 </span>                :            :         }</a>
-<a name="151"><span class="lineNum">     151 </span>                :<span class="lineCov">         16 :         return uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
-<a name="152"><span class="lineNum">     152 </span>                :            :     }</a>
-<a name="153"><span class="lineNum">     153 </span>                :            : </a>
-<a name="154"><span class="lineNum">     154 </span>                :<span class="lineCov">         39 :     function _detectTransferRestrictionFrom(address spender, address from, address to, uint256 value)</span></a>
-<a name="155"><span class="lineNum">     155 </span>                :            :         internal</a>
-<a name="156"><span class="lineNum">     156 </span>                :            :         view</a>
-<a name="157"><span class="lineNum">     157 </span>                :            :         virtual</a>
-<a name="158"><span class="lineNum">     158 </span>                :            :         returns (uint8)</a>
-<a name="159"><span class="lineNum">     159 </span>                :            :     {</a>
-<a name="160"><span class="lineNum">     160 </span>                :<span class="lineCov">         39 :         uint256 rulesLength = rulesCount();</span></a>
-<a name="161"><span class="lineNum">     161 </span>                :<span class="lineCov">         39 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
-<a name="162"><span class="lineNum">     162 </span>                :<span class="lineCov">         39 :             uint8 restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender, from, to, value);</span></a>
-<a name="163"><span class="lineNum">     163 </span>           [<span class="branchCov" title="Branch 0 was taken 29 times"> + </span>]:<span class="lineCov">         39 :             if (restriction &gt; 0) {</span></a>
-<a name="164"><span class="lineNum">     164 </span>                :<span class="lineCov">         29 :                 return restriction;</span></a>
-<a name="165"><span class="lineNum">     165 </span>                :            :             }</a>
-<a name="166"><span class="lineNum">     166 </span>                :            :         }</a>
-<a name="167"><span class="lineNum">     167 </span>                :<span class="lineCov">         10 :         return uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
-<a name="168"><span class="lineNum">     168 </span>                :            :     }</a>
-<a name="169"><span class="lineNum">     169 </span>                :            : </a>
-<a name="170"><span class="lineNum">     170 </span>                :            :     /**</a>
-<a name="171"><span class="lineNum">     171 </span>                :            :      * @dev This function returns the message from the first rule claiming the code.</a>
-<a name="172"><span class="lineNum">     172 </span>                :            :      * Rule designers should keep restriction codes unique across rules.</a>
-<a name="173"><span class="lineNum">     173 </span>                :            :      * If a code is shared intentionally, all rules using that code should return</a>
-<a name="174"><span class="lineNum">     174 </span>                :            :      * the same message to avoid ambiguous operator feedback.</a>
-<a name="175"><span class="lineNum">     175 </span>                :            :      */</a>
-<a name="176"><span class="lineNum">     176 </span>                :<span class="lineCov">         19 :     function _messageForTransferRestriction(uint8 restrictionCode) internal view virtual returns (string memory) {</span></a>
-<a name="177"><span class="lineNum">     177 </span>                :<span class="lineCov">         19 :         uint256 rulesLength = rulesCount();</span></a>
-<a name="178"><span class="lineNum">     178 </span>                :<span class="lineCov">         19 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
-<a name="179"><span class="lineNum">     179 </span>           [<span class="branchCov" title="Branch 0 was taken 14 times"> + </span>]:<span class="lineCov">         16 :             if (IRule(rule(i)).canReturnTransferRestrictionCode(restrictionCode)) {</span></a>
-<a name="180"><span class="lineNum">     180 </span>                :<span class="lineCov">         14 :                 return IRule(rule(i)).messageForTransferRestriction(restrictionCode);</span></a>
-<a name="181"><span class="lineNum">     181 </span>                :            :             }</a>
-<a name="182"><span class="lineNum">     182 </span>                :            :         }</a>
-<a name="183"><span class="lineNum">     183 </span>                :<span class="lineCov">          5 :         return &quot;Unknown restriction code&quot;;</span></a>
-<a name="184"><span class="lineNum">     184 </span>                :            :     }</a>
-<a name="185"><span class="lineNum">     185 </span>                :            : </a>
-<a name="186"><span class="lineNum">     186 </span>                :            :     /**</a>
-<a name="187"><span class="lineNum">     187 </span>                :            :      * @dev Override to add ERC-165 interface check for the full IRule hierarchy.</a>
-<a name="188"><span class="lineNum">     188 </span>                :            :      */</a>
-<a name="189"><span class="lineNum">     189 </span>                :<span class="lineCov">        217 :     function _checkRule(address rule_) internal view virtual override {</span></a>
-<a name="190"><span class="lineNum">     190 </span>                :<span class="lineCov">        217 :         super._checkRule(rule_);</span></a>
-<a name="191"><span class="lineNum">     191 </span>           [<span class="branchCov" title="Branch 0 was taken 6 times"> + </span>]:<span class="lineCov">        208 :         if (!ERC165Checker.supportsInterface(rule_, RuleInterfaceId.IRULE_INTERFACE_ID)) {</span></a>
-<a name="192"><span class="lineNum">     192 </span>                :<span class="lineCov">          6 :             revert RuleEngine_RuleInvalidInterface();</span></a>
-<a name="193"><span class="lineNum">     193 </span>                :            :         }</a>
-<a name="194"><span class="lineNum">     194 </span>                :            :     }</a>
-<a name="195"><span class="lineNum">     195 </span>                :            : }</a>
+<a name="69"><span class="lineNum">      69 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
+<a name="70"><span class="lineNum">      70 </span>                :<span class="lineCov">          4 :     function destroyed(address from, uint256 value) public virtual override(IERC3643Compliance) onlyBoundToken {</span></a>
+<a name="71"><span class="lineNum">      71 </span>                :<span class="lineCov">          2 :         _transferred(from, address(0), value);</span></a>
+<a name="72"><span class="lineNum">      72 </span>                :            :     }</a>
+<a name="73"><span class="lineNum">      73 </span>                :            : </a>
+<a name="74"><span class="lineNum">      74 </span>                :            :     /* ============ View functions ============ */</a>
+<a name="75"><span class="lineNum">      75 </span>                :            :     /**</a>
+<a name="76"><span class="lineNum">      76 </span>                :            :      * @notice Go through all the rule to know if a restriction exists on the transfer</a>
+<a name="77"><span class="lineNum">      77 </span>                :            :      * @param from the origin address</a>
+<a name="78"><span class="lineNum">      78 </span>                :            :      * @param to the destination address</a>
+<a name="79"><span class="lineNum">      79 </span>                :            :      * @param value to transfer</a>
+<a name="80"><span class="lineNum">      80 </span>                :            :      * @return The restricion code or REJECTED_CODE_BASE.TRANSFER_OK (0) if the transfer is valid</a>
+<a name="81"><span class="lineNum">      81 </span>                :            :      *</a>
+<a name="82"><span class="lineNum">      82 </span>                :            :      */</a>
+<a name="83"><span class="lineNum">      83 </span>                :<span class="lineCov">         34 :     function detectTransferRestriction(address from, address to, uint256 value)</span></a>
+<a name="84"><span class="lineNum">      84 </span>                :            :         public</a>
+<a name="85"><span class="lineNum">      85 </span>                :            :         view</a>
+<a name="86"><span class="lineNum">      86 </span>                :            :         virtual</a>
+<a name="87"><span class="lineNum">      87 </span>                :            :         override(IERC1404)</a>
+<a name="88"><span class="lineNum">      88 </span>                :            :         returns (uint8)</a>
+<a name="89"><span class="lineNum">      89 </span>                :            :     {</a>
+<a name="90"><span class="lineNum">      90 </span>                :<span class="lineCov">         59 :         return _detectTransferRestriction(from, to, value);</span></a>
+<a name="91"><span class="lineNum">      91 </span>                :            :     }</a>
+<a name="92"><span class="lineNum">      92 </span>                :            : </a>
+<a name="93"><span class="lineNum">      93 </span>                :            :     /**</a>
+<a name="94"><span class="lineNum">      94 </span>                :            :      * @inheritdoc IERC1404Extend</a>
+<a name="95"><span class="lineNum">      95 </span>                :            :      */</a>
+<a name="96"><span class="lineNum">      96 </span>                :<span class="lineCov">         18 :     function detectTransferRestrictionFrom(address spender, address from, address to, uint256 value)</span></a>
+<a name="97"><span class="lineNum">      97 </span>                :            :         public</a>
+<a name="98"><span class="lineNum">      98 </span>                :            :         view</a>
+<a name="99"><span class="lineNum">      99 </span>                :            :         virtual</a>
+<a name="100"><span class="lineNum">     100 </span>                :            :         override(IERC1404Extend)</a>
+<a name="101"><span class="lineNum">     101 </span>                :            :         returns (uint8)</a>
+<a name="102"><span class="lineNum">     102 </span>                :            :     {</a>
+<a name="103"><span class="lineNum">     103 </span>                :<span class="lineCov">         39 :         return _detectTransferRestrictionFrom(spender, from, to, value);</span></a>
+<a name="104"><span class="lineNum">     104 </span>                :            :     }</a>
+<a name="105"><span class="lineNum">     105 </span>                :            : </a>
+<a name="106"><span class="lineNum">     106 </span>                :            :     /**</a>
+<a name="107"><span class="lineNum">     107 </span>                :            :      * @inheritdoc IERC1404</a>
+<a name="108"><span class="lineNum">     108 </span>                :            :      */</a>
+<a name="109"><span class="lineNum">     109 </span>                :<span class="lineCov">         19 :     function messageForTransferRestriction(uint8 restrictionCode)</span></a>
+<a name="110"><span class="lineNum">     110 </span>                :            :         public</a>
+<a name="111"><span class="lineNum">     111 </span>                :            :         view</a>
+<a name="112"><span class="lineNum">     112 </span>                :            :         virtual</a>
+<a name="113"><span class="lineNum">     113 </span>                :            :         override(IERC1404)</a>
+<a name="114"><span class="lineNum">     114 </span>                :            :         returns (string memory)</a>
+<a name="115"><span class="lineNum">     115 </span>                :            :     {</a>
+<a name="116"><span class="lineNum">     116 </span>                :<span class="lineCov">         19 :         return _messageForTransferRestriction(restrictionCode);</span></a>
+<a name="117"><span class="lineNum">     117 </span>                :            :     }</a>
+<a name="118"><span class="lineNum">     118 </span>                :            : </a>
+<a name="119"><span class="lineNum">     119 </span>                :            :     /**</a>
+<a name="120"><span class="lineNum">     120 </span>                :            :      * @inheritdoc IERC3643ComplianceRead</a>
+<a name="121"><span class="lineNum">     121 </span>                :            :      */</a>
+<a name="122"><span class="lineNum">     122 </span>                :<span class="lineCov">         25 :     function canTransfer(address from, address to, uint256 value)</span></a>
+<a name="123"><span class="lineNum">     123 </span>                :            :         public</a>
+<a name="124"><span class="lineNum">     124 </span>                :            :         view</a>
+<a name="125"><span class="lineNum">     125 </span>                :            :         virtual</a>
+<a name="126"><span class="lineNum">     126 </span>                :            :         override(IERC3643ComplianceRead)</a>
+<a name="127"><span class="lineNum">     127 </span>                :            :         returns (bool)</a>
+<a name="128"><span class="lineNum">     128 </span>                :            :     {</a>
+<a name="129"><span class="lineNum">     129 </span>                :<span class="lineCov">         25 :         return detectTransferRestriction(from, to, value) == uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
+<a name="130"><span class="lineNum">     130 </span>                :            :     }</a>
+<a name="131"><span class="lineNum">     131 </span>                :            : </a>
+<a name="132"><span class="lineNum">     132 </span>                :            :     /**</a>
+<a name="133"><span class="lineNum">     133 </span>                :            :      * @inheritdoc IERC7551Compliance</a>
+<a name="134"><span class="lineNum">     134 </span>                :            :      */</a>
+<a name="135"><span class="lineNum">     135 </span>                :<span class="lineCov">         21 :     function canTransferFrom(address spender, address from, address to, uint256 value)</span></a>
+<a name="136"><span class="lineNum">     136 </span>                :            :         public</a>
+<a name="137"><span class="lineNum">     137 </span>                :            :         view</a>
+<a name="138"><span class="lineNum">     138 </span>                :            :         virtual</a>
+<a name="139"><span class="lineNum">     139 </span>                :            :         override(IERC7551Compliance)</a>
+<a name="140"><span class="lineNum">     140 </span>                :            :         returns (bool)</a>
+<a name="141"><span class="lineNum">     141 </span>                :            :     {</a>
+<a name="142"><span class="lineNum">     142 </span>                :<span class="lineCov">         21 :         return detectTransferRestrictionFrom(spender, from, to, value) == uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
+<a name="143"><span class="lineNum">     143 </span>                :            :     }</a>
+<a name="144"><span class="lineNum">     144 </span>                :            : </a>
+<a name="145"><span class="lineNum">     145 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
+<a name="146"><span class="lineNum">     146 </span>                :            :                             INTERNAL/PRIVATE FUNCTIONS</a>
+<a name="147"><span class="lineNum">     147 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
+<a name="148"><span class="lineNum">     148 </span>                :<span class="lineCov">         59 :     function _detectTransferRestriction(address from, address to, uint256 value) internal view virtual returns (uint8) {</span></a>
+<a name="149"><span class="lineNum">     149 </span>                :<span class="lineCov">         59 :         uint256 rulesLength = rulesCount();</span></a>
+<a name="150"><span class="lineNum">     150 </span>                :<span class="lineCov">         59 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
+<a name="151"><span class="lineNum">     151 </span>                :<span class="lineCov">         59 :             uint8 restriction = IRule(rule(i)).detectTransferRestriction(from, to, value);</span></a>
+<a name="152"><span class="lineNum">     152 </span>           [<span class="branchCov" title="Branch 0 was taken 43 times"> + </span>]:<span class="lineCov">         59 :             if (restriction &gt; 0) {</span></a>
+<a name="153"><span class="lineNum">     153 </span>                :<span class="lineCov">         43 :                 return restriction;</span></a>
+<a name="154"><span class="lineNum">     154 </span>                :            :             }</a>
+<a name="155"><span class="lineNum">     155 </span>                :            :         }</a>
+<a name="156"><span class="lineNum">     156 </span>                :<span class="lineCov">         16 :         return uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
+<a name="157"><span class="lineNum">     157 </span>                :            :     }</a>
+<a name="158"><span class="lineNum">     158 </span>                :            : </a>
+<a name="159"><span class="lineNum">     159 </span>                :<span class="lineCov">         39 :     function _detectTransferRestrictionFrom(address spender, address from, address to, uint256 value)</span></a>
+<a name="160"><span class="lineNum">     160 </span>                :            :         internal</a>
+<a name="161"><span class="lineNum">     161 </span>                :            :         view</a>
+<a name="162"><span class="lineNum">     162 </span>                :            :         virtual</a>
+<a name="163"><span class="lineNum">     163 </span>                :            :         returns (uint8)</a>
+<a name="164"><span class="lineNum">     164 </span>                :            :     {</a>
+<a name="165"><span class="lineNum">     165 </span>                :<span class="lineCov">         39 :         uint256 rulesLength = rulesCount();</span></a>
+<a name="166"><span class="lineNum">     166 </span>                :<span class="lineCov">         39 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
+<a name="167"><span class="lineNum">     167 </span>                :<span class="lineCov">         39 :             uint8 restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender, from, to, value);</span></a>
+<a name="168"><span class="lineNum">     168 </span>           [<span class="branchCov" title="Branch 0 was taken 29 times"> + </span>]:<span class="lineCov">         39 :             if (restriction &gt; 0) {</span></a>
+<a name="169"><span class="lineNum">     169 </span>                :<span class="lineCov">         29 :                 return restriction;</span></a>
+<a name="170"><span class="lineNum">     170 </span>                :            :             }</a>
+<a name="171"><span class="lineNum">     171 </span>                :            :         }</a>
+<a name="172"><span class="lineNum">     172 </span>                :<span class="lineCov">         10 :         return uint8(REJECTED_CODE_BASE.TRANSFER_OK);</span></a>
+<a name="173"><span class="lineNum">     173 </span>                :            :     }</a>
+<a name="174"><span class="lineNum">     174 </span>                :            : </a>
+<a name="175"><span class="lineNum">     175 </span>                :            :     /**</a>
+<a name="176"><span class="lineNum">     176 </span>                :            :      * @dev This function returns the message from the first rule claiming the code.</a>
+<a name="177"><span class="lineNum">     177 </span>                :            :      * Rule designers should keep restriction codes unique across rules.</a>
+<a name="178"><span class="lineNum">     178 </span>                :            :      * If a code is shared intentionally, all rules using that code should return</a>
+<a name="179"><span class="lineNum">     179 </span>                :            :      * the same message to avoid ambiguous operator feedback.</a>
+<a name="180"><span class="lineNum">     180 </span>                :            :      */</a>
+<a name="181"><span class="lineNum">     181 </span>                :<span class="lineCov">         19 :     function _messageForTransferRestriction(uint8 restrictionCode) internal view virtual returns (string memory) {</span></a>
+<a name="182"><span class="lineNum">     182 </span>                :<span class="lineCov">         19 :         uint256 rulesLength = rulesCount();</span></a>
+<a name="183"><span class="lineNum">     183 </span>                :<span class="lineCov">         19 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
+<a name="184"><span class="lineNum">     184 </span>           [<span class="branchCov" title="Branch 0 was taken 14 times"> + </span>]:<span class="lineCov">         16 :             if (IRule(rule(i)).canReturnTransferRestrictionCode(restrictionCode)) {</span></a>
+<a name="185"><span class="lineNum">     185 </span>                :<span class="lineCov">         14 :                 return IRule(rule(i)).messageForTransferRestriction(restrictionCode);</span></a>
+<a name="186"><span class="lineNum">     186 </span>                :            :             }</a>
+<a name="187"><span class="lineNum">     187 </span>                :            :         }</a>
+<a name="188"><span class="lineNum">     188 </span>                :<span class="lineCov">          5 :         return &quot;Unknown restriction code&quot;;</span></a>
+<a name="189"><span class="lineNum">     189 </span>                :            :     }</a>
+<a name="190"><span class="lineNum">     190 </span>                :            : </a>
+<a name="191"><span class="lineNum">     191 </span>                :            :     /**</a>
+<a name="192"><span class="lineNum">     192 </span>                :            :      * @dev Override to add ERC-165 interface check for the full IRule hierarchy.</a>
+<a name="193"><span class="lineNum">     193 </span>                :            :      */</a>
+<a name="194"><span class="lineNum">     194 </span>                :<span class="lineCov">        253 :     function _checkRule(address rule_) internal view virtual override {</span></a>
+<a name="195"><span class="lineNum">     195 </span>                :<span class="lineCov">        253 :         RulesManagementModule._checkRule(rule_);</span></a>
+<a name="196"><span class="lineNum">     196 </span>           [<span class="branchCov" title="Branch 0 was taken 6 times"> + </span>]:<span class="lineCov">        244 :         if (!ERC165Checker.supportsInterface(rule_, RuleInterfaceId.IRULE_INTERFACE_ID)) {</span></a>
+<a name="197"><span class="lineNum">     197 </span>                :<span class="lineCov">          6 :             revert RuleEngine_RuleInvalidInterface();</span></a>
+<a name="198"><span class="lineNum">     198 </span>                :            :         }</a>
+<a name="199"><span class="lineNum">     199 </span>                :            :     }</a>
+<a name="200"><span class="lineNum">     200 </span>                :            : </a>
+<a name="201"><span class="lineNum">     201 </span>                :            :     /**</a>
+<a name="202"><span class="lineNum">     202 </span>                :            :      * @dev Shared ERC-165 checks common to all RuleEngine deployment variants.</a>
+<a name="203"><span class="lineNum">     203 </span>                :            :      * Concrete deployments can extend this with access-control-specific interfaces.</a>
+<a name="204"><span class="lineNum">     204 </span>                :            :      */</a>
+<a name="205"><span class="lineNum">     205 </span>                :<span class="lineCov">         46 :     function _supportsRuleEngineBaseInterface(bytes4 interfaceId) internal pure returns (bool) {</span></a>
+<a name="206"><span class="lineNum">     206 </span>                :<span class="lineCov">         46 :         return interfaceId == RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID</span></a>
+<a name="207"><span class="lineNum">     207 </span>                :<span class="lineCov">         41 :             || interfaceId == ERC1404InterfaceId.IERC1404_INTERFACE_ID</span></a>
+<a name="208"><span class="lineNum">     208 </span>                :<span class="lineCov">         31 :             || interfaceId == ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID</span></a>
+<a name="209"><span class="lineNum">     209 </span>                :<span class="lineCov">         26 :             || interfaceId == ComplianceInterfaceId.ERC3643_COMPLIANCE_INTERFACE_ID</span></a>
+<a name="210"><span class="lineNum">     210 </span>                :<span class="lineCov">         21 :             || interfaceId == ComplianceInterfaceId.IERC7551_COMPLIANCE_INTERFACE_ID;</span></a>
+<a name="211"><span class="lineNum">     211 </span>                :            :     }</a>
+<a name="212"><span class="lineNum">     212 </span>                :            : }</a>
 </pre>
       </td>
     </tr>
diff --git a/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.func-sort-c.html b/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.func-sort-c.html
new file mode 100644
index 0000000..2d808cf
--- /dev/null
+++ b/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.func-sort-c.html
@@ -0,0 +1,105 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - lcov.info - src/RuleEngineOwnableShared.sol - functions</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="title">LCOV - code coverage report</td></tr>
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+    <tr>
+      <td width="100%">
+        <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="35%" class="headerValue"><a href="../index.html">top level</a> - <a href="index.html">src</a> - RuleEngineOwnableShared.sol<span style="font-size: 80%;"> (<a href="RuleEngineOwnableShared.sol.gcov.html">source</a> / functions)</span></td>
+            <td width="5%"></td>
+            <td width="15%"></td>
+            <td width="10%" class="headerCovTableHead">Hit</td>
+            <td width="10%" class="headerCovTableHead">Total</td>
+            <td width="15%" class="headerCovTableHead">Coverage</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">lcov.info</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Date:</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td></td>
+            <td></td>
+            <td></td>
+            <td class="headerItem">Branches:</td>
+            <td class="headerCovTableEntry">2</td>
+            <td class="headerCovTableEntry">2</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+        </table>
+      </td>
+    </tr>
+
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+  </table>
+
+  <center>
+  <table width="60%" cellpadding=1 cellspacing=1 border=0>
+    <tr><td><br></td></tr>
+    <tr>
+      <td width="80%" class="tableHead">Function Name <span class="tableHeadSort"><a href="RuleEngineOwnableShared.sol.func.html"><img src="../updown.png" width=10 height=14 alt="Sort by function name" title="Sort by function name" border=0></a></span></td>
+      <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
+    </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#55">RuleEngineOwnableShared._msgData</a></td>
+              <td class="coverFnHi">2</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#35">RuleEngineOwnableShared._checkOwnershipTransferTarget</a></td>
+              <td class="coverFnHi">10</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#27">RuleEngineOwnableShared.supportsInterface</a></td>
+              <td class="coverFnHi">29</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#20">RuleEngineOwnableShared.constructor</a></td>
+              <td class="coverFnHi">128</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#48">RuleEngineOwnableShared._msgSender</a></td>
+              <td class="coverFnHi">181</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#62">RuleEngineOwnableShared._contextSuffixLength</a></td>
+              <td class="coverFnHi">183</td>
+            </tr>
+  </table>
+  <br>
+  </center>
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+    <tr><td class="versionInfo">Generated by: <a href="https://github.com/linux-test-project/lcov" target="_parent">LCOV version 1.16</a></td></tr>
+  </table>
+  <br>
+
+</body>
+</html>
diff --git a/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.func.html b/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.func.html
new file mode 100644
index 0000000..2f76325
--- /dev/null
+++ b/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.func.html
@@ -0,0 +1,105 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - lcov.info - src/RuleEngineOwnableShared.sol - functions</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="title">LCOV - code coverage report</td></tr>
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+    <tr>
+      <td width="100%">
+        <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="35%" class="headerValue"><a href="../index.html">top level</a> - <a href="index.html">src</a> - RuleEngineOwnableShared.sol<span style="font-size: 80%;"> (<a href="RuleEngineOwnableShared.sol.gcov.html">source</a> / functions)</span></td>
+            <td width="5%"></td>
+            <td width="15%"></td>
+            <td width="10%" class="headerCovTableHead">Hit</td>
+            <td width="10%" class="headerCovTableHead">Total</td>
+            <td width="15%" class="headerCovTableHead">Coverage</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">lcov.info</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Date:</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td></td>
+            <td></td>
+            <td></td>
+            <td class="headerItem">Branches:</td>
+            <td class="headerCovTableEntry">2</td>
+            <td class="headerCovTableEntry">2</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+        </table>
+      </td>
+    </tr>
+
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+  </table>
+
+  <center>
+  <table width="60%" cellpadding=1 cellspacing=1 border=0>
+    <tr><td><br></td></tr>
+    <tr>
+      <td width="80%" class="tableHead">Function Name <span class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by function name" title="Sort by function name" border=0></span></td>
+      <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="RuleEngineOwnableShared.sol.func-sort-c.html"><img src="../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
+    </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#35">RuleEngineOwnableShared._checkOwnershipTransferTarget</a></td>
+              <td class="coverFnHi">10</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#62">RuleEngineOwnableShared._contextSuffixLength</a></td>
+              <td class="coverFnHi">183</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#55">RuleEngineOwnableShared._msgData</a></td>
+              <td class="coverFnHi">2</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#48">RuleEngineOwnableShared._msgSender</a></td>
+              <td class="coverFnHi">181</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#20">RuleEngineOwnableShared.constructor</a></td>
+              <td class="coverFnHi">128</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnableShared.sol.gcov.html#27">RuleEngineOwnableShared.supportsInterface</a></td>
+              <td class="coverFnHi">29</td>
+            </tr>
+  </table>
+  <br>
+  </center>
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+    <tr><td class="versionInfo">Generated by: <a href="https://github.com/linux-test-project/lcov" target="_parent">LCOV version 1.16</a></td></tr>
+  </table>
+  <br>
+
+</body>
+</html>
diff --git a/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.gcov.html b/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.gcov.html
new file mode 100644
index 0000000..96d5846
--- /dev/null
+++ b/doc/coverage/coverage/src/RuleEngineOwnableShared.sol.gcov.html
@@ -0,0 +1,152 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - lcov.info - src/RuleEngineOwnableShared.sol</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="title">LCOV - code coverage report</td></tr>
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+    <tr>
+      <td width="100%">
+        <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="35%" class="headerValue"><a href="../index.html">top level</a> - <a href="index.html">src</a> - RuleEngineOwnableShared.sol<span style="font-size: 80%;"> (source / <a href="RuleEngineOwnableShared.sol.func-sort-c.html">functions</a>)</span></td>
+            <td width="5%"></td>
+            <td width="15%"></td>
+            <td width="10%" class="headerCovTableHead">Hit</td>
+            <td width="10%" class="headerCovTableHead">Total</td>
+            <td width="15%" class="headerCovTableHead">Coverage</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">lcov.info</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Date:</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td></td>
+            <td></td>
+            <td></td>
+            <td class="headerItem">Branches:</td>
+            <td class="headerCovTableEntry">2</td>
+            <td class="headerCovTableEntry">2</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+        </table>
+      </td>
+    </tr>
+
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+  </table>
+
+  <table cellpadding=0 cellspacing=0 border=0>
+    <tr>
+      <td><br></td>
+    </tr>
+    <tr>
+      <td>
+<pre class="sourceHeading">           Branch data     Line data    Source code</pre>
+<pre class="source">
+<a name="1"><span class="lineNum">       1 </span>                :            : // SPDX-License-Identifier: MPL-2.0</a>
+<a name="2"><span class="lineNum">       2 </span>                :            : </a>
+<a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
+<a name="4"><span class="lineNum">       4 </span>                :            : </a>
+<a name="5"><span class="lineNum">       5 </span>                :            : /* ==== OpenZeppelin === */</a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {Context} from &quot;@openzeppelin/contracts/utils/Context.sol&quot;;</a>
+<a name="7"><span class="lineNum">       7 </span>                :            : import {ERC165} from &quot;@openzeppelin/contracts/utils/introspection/ERC165.sol&quot;;</a>
+<a name="8"><span class="lineNum">       8 </span>                :            : import {IERC165} from &quot;@openzeppelin/contracts/utils/introspection/IERC165.sol&quot;;</a>
+<a name="9"><span class="lineNum">       9 </span>                :            : /* ==== Modules === */</a>
+<a name="10"><span class="lineNum">      10 </span>                :            : import {ERC2771ModuleStandalone, ERC2771Context} from &quot;./modules/ERC2771ModuleStandalone.sol&quot;;</a>
+<a name="11"><span class="lineNum">      11 </span>                :            : /* ==== Base contract === */</a>
+<a name="12"><span class="lineNum">      12 </span>                :            : import {RuleEngineBase} from &quot;./RuleEngineBase.sol&quot;;</a>
+<a name="13"><span class="lineNum">      13 </span>                :            : import {OwnableInterfaceId} from &quot;./modules/library/OwnableInterfaceId.sol&quot;;</a>
+<a name="14"><span class="lineNum">      14 </span>                :            : import {IRule} from &quot;./interfaces/IRule.sol&quot;;</a>
+<a name="15"><span class="lineNum">      15 </span>                :            : </a>
+<a name="16"><span class="lineNum">      16 </span>                :            : /**</a>
+<a name="17"><span class="lineNum">      17 </span>                :            :  * @title Shared Ownable deployment logic for RuleEngine variants</a>
+<a name="18"><span class="lineNum">      18 </span>                :            :  * @dev Kept abstract to let child contracts choose the ownership mechanism</a>
+<a name="19"><span class="lineNum">      19 </span>                :            :  * (`Ownable` or `Ownable2Step`) while reusing constructor, ERC-165 and ERC-2771 code.</a>
+<a name="20"><span class="lineNum">      20 </span>                :            :  */</a>
+<a name="21"><span class="lineNum">      21 </span>                :            : abstract contract RuleEngineOwnableShared is ERC2771ModuleStandalone, RuleEngineBase, ERC165 {</a>
+<a name="22"><span class="lineNum">      22 </span>                :<span class="lineCov">        128 :     constructor(address forwarderIrrevocable, address tokenContract) ERC2771ModuleStandalone(forwarderIrrevocable) {</span></a>
+<a name="23"><span class="lineNum">      23 </span>           [<span class="branchCov" title="Branch 0 was taken 1 time"> + </span>]:<span class="lineCov">        128 :         if (tokenContract != address(0)) {</span></a>
+<a name="24"><span class="lineNum">      24 </span>                :<span class="lineCov">          1 :             _bindToken(tokenContract);</span></a>
+<a name="25"><span class="lineNum">      25 </span>                :            :         }</a>
+<a name="26"><span class="lineNum">      26 </span>                :            :     }</a>
+<a name="27"><span class="lineNum">      27 </span>                :            : </a>
+<a name="28"><span class="lineNum">      28 </span>                :            :     /* ============ ERC-165 ============ */</a>
+<a name="29"><span class="lineNum">      29 </span>                :<span class="lineCov">         29 :     function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {</span></a>
+<a name="30"><span class="lineNum">      30 </span>                :<span class="lineCov">         29 :         return _supportsRuleEngineBaseInterface(interfaceId) || interfaceId == OwnableInterfaceId.IERC173_INTERFACE_ID</span></a>
+<a name="31"><span class="lineNum">      31 </span>                :<span class="lineCov">          5 :             || ERC165.supportsInterface(interfaceId);</span></a>
+<a name="32"><span class="lineNum">      32 </span>                :            :     }</a>
+<a name="33"><span class="lineNum">      33 </span>                :            : </a>
+<a name="34"><span class="lineNum">      34 </span>                :            :     /**</a>
+<a name="35"><span class="lineNum">      35 </span>                :            :      * @dev Shared guard for ownership transfer targets in ownable variants.</a>
+<a name="36"><span class="lineNum">      36 </span>                :            :      */</a>
+<a name="37"><span class="lineNum">      37 </span>                :<span class="lineCov">         10 :     function _checkOwnershipTransferTarget(address newOwner) internal view virtual {</span></a>
+<a name="38"><span class="lineNum">      38 </span>           [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span>]:<span class="lineCov">         10 :         if (containsRule(IRule(newOwner))) {</span></a>
+<a name="39"><span class="lineNum">      39 </span>                :<span class="lineCov">          2 :             revert RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges();</span></a>
+<a name="40"><span class="lineNum">      40 </span>                :            :         }</a>
+<a name="41"><span class="lineNum">      41 </span>                :            :     }</a>
+<a name="42"><span class="lineNum">      42 </span>                :            : </a>
+<a name="43"><span class="lineNum">      43 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
+<a name="44"><span class="lineNum">      44 </span>                :            :                            ERC-2771</a>
+<a name="45"><span class="lineNum">      45 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
+<a name="46"><span class="lineNum">      46 </span>                :            : </a>
+<a name="47"><span class="lineNum">      47 </span>                :            :     /**</a>
+<a name="48"><span class="lineNum">      48 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="49"><span class="lineNum">      49 </span>                :            :      */</a>
+<a name="50"><span class="lineNum">      50 </span>                :<span class="lineCov">        181 :     function _msgSender() internal view virtual override(ERC2771Context, Context) returns (address sender) {</span></a>
+<a name="51"><span class="lineNum">      51 </span>                :<span class="lineCov">        181 :         return ERC2771Context._msgSender();</span></a>
+<a name="52"><span class="lineNum">      52 </span>                :            :     }</a>
+<a name="53"><span class="lineNum">      53 </span>                :            : </a>
+<a name="54"><span class="lineNum">      54 </span>                :            :     /**</a>
+<a name="55"><span class="lineNum">      55 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="56"><span class="lineNum">      56 </span>                :            :      */</a>
+<a name="57"><span class="lineNum">      57 </span>                :<span class="lineCov">          2 :     function _msgData() internal view virtual override(ERC2771Context, Context) returns (bytes calldata) {</span></a>
+<a name="58"><span class="lineNum">      58 </span>                :<span class="lineCov">          2 :         return ERC2771Context._msgData();</span></a>
+<a name="59"><span class="lineNum">      59 </span>                :            :     }</a>
+<a name="60"><span class="lineNum">      60 </span>                :            : </a>
+<a name="61"><span class="lineNum">      61 </span>                :            :     /**</a>
+<a name="62"><span class="lineNum">      62 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="63"><span class="lineNum">      63 </span>                :            :      */</a>
+<a name="64"><span class="lineNum">      64 </span>                :<span class="lineCov">        183 :     function _contextSuffixLength() internal view virtual override(ERC2771Context, Context) returns (uint256) {</span></a>
+<a name="65"><span class="lineNum">      65 </span>                :<span class="lineCov">        183 :         return ERC2771Context._contextSuffixLength();</span></a>
+<a name="66"><span class="lineNum">      66 </span>                :            :     }</a>
+<a name="67"><span class="lineNum">      67 </span>                :            : }</a>
+</pre>
+      </td>
+    </tr>
+  </table>
+  <br>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+    <tr><td class="versionInfo">Generated by: <a href="https://github.com/linux-test-project/lcov" target="_parent">LCOV version 1.16</a></td></tr>
+  </table>
+  <br>
+
+</body>
+</html>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngine.sol.func-sort-c.html b/doc/coverage/coverage/src/deployment/RuleEngine.sol.func-sort-c.html
index c376ad7..be7f6ec 100644
--- a/doc/coverage/coverage/src/deployment/RuleEngine.sol.func-sort-c.html
+++ b/doc/coverage/coverage/src/deployment/RuleEngine.sol.func-sort-c.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">24</td>
-            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">25</td>
+            <td class="headerCovTableEntry">25</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">8</td>
-            <td class="headerCovTableEntry">8</td>
+            <td class="headerCovTableEntry">10</td>
+            <td class="headerCovTableEntry">10</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">5</td>
+            <td class="headerCovTableEntry">5</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
@@ -69,36 +69,44 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#74">RuleEngine._msgData</a></td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#95">RuleEngine._msgData</a></td>
               <td class="coverFnHi">1</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#50">RuleEngine.supportsInterface</a></td>
-              <td class="coverFnHi">6</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#83">RuleEngine._onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#61">RuleEngine._onlyComplianceManager</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#68">RuleEngine.supportsInterface</a></td>
+              <td class="coverFnHi">17</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#24">RuleEngine.constructor</a></td>
-              <td class="coverFnHi">127</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#81">RuleEngine._onlyComplianceManager</a></td>
+              <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#41">RuleEngine.hasRole</a></td>
-              <td class="coverFnHi">135</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#42">RuleEngine.grantRole</a></td>
+              <td class="coverFnHi">22</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#62">RuleEngine._onlyRulesManager</a></td>
-              <td class="coverFnHi">170</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#25">RuleEngine.constructor</a></td>
+              <td class="coverFnHi">146</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#67">RuleEngine._msgSender</a></td>
-              <td class="coverFnHi">366</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#53">RuleEngine.hasRole</a></td>
+              <td class="coverFnHi">154</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#81">RuleEngine._contextSuffixLength</a></td>
-              <td class="coverFnHi">367</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#82">RuleEngine._onlyRulesManager</a></td>
+              <td class="coverFnHi">196</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#88">RuleEngine._msgSender</a></td>
+              <td class="coverFnHi">450</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#102">RuleEngine._contextSuffixLength</a></td>
+              <td class="coverFnHi">451</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngine.sol.func.html b/doc/coverage/coverage/src/deployment/RuleEngine.sol.func.html
index ebb8602..1cb351b 100644
--- a/doc/coverage/coverage/src/deployment/RuleEngine.sol.func.html
+++ b/doc/coverage/coverage/src/deployment/RuleEngine.sol.func.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">24</td>
-            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">25</td>
+            <td class="headerCovTableEntry">25</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">8</td>
-            <td class="headerCovTableEntry">8</td>
+            <td class="headerCovTableEntry">10</td>
+            <td class="headerCovTableEntry">10</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">5</td>
+            <td class="headerCovTableEntry">5</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
@@ -69,36 +69,44 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="RuleEngine.sol.func-sort-c.html"><img src="../../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#81">RuleEngine._contextSuffixLength</a></td>
-              <td class="coverFnHi">367</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#102">RuleEngine._contextSuffixLength</a></td>
+              <td class="coverFnHi">451</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#74">RuleEngine._msgData</a></td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#95">RuleEngine._msgData</a></td>
               <td class="coverFnHi">1</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#67">RuleEngine._msgSender</a></td>
-              <td class="coverFnHi">366</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#88">RuleEngine._msgSender</a></td>
+              <td class="coverFnHi">450</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#61">RuleEngine._onlyComplianceManager</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#81">RuleEngine._onlyComplianceManager</a></td>
+              <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#62">RuleEngine._onlyRulesManager</a></td>
-              <td class="coverFnHi">170</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#83">RuleEngine._onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#24">RuleEngine.constructor</a></td>
-              <td class="coverFnHi">127</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#82">RuleEngine._onlyRulesManager</a></td>
+              <td class="coverFnHi">196</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#41">RuleEngine.hasRole</a></td>
-              <td class="coverFnHi">135</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#25">RuleEngine.constructor</a></td>
+              <td class="coverFnHi">146</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#50">RuleEngine.supportsInterface</a></td>
-              <td class="coverFnHi">6</td>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#42">RuleEngine.grantRole</a></td>
+              <td class="coverFnHi">22</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#53">RuleEngine.hasRole</a></td>
+              <td class="coverFnHi">154</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngine.sol.gcov.html#68">RuleEngine.supportsInterface</a></td>
+              <td class="coverFnHi">17</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngine.sol.gcov.html b/doc/coverage/coverage/src/deployment/RuleEngine.sol.gcov.html
index 63031d1..25a82b7 100644
--- a/doc/coverage/coverage/src/deployment/RuleEngine.sol.gcov.html
+++ b/doc/coverage/coverage/src/deployment/RuleEngine.sol.gcov.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">24</td>
-            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">25</td>
+            <td class="headerCovTableEntry">25</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">8</td>
-            <td class="headerCovTableEntry">8</td>
+            <td class="headerCovTableEntry">10</td>
+            <td class="headerCovTableEntry">10</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">5</td>
+            <td class="headerCovTableEntry">5</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
@@ -73,88 +73,109 @@
 <a name="2"><span class="lineNum">       2 </span>                :            : </a>
 <a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
 <a name="4"><span class="lineNum">       4 </span>                :            : </a>
-<a name="5"><span class="lineNum">       5 </span>                :            : /* ==== CMTAT === */</a>
-<a name="6"><span class="lineNum">       6 </span>                :            : import {ERC1404ExtendInterfaceId} from &quot;CMTAT/library/ERC1404ExtendInterfaceId.sol&quot;;</a>
-<a name="7"><span class="lineNum">       7 </span>                :            : import {RuleEngineInterfaceId} from &quot;CMTAT/library/RuleEngineInterfaceId.sol&quot;;</a>
-<a name="8"><span class="lineNum">       8 </span>                :            : /* ==== OpenZeppelin === */</a>
-<a name="9"><span class="lineNum">       9 </span>                :            : import {Context} from &quot;OZ/utils/Context.sol&quot;;</a>
-<a name="10"><span class="lineNum">      10 </span>                :            : import {AccessControl} from &quot;OZ/access/AccessControl.sol&quot;;</a>
-<a name="11"><span class="lineNum">      11 </span>                :            : import {IERC165} from &quot;OZ/utils/introspection/ERC165.sol&quot;;</a>
+<a name="5"><span class="lineNum">       5 </span>                :            : /* ==== OpenZeppelin === */</a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {Context} from &quot;@openzeppelin/contracts/utils/Context.sol&quot;;</a>
+<a name="7"><span class="lineNum">       7 </span>                :            : import {IAccessControl} from &quot;@openzeppelin/contracts/access/IAccessControl.sol&quot;;</a>
+<a name="8"><span class="lineNum">       8 </span>                :            : import {AccessControl} from &quot;@openzeppelin/contracts/access/AccessControl.sol&quot;;</a>
+<a name="9"><span class="lineNum">       9 </span>                :            : import {AccessControlEnumerable} from &quot;@openzeppelin/contracts/access/extensions/AccessControlEnumerable.sol&quot;;</a>
+<a name="10"><span class="lineNum">      10 </span>                :            : import {IERC165} from &quot;@openzeppelin/contracts/utils/introspection/ERC165.sol&quot;;</a>
+<a name="11"><span class="lineNum">      11 </span>                :            : import {EnumerableSet} from &quot;@openzeppelin/contracts/utils/structs/EnumerableSet.sol&quot;;</a>
 <a name="12"><span class="lineNum">      12 </span>                :            : /* ==== Modules === */</a>
 <a name="13"><span class="lineNum">      13 </span>                :            : import {ERC2771ModuleStandalone, ERC2771Context} from &quot;../modules/ERC2771ModuleStandalone.sol&quot;;</a>
 <a name="14"><span class="lineNum">      14 </span>                :            : /* ==== Base contract === */</a>
 <a name="15"><span class="lineNum">      15 </span>                :            : import {RuleEngineBase} from &quot;../RuleEngineBase.sol&quot;;</a>
-<a name="16"><span class="lineNum">      16 </span>                :            : import {ComplianceInterfaceId} from &quot;../modules/library/ComplianceInterfaceId.sol&quot;;</a>
-<a name="17"><span class="lineNum">      17 </span>                :            : </a>
-<a name="18"><span class="lineNum">      18 </span>                :            : /**</a>
-<a name="19"><span class="lineNum">      19 </span>                :            :  * @title Implementation of a ruleEngine as defined by the CMTAT</a>
-<a name="20"><span class="lineNum">      20 </span>                :            :  */</a>
-<a name="21"><span class="lineNum">      21 </span>                :            : contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControl {</a>
-<a name="22"><span class="lineNum">      22 </span>                :            :     /**</a>
-<a name="23"><span class="lineNum">      23 </span>                :            :      * @param admin Address of the contract (Access Control)</a>
-<a name="24"><span class="lineNum">      24 </span>                :            :      * @param forwarderIrrevocable Address of the forwarder, required for the gasless support</a>
-<a name="25"><span class="lineNum">      25 </span>                :            :      */</a>
-<a name="26"><span class="lineNum">      26 </span>                :<span class="lineCov">        127 :     constructor(address admin, address forwarderIrrevocable, address tokenContract)</span></a>
-<a name="27"><span class="lineNum">      27 </span>                :            :         ERC2771ModuleStandalone(forwarderIrrevocable)</a>
-<a name="28"><span class="lineNum">      28 </span>                :            :     {</a>
-<a name="29"><span class="lineNum">      29 </span>           [<span class="branchCov" title="Branch 0 was taken 1 time"> + </span>]:<span class="lineCov">        127 :         if (admin == address(0)) {</span></a>
-<a name="30"><span class="lineNum">      30 </span>                :<span class="lineCov">          1 :             revert RuleEngine_AdminWithAddressZeroNotAllowed();</span></a>
-<a name="31"><span class="lineNum">      31 </span>                :            :         }</a>
-<a name="32"><span class="lineNum">      32 </span>           [<span class="branchCov" title="Branch 0 was taken 31 times"> + </span>]:<span class="lineCov">        126 :         if (tokenContract != address(0)) {</span></a>
-<a name="33"><span class="lineNum">      33 </span>                :<span class="lineCov">         31 :             _bindToken(tokenContract);</span></a>
-<a name="34"><span class="lineNum">      34 </span>                :            :         }</a>
-<a name="35"><span class="lineNum">      35 </span>                :<span class="lineCov">        126 :         _grantRole(DEFAULT_ADMIN_ROLE, admin);</span></a>
-<a name="36"><span class="lineNum">      36 </span>                :            :     }</a>
-<a name="37"><span class="lineNum">      37 </span>                :            : </a>
-<a name="38"><span class="lineNum">      38 </span>                :            :     /* ============ ACCESS CONTROL ============ */</a>
-<a name="39"><span class="lineNum">      39 </span>                :            :     /**</a>
-<a name="40"><span class="lineNum">      40 </span>                :            :      * @notice Returns `true` if `account` has been granted `role`.</a>
-<a name="41"><span class="lineNum">      41 </span>                :            :      * @dev The Default Admin has all roles</a>
-<a name="42"><span class="lineNum">      42 </span>                :            :      */</a>
-<a name="43"><span class="lineNum">      43 </span>                :<span class="lineCov">        135 :     function hasRole(bytes32 role, address account) public view virtual override(AccessControl) returns (bool) {</span></a>
-<a name="44"><span class="lineNum">      44 </span>        [<span class="branchCov" title="Branch 0 was taken 185 times"> + </span><span class="branchCov" title="Branch 1 was taken 165 times"> + </span>]:<span class="lineCov">        350 :         if (AccessControl.hasRole(DEFAULT_ADMIN_ROLE, account)) {</span></a>
-<a name="45"><span class="lineNum">      45 </span>                :<span class="lineCov">        185 :             return true;</span></a>
-<a name="46"><span class="lineNum">      46 </span>                :            :         } else {</a>
-<a name="47"><span class="lineNum">      47 </span>                :<span class="lineCov">        165 :             return AccessControl.hasRole(role, account);</span></a>
-<a name="48"><span class="lineNum">      48 </span>                :            :         }</a>
+<a name="16"><span class="lineNum">      16 </span>                :            : </a>
+<a name="17"><span class="lineNum">      17 </span>                :            : /**</a>
+<a name="18"><span class="lineNum">      18 </span>                :            :  * @title Implementation of a ruleEngine as defined by the CMTAT</a>
+<a name="19"><span class="lineNum">      19 </span>                :            :  */</a>
+<a name="20"><span class="lineNum">      20 </span>                :            : contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControlEnumerable {</a>
+<a name="21"><span class="lineNum">      21 </span>                :            :     using EnumerableSet for EnumerableSet.AddressSet;</a>
+<a name="22"><span class="lineNum">      22 </span>                :            : </a>
+<a name="23"><span class="lineNum">      23 </span>                :            :     /**</a>
+<a name="24"><span class="lineNum">      24 </span>                :            :      * @param admin Address of the contract (Access Control)</a>
+<a name="25"><span class="lineNum">      25 </span>                :            :      * @param forwarderIrrevocable Address of the forwarder, required for the gasless support</a>
+<a name="26"><span class="lineNum">      26 </span>                :            :      */</a>
+<a name="27"><span class="lineNum">      27 </span>                :<span class="lineCov">        146 :     constructor(address admin, address forwarderIrrevocable, address tokenContract)</span></a>
+<a name="28"><span class="lineNum">      28 </span>                :            :         ERC2771ModuleStandalone(forwarderIrrevocable)</a>
+<a name="29"><span class="lineNum">      29 </span>                :            :     {</a>
+<a name="30"><span class="lineNum">      30 </span>           [<span class="branchCov" title="Branch 0 was taken 1 time"> + </span>]:<span class="lineCov">        146 :         if (admin == address(0)) {</span></a>
+<a name="31"><span class="lineNum">      31 </span>                :<span class="lineCov">          1 :             revert RuleEngine_AdminWithAddressZeroNotAllowed();</span></a>
+<a name="32"><span class="lineNum">      32 </span>                :            :         }</a>
+<a name="33"><span class="lineNum">      33 </span>           [<span class="branchCov" title="Branch 0 was taken 31 times"> + </span>]:<span class="lineCov">        145 :         if (tokenContract != address(0)) {</span></a>
+<a name="34"><span class="lineNum">      34 </span>                :<span class="lineCov">         31 :             _bindToken(tokenContract);</span></a>
+<a name="35"><span class="lineNum">      35 </span>                :            :         }</a>
+<a name="36"><span class="lineNum">      36 </span>                :<span class="lineCov">        145 :         _grantRole(DEFAULT_ADMIN_ROLE, admin);</span></a>
+<a name="37"><span class="lineNum">      37 </span>                :            :     }</a>
+<a name="38"><span class="lineNum">      38 </span>                :            : </a>
+<a name="39"><span class="lineNum">      39 </span>                :            :     /* ============ ACCESS CONTROL ============ */</a>
+<a name="40"><span class="lineNum">      40 </span>                :            :     /**</a>
+<a name="41"><span class="lineNum">      41 </span>                :            :      * @notice Grants `role` to `account`.</a>
+<a name="42"><span class="lineNum">      42 </span>                :            :      * @dev Prevents granting any role to accounts already configured as rules.</a>
+<a name="43"><span class="lineNum">      43 </span>                :            :      */</a>
+<a name="44"><span class="lineNum">      44 </span>                :<span class="lineCov">         22 :     function grantRole(bytes32 role, address account) public virtual override(AccessControl, IAccessControl) {</span></a>
+<a name="45"><span class="lineNum">      45 </span>           [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span>]:<span class="lineCov">         22 :         if (_rules.contains(account)) {</span></a>
+<a name="46"><span class="lineNum">      46 </span>                :<span class="lineCov">          3 :             revert RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges();</span></a>
+<a name="47"><span class="lineNum">      47 </span>                :            :         }</a>
+<a name="48"><span class="lineNum">      48 </span>                :<span class="lineCov">         19 :         AccessControl.grantRole(role, account);</span></a>
 <a name="49"><span class="lineNum">      49 </span>                :            :     }</a>
 <a name="50"><span class="lineNum">      50 </span>                :            : </a>
-<a name="51"><span class="lineNum">      51 </span>                :            :     /* ============ ERC-165 ============ */</a>
-<a name="52"><span class="lineNum">      52 </span>                :<span class="lineCov">          6 :     function supportsInterface(bytes4 interfaceId) public view virtual override(AccessControl, IERC165) returns (bool) {</span></a>
-<a name="53"><span class="lineNum">      53 </span>                :<span class="lineCov">          6 :         return interfaceId == RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID</span></a>
-<a name="54"><span class="lineNum">      54 </span>                :<span class="lineCov">          5 :             || interfaceId == ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID</span></a>
-<a name="55"><span class="lineNum">      55 </span>                :<span class="lineCov">          4 :             || interfaceId == ComplianceInterfaceId.ERC3643_COMPLIANCE_INTERFACE_ID</span></a>
-<a name="56"><span class="lineNum">      56 </span>                :<span class="lineCov">          3 :             || interfaceId == ComplianceInterfaceId.IERC7551_COMPLIANCE_INTERFACE_ID</span></a>
-<a name="57"><span class="lineNum">      57 </span>                :<span class="lineCov">          2 :             || AccessControl.supportsInterface(interfaceId);</span></a>
-<a name="58"><span class="lineNum">      58 </span>                :            :     }</a>
-<a name="59"><span class="lineNum">      59 </span>                :            : </a>
-<a name="60"><span class="lineNum">      60 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
-<a name="61"><span class="lineNum">      61 </span>                :            :                            ERC-2771</a>
-<a name="62"><span class="lineNum">      62 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
-<a name="63"><span class="lineNum">      63 </span>                :<span class="lineCov">         15 :     function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}</span></a>
-<a name="64"><span class="lineNum">      64 </span>                :<span class="lineCov">        170 :     function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}</span></a>
-<a name="65"><span class="lineNum">      65 </span>                :            : </a>
-<a name="66"><span class="lineNum">      66 </span>                :            :     /**</a>
-<a name="67"><span class="lineNum">      67 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
-<a name="68"><span class="lineNum">      68 </span>                :            :      */</a>
-<a name="69"><span class="lineNum">      69 </span>                :<span class="lineCov">        366 :     function _msgSender() internal view virtual override(ERC2771Context, Context) returns (address sender) {</span></a>
-<a name="70"><span class="lineNum">      70 </span>                :<span class="lineCov">        366 :         return ERC2771Context._msgSender();</span></a>
-<a name="71"><span class="lineNum">      71 </span>                :            :     }</a>
-<a name="72"><span class="lineNum">      72 </span>                :            : </a>
-<a name="73"><span class="lineNum">      73 </span>                :            :     /**</a>
-<a name="74"><span class="lineNum">      74 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
-<a name="75"><span class="lineNum">      75 </span>                :            :      */</a>
-<a name="76"><span class="lineNum">      76 </span>                :<span class="lineCov">          1 :     function _msgData() internal view virtual override(ERC2771Context, Context) returns (bytes calldata) {</span></a>
-<a name="77"><span class="lineNum">      77 </span>                :<span class="lineCov">          1 :         return ERC2771Context._msgData();</span></a>
+<a name="51"><span class="lineNum">      51 </span>                :            :     /**</a>
+<a name="52"><span class="lineNum">      52 </span>                :            :      * @notice Returns `true` if `account` has been granted `role`.</a>
+<a name="53"><span class="lineNum">      53 </span>                :            :      * @dev The Default Admin has all roles</a>
+<a name="54"><span class="lineNum">      54 </span>                :            :      */</a>
+<a name="55"><span class="lineNum">      55 </span>                :<span class="lineCov">        154 :     function hasRole(bytes32 role, address account)</span></a>
+<a name="56"><span class="lineNum">      56 </span>                :            :         public</a>
+<a name="57"><span class="lineNum">      57 </span>                :            :         view</a>
+<a name="58"><span class="lineNum">      58 </span>                :            :         virtual</a>
+<a name="59"><span class="lineNum">      59 </span>                :            :         override(AccessControl, IAccessControl)</a>
+<a name="60"><span class="lineNum">      60 </span>                :            :         returns (bool)</a>
+<a name="61"><span class="lineNum">      61 </span>                :            :     {</a>
+<a name="62"><span class="lineNum">      62 </span>        [<span class="branchCov" title="Branch 0 was taken 219 times"> + </span><span class="branchCov" title="Branch 1 was taken 194 times"> + </span>]:<span class="lineCov">        413 :         if (AccessControl.hasRole(DEFAULT_ADMIN_ROLE, account)) {</span></a>
+<a name="63"><span class="lineNum">      63 </span>                :<span class="lineCov">        219 :             return true;</span></a>
+<a name="64"><span class="lineNum">      64 </span>                :            :         } else {</a>
+<a name="65"><span class="lineNum">      65 </span>                :<span class="lineCov">        194 :             return AccessControl.hasRole(role, account);</span></a>
+<a name="66"><span class="lineNum">      66 </span>                :            :         }</a>
+<a name="67"><span class="lineNum">      67 </span>                :            :     }</a>
+<a name="68"><span class="lineNum">      68 </span>                :            : </a>
+<a name="69"><span class="lineNum">      69 </span>                :            :     /* ============ ERC-165 ============ */</a>
+<a name="70"><span class="lineNum">      70 </span>                :<span class="lineCov">         17 :     function supportsInterface(bytes4 interfaceId)</span></a>
+<a name="71"><span class="lineNum">      71 </span>                :            :         public</a>
+<a name="72"><span class="lineNum">      72 </span>                :            :         view</a>
+<a name="73"><span class="lineNum">      73 </span>                :            :         virtual</a>
+<a name="74"><span class="lineNum">      74 </span>                :            :         override(AccessControlEnumerable, IERC165)</a>
+<a name="75"><span class="lineNum">      75 </span>                :            :         returns (bool)</a>
+<a name="76"><span class="lineNum">      76 </span>                :            :     {</a>
+<a name="77"><span class="lineNum">      77 </span>                :<span class="lineCov">         17 :         return _supportsRuleEngineBaseInterface(interfaceId) || AccessControlEnumerable.supportsInterface(interfaceId);</span></a>
 <a name="78"><span class="lineNum">      78 </span>                :            :     }</a>
 <a name="79"><span class="lineNum">      79 </span>                :            : </a>
-<a name="80"><span class="lineNum">      80 </span>                :            :     /**</a>
-<a name="81"><span class="lineNum">      81 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
-<a name="82"><span class="lineNum">      82 </span>                :            :      */</a>
-<a name="83"><span class="lineNum">      83 </span>                :<span class="lineCov">        367 :     function _contextSuffixLength() internal view virtual override(ERC2771Context, Context) returns (uint256) {</span></a>
-<a name="84"><span class="lineNum">      84 </span>                :<span class="lineCov">        367 :         return ERC2771Context._contextSuffixLength();</span></a>
-<a name="85"><span class="lineNum">      85 </span>                :            :     }</a>
-<a name="86"><span class="lineNum">      86 </span>                :            : }</a>
+<a name="80"><span class="lineNum">      80 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
+<a name="81"><span class="lineNum">      81 </span>                :            :                            ERC-2771</a>
+<a name="82"><span class="lineNum">      82 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
+<a name="83"><span class="lineNum">      83 </span>                :<span class="lineCov">         18 :     function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}</span></a>
+<a name="84"><span class="lineNum">      84 </span>                :<span class="lineCov">        196 :     function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}</span></a>
+<a name="85"><span class="lineNum">      85 </span>                :<span class="lineCov">          5 :     function _onlyRulesLimitManager() internal virtual override onlyRole(DEFAULT_ADMIN_ROLE) {}</span></a>
+<a name="86"><span class="lineNum">      86 </span>                :            : </a>
+<a name="87"><span class="lineNum">      87 </span>                :            :     /**</a>
+<a name="88"><span class="lineNum">      88 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="89"><span class="lineNum">      89 </span>                :            :      */</a>
+<a name="90"><span class="lineNum">      90 </span>                :<span class="lineCov">        450 :     function _msgSender() internal view virtual override(ERC2771Context, Context) returns (address sender) {</span></a>
+<a name="91"><span class="lineNum">      91 </span>                :<span class="lineCov">        450 :         return ERC2771Context._msgSender();</span></a>
+<a name="92"><span class="lineNum">      92 </span>                :            :     }</a>
+<a name="93"><span class="lineNum">      93 </span>                :            : </a>
+<a name="94"><span class="lineNum">      94 </span>                :            :     /**</a>
+<a name="95"><span class="lineNum">      95 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="96"><span class="lineNum">      96 </span>                :            :      */</a>
+<a name="97"><span class="lineNum">      97 </span>                :<span class="lineCov">          1 :     function _msgData() internal view virtual override(ERC2771Context, Context) returns (bytes calldata) {</span></a>
+<a name="98"><span class="lineNum">      98 </span>                :<span class="lineCov">          1 :         return ERC2771Context._msgData();</span></a>
+<a name="99"><span class="lineNum">      99 </span>                :            :     }</a>
+<a name="100"><span class="lineNum">     100 </span>                :            : </a>
+<a name="101"><span class="lineNum">     101 </span>                :            :     /**</a>
+<a name="102"><span class="lineNum">     102 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="103"><span class="lineNum">     103 </span>                :            :      */</a>
+<a name="104"><span class="lineNum">     104 </span>                :<span class="lineCov">        451 :     function _contextSuffixLength() internal view virtual override(ERC2771Context, Context) returns (uint256) {</span></a>
+<a name="105"><span class="lineNum">     105 </span>                :<span class="lineCov">        451 :         return ERC2771Context._contextSuffixLength();</span></a>
+<a name="106"><span class="lineNum">     106 </span>                :            :     }</a>
+<a name="107"><span class="lineNum">     107 </span>                :            : }</a>
 </pre>
       </td>
     </tr>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func-sort-c.html b/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func-sort-c.html
index cac79cd..43de197 100644
--- a/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func-sort-c.html
+++ b/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func-sort-c.html
@@ -31,13 +31,13 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">18</td>
-            <td class="headerCovTableEntry">18</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">12</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">7</td>
@@ -49,9 +49,9 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">1</td>
-            <td class="headerCovTableEntry">1</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntryHi">-</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -69,32 +69,32 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#73">RuleEngineOwnable._msgData</a></td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#52">RuleEngineOwnable._msgData</a></td>
               <td class="coverFnHi">1</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#50">RuleEngineOwnable.supportsInterface</a></td>
-              <td class="coverFnHi">9</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#26">RuleEngineOwnable._onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">2</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#47">RuleEngineOwnable._onlyComplianceManager</a></td>
-              <td class="coverFnHi">21</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#37">RuleEngineOwnable.transferOwnership</a></td>
+              <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#42">RuleEngineOwnable._onlyRulesManager</a></td>
-              <td class="coverFnHi">64</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#31">RuleEngineOwnable._onlyComplianceManager</a></td>
+              <td class="coverFnHi">22</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#27">RuleEngineOwnable.constructor</a></td>
-              <td class="coverFnHi">77</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#25">RuleEngineOwnable._onlyRulesManager</a></td>
+              <td class="coverFnHi">65</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#66">RuleEngineOwnable._msgSender</a></td>
-              <td class="coverFnHi">108</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#45">RuleEngineOwnable._msgSender</a></td>
+              <td class="coverFnHi">146</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#80">RuleEngineOwnable._contextSuffixLength</a></td>
-              <td class="coverFnHi">109</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#59">RuleEngineOwnable._contextSuffixLength</a></td>
+              <td class="coverFnHi">147</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func.html b/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func.html
index 2714e56..778686c 100644
--- a/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func.html
+++ b/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.func.html
@@ -31,13 +31,13 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">18</td>
-            <td class="headerCovTableEntry">18</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">12</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">7</td>
@@ -49,9 +49,9 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">1</td>
-            <td class="headerCovTableEntry">1</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntryHi">-</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -69,32 +69,32 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="RuleEngineOwnable.sol.func-sort-c.html"><img src="../../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#80">RuleEngineOwnable._contextSuffixLength</a></td>
-              <td class="coverFnHi">109</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#59">RuleEngineOwnable._contextSuffixLength</a></td>
+              <td class="coverFnHi">147</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#73">RuleEngineOwnable._msgData</a></td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#52">RuleEngineOwnable._msgData</a></td>
               <td class="coverFnHi">1</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#66">RuleEngineOwnable._msgSender</a></td>
-              <td class="coverFnHi">108</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#45">RuleEngineOwnable._msgSender</a></td>
+              <td class="coverFnHi">146</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#47">RuleEngineOwnable._onlyComplianceManager</a></td>
-              <td class="coverFnHi">21</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#31">RuleEngineOwnable._onlyComplianceManager</a></td>
+              <td class="coverFnHi">22</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#42">RuleEngineOwnable._onlyRulesManager</a></td>
-              <td class="coverFnHi">64</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#26">RuleEngineOwnable._onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">2</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#27">RuleEngineOwnable.constructor</a></td>
-              <td class="coverFnHi">77</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#25">RuleEngineOwnable._onlyRulesManager</a></td>
+              <td class="coverFnHi">65</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#50">RuleEngineOwnable.supportsInterface</a></td>
-              <td class="coverFnHi">9</td>
+              <td class="coverFn"><a href="RuleEngineOwnable.sol.gcov.html#37">RuleEngineOwnable.transferOwnership</a></td>
+              <td class="coverFnHi">5</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.gcov.html b/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.gcov.html
index 86ca861..c3c3e37 100644
--- a/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.gcov.html
+++ b/doc/coverage/coverage/src/deployment/RuleEngineOwnable.sol.gcov.html
@@ -31,13 +31,13 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">18</td>
-            <td class="headerCovTableEntry">18</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">12</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">7</td>
@@ -49,9 +49,9 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">1</td>
-            <td class="headerCovTableEntry">1</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntryHi">-</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -73,87 +73,66 @@
 <a name="2"><span class="lineNum">       2 </span>                :            : </a>
 <a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
 <a name="4"><span class="lineNum">       4 </span>                :            : </a>
-<a name="5"><span class="lineNum">       5 </span>                :            : /* ==== CMTAT === */</a>
-<a name="6"><span class="lineNum">       6 </span>                :            : import {ERC1404ExtendInterfaceId} from &quot;CMTAT/library/ERC1404ExtendInterfaceId.sol&quot;;</a>
-<a name="7"><span class="lineNum">       7 </span>                :            : import {RuleEngineInterfaceId} from &quot;CMTAT/library/RuleEngineInterfaceId.sol&quot;;</a>
-<a name="8"><span class="lineNum">       8 </span>                :            : /* ==== OpenZeppelin === */</a>
-<a name="9"><span class="lineNum">       9 </span>                :            : import {Context} from &quot;OZ/utils/Context.sol&quot;;</a>
-<a name="10"><span class="lineNum">      10 </span>                :            : import {Ownable} from &quot;OZ/access/Ownable.sol&quot;;</a>
-<a name="11"><span class="lineNum">      11 </span>                :            : import {IERC165} from &quot;OZ/utils/introspection/IERC165.sol&quot;;</a>
-<a name="12"><span class="lineNum">      12 </span>                :            : /* ==== Modules === */</a>
-<a name="13"><span class="lineNum">      13 </span>                :            : import {ERC2771ModuleStandalone, ERC2771Context} from &quot;../modules/ERC2771ModuleStandalone.sol&quot;;</a>
-<a name="14"><span class="lineNum">      14 </span>                :            : /* ==== Base contract === */</a>
-<a name="15"><span class="lineNum">      15 </span>                :            : import {RuleEngineBase} from &quot;../RuleEngineBase.sol&quot;;</a>
-<a name="16"><span class="lineNum">      16 </span>                :            : import {ComplianceInterfaceId} from &quot;../modules/library/ComplianceInterfaceId.sol&quot;;</a>
-<a name="17"><span class="lineNum">      17 </span>                :            : </a>
-<a name="18"><span class="lineNum">      18 </span>                :            : /**</a>
-<a name="19"><span class="lineNum">      19 </span>                :            :  * @title Implementation of a ruleEngine with ERC-173 Ownable access control</a>
-<a name="20"><span class="lineNum">      20 </span>                :            :  */</a>
-<a name="21"><span class="lineNum">      21 </span>                :            : contract RuleEngineOwnable is ERC2771ModuleStandalone, RuleEngineBase, Ownable {</a>
-<a name="22"><span class="lineNum">      22 </span>                :            :     bytes4 private constant ERC173_INTERFACE_ID = 0x7f5828d0;</a>
-<a name="23"><span class="lineNum">      23 </span>                :            : </a>
+<a name="5"><span class="lineNum">       5 </span>                :            : import {Ownable} from &quot;@openzeppelin/contracts/access/Ownable.sol&quot;;</a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {Context} from &quot;@openzeppelin/contracts/utils/Context.sol&quot;;</a>
+<a name="7"><span class="lineNum">       7 </span>                :            : import {RuleEngineOwnableShared} from &quot;../RuleEngineOwnableShared.sol&quot;;</a>
+<a name="8"><span class="lineNum">       8 </span>                :            : </a>
+<a name="9"><span class="lineNum">       9 </span>                :            : /**</a>
+<a name="10"><span class="lineNum">      10 </span>                :            :  * @title Implementation of a ruleEngine with ERC-173 Ownable access control</a>
+<a name="11"><span class="lineNum">      11 </span>                :            :  */</a>
+<a name="12"><span class="lineNum">      12 </span>                :            : contract RuleEngineOwnable is RuleEngineOwnableShared, Ownable {</a>
+<a name="13"><span class="lineNum">      13 </span>                :            :     /**</a>
+<a name="14"><span class="lineNum">      14 </span>                :            :      * @param owner_ Address of the contract owner (ERC-173)</a>
+<a name="15"><span class="lineNum">      15 </span>                :            :      * @param forwarderIrrevocable Address of the forwarder, required for the gasless support</a>
+<a name="16"><span class="lineNum">      16 </span>                :            :      * @param tokenContract Address of the token contract to bind (can be zero address)</a>
+<a name="17"><span class="lineNum">      17 </span>                :            :      */</a>
+<a name="18"><span class="lineNum">      18 </span>                :            :     constructor(address owner_, address forwarderIrrevocable, address tokenContract)</a>
+<a name="19"><span class="lineNum">      19 </span>                :            :         RuleEngineOwnableShared(forwarderIrrevocable, tokenContract)</a>
+<a name="20"><span class="lineNum">      20 </span>                :            :         Ownable(owner_)</a>
+<a name="21"><span class="lineNum">      21 </span>                :            :     {}</a>
+<a name="22"><span class="lineNum">      22 </span>                :            : </a>
+<a name="23"><span class="lineNum">      23 </span>                :            :     /* ============ ACCESS CONTROL ============ */</a>
 <a name="24"><span class="lineNum">      24 </span>                :            :     /**</a>
-<a name="25"><span class="lineNum">      25 </span>                :            :      * @param owner_ Address of the contract owner (ERC-173)</a>
-<a name="26"><span class="lineNum">      26 </span>                :            :      * @param forwarderIrrevocable Address of the forwarder, required for the gasless support</a>
-<a name="27"><span class="lineNum">      27 </span>                :            :      * @param tokenContract Address of the token contract to bind (can be zero address)</a>
-<a name="28"><span class="lineNum">      28 </span>                :            :      */</a>
-<a name="29"><span class="lineNum">      29 </span>                :<span class="lineCov">         77 :     constructor(address owner_, address forwarderIrrevocable, address tokenContract)</span></a>
-<a name="30"><span class="lineNum">      30 </span>                :            :         ERC2771ModuleStandalone(forwarderIrrevocable)</a>
-<a name="31"><span class="lineNum">      31 </span>                :            :         Ownable(owner_)</a>
-<a name="32"><span class="lineNum">      32 </span>                :            :     {</a>
-<a name="33"><span class="lineNum">      33 </span>                :            :         // Note: zero-address check for owner_ is handled by Ownable(owner_),</a>
-<a name="34"><span class="lineNum">      34 </span>                :            :         // which reverts with OwnableInvalidOwner(address(0)) before reaching here.</a>
-<a name="35"><span class="lineNum">      35 </span>           [<span class="branchCov" title="Branch 0 was taken 1 time"> + </span>]:<span class="lineCov">         76 :         if (tokenContract != address(0)) {</span></a>
-<a name="36"><span class="lineNum">      36 </span>                :<span class="lineCov">          1 :             _bindToken(tokenContract);</span></a>
-<a name="37"><span class="lineNum">      37 </span>                :            :         }</a>
-<a name="38"><span class="lineNum">      38 </span>                :            :     }</a>
-<a name="39"><span class="lineNum">      39 </span>                :            : </a>
-<a name="40"><span class="lineNum">      40 </span>                :            :     /* ============ ACCESS CONTROL ============ */</a>
-<a name="41"><span class="lineNum">      41 </span>                :            :     /**</a>
-<a name="42"><span class="lineNum">      42 </span>                :            :      * @dev Access control check using Ownable pattern</a>
-<a name="43"><span class="lineNum">      43 </span>                :            :      */</a>
-<a name="44"><span class="lineNum">      44 </span>                :<span class="lineCov">         64 :     function _onlyRulesManager() internal virtual override onlyOwner {}</span></a>
-<a name="45"><span class="lineNum">      45 </span>                :            : </a>
-<a name="46"><span class="lineNum">      46 </span>                :            :     /**</a>
-<a name="47"><span class="lineNum">      47 </span>                :            :      * @dev Access control check using Ownable pattern</a>
-<a name="48"><span class="lineNum">      48 </span>                :            :      */</a>
-<a name="49"><span class="lineNum">      49 </span>                :<span class="lineCov">         21 :     function _onlyComplianceManager() internal virtual override onlyOwner {}</span></a>
+<a name="25"><span class="lineNum">      25 </span>                :            :      * @dev Access control check using Ownable pattern</a>
+<a name="26"><span class="lineNum">      26 </span>                :            :      */</a>
+<a name="27"><span class="lineNum">      27 </span>                :<span class="lineCov">         65 :     function _onlyRulesManager() internal virtual override onlyOwner {}</span></a>
+<a name="28"><span class="lineNum">      28 </span>                :<span class="lineCov">          2 :     function _onlyRulesLimitManager() internal virtual override onlyOwner {}</span></a>
+<a name="29"><span class="lineNum">      29 </span>                :            : </a>
+<a name="30"><span class="lineNum">      30 </span>                :            :     /**</a>
+<a name="31"><span class="lineNum">      31 </span>                :            :      * @dev Access control check using Ownable pattern</a>
+<a name="32"><span class="lineNum">      32 </span>                :            :      */</a>
+<a name="33"><span class="lineNum">      33 </span>                :<span class="lineCov">         22 :     function _onlyComplianceManager() internal virtual override onlyOwner {}</span></a>
+<a name="34"><span class="lineNum">      34 </span>                :            : </a>
+<a name="35"><span class="lineNum">      35 </span>                :            :     /**</a>
+<a name="36"><span class="lineNum">      36 </span>                :            :      * @notice Transfers ownership of the contract to a new account (`newOwner`).</a>
+<a name="37"><span class="lineNum">      37 </span>                :            :      * @dev Reverts when `newOwner` is already configured as a rule.</a>
+<a name="38"><span class="lineNum">      38 </span>                :            :      */</a>
+<a name="39"><span class="lineNum">      39 </span>                :<span class="lineCov">          5 :     function transferOwnership(address newOwner) public virtual override onlyOwner {</span></a>
+<a name="40"><span class="lineNum">      40 </span>                :<span class="lineCov">          4 :         RuleEngineOwnableShared._checkOwnershipTransferTarget(newOwner);</span></a>
+<a name="41"><span class="lineNum">      41 </span>                :<span class="lineCov">          3 :         Ownable.transferOwnership(newOwner);</span></a>
+<a name="42"><span class="lineNum">      42 </span>                :            :     }</a>
+<a name="43"><span class="lineNum">      43 </span>                :            : </a>
+<a name="44"><span class="lineNum">      44 </span>                :            :     /**</a>
+<a name="45"><span class="lineNum">      45 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="46"><span class="lineNum">      46 </span>                :            :      */</a>
+<a name="47"><span class="lineNum">      47 </span>                :<span class="lineCov">        146 :     function _msgSender() internal view virtual override(RuleEngineOwnableShared, Context) returns (address sender) {</span></a>
+<a name="48"><span class="lineNum">      48 </span>                :<span class="lineCov">        146 :         return RuleEngineOwnableShared._msgSender();</span></a>
+<a name="49"><span class="lineNum">      49 </span>                :            :     }</a>
 <a name="50"><span class="lineNum">      50 </span>                :            : </a>
-<a name="51"><span class="lineNum">      51 </span>                :            :     /* ============ ERC-165 ============ */</a>
-<a name="52"><span class="lineNum">      52 </span>                :<span class="lineCov">          9 :     function supportsInterface(bytes4 interfaceId) public view virtual override(IERC165) returns (bool) {</span></a>
-<a name="53"><span class="lineNum">      53 </span>                :<span class="lineCov">          9 :         return interfaceId == RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID</span></a>
-<a name="54"><span class="lineNum">      54 </span>                :<span class="lineCov">          8 :             || interfaceId == ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID</span></a>
-<a name="55"><span class="lineNum">      55 </span>                :<span class="lineCov">          7 :             || interfaceId == ERC173_INTERFACE_ID</span></a>
-<a name="56"><span class="lineNum">      56 </span>                :<span class="lineCov">          5 :             || interfaceId == ComplianceInterfaceId.ERC3643_COMPLIANCE_INTERFACE_ID</span></a>
-<a name="57"><span class="lineNum">      57 </span>                :<span class="lineCov">          4 :             || interfaceId == ComplianceInterfaceId.IERC7551_COMPLIANCE_INTERFACE_ID</span></a>
-<a name="58"><span class="lineNum">      58 </span>                :<span class="lineCov">          3 :             || interfaceId == type(IERC165).interfaceId;</span></a>
-<a name="59"><span class="lineNum">      59 </span>                :            :     }</a>
-<a name="60"><span class="lineNum">      60 </span>                :            : </a>
-<a name="61"><span class="lineNum">      61 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
-<a name="62"><span class="lineNum">      62 </span>                :            :                            ERC-2771</a>
-<a name="63"><span class="lineNum">      63 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
-<a name="64"><span class="lineNum">      64 </span>                :            : </a>
-<a name="65"><span class="lineNum">      65 </span>                :            :     /**</a>
-<a name="66"><span class="lineNum">      66 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
-<a name="67"><span class="lineNum">      67 </span>                :            :      */</a>
-<a name="68"><span class="lineNum">      68 </span>                :<span class="lineCov">        108 :     function _msgSender() internal view virtual override(ERC2771Context, Context) returns (address sender) {</span></a>
-<a name="69"><span class="lineNum">      69 </span>                :<span class="lineCov">        108 :         return ERC2771Context._msgSender();</span></a>
-<a name="70"><span class="lineNum">      70 </span>                :            :     }</a>
-<a name="71"><span class="lineNum">      71 </span>                :            : </a>
-<a name="72"><span class="lineNum">      72 </span>                :            :     /**</a>
-<a name="73"><span class="lineNum">      73 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
-<a name="74"><span class="lineNum">      74 </span>                :            :      */</a>
-<a name="75"><span class="lineNum">      75 </span>                :<span class="lineCov">          1 :     function _msgData() internal view virtual override(ERC2771Context, Context) returns (bytes calldata) {</span></a>
-<a name="76"><span class="lineNum">      76 </span>                :<span class="lineCov">          1 :         return ERC2771Context._msgData();</span></a>
-<a name="77"><span class="lineNum">      77 </span>                :            :     }</a>
-<a name="78"><span class="lineNum">      78 </span>                :            : </a>
-<a name="79"><span class="lineNum">      79 </span>                :            :     /**</a>
-<a name="80"><span class="lineNum">      80 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
-<a name="81"><span class="lineNum">      81 </span>                :            :      */</a>
-<a name="82"><span class="lineNum">      82 </span>                :<span class="lineCov">        109 :     function _contextSuffixLength() internal view virtual override(ERC2771Context, Context) returns (uint256) {</span></a>
-<a name="83"><span class="lineNum">      83 </span>                :<span class="lineCov">        109 :         return ERC2771Context._contextSuffixLength();</span></a>
-<a name="84"><span class="lineNum">      84 </span>                :            :     }</a>
-<a name="85"><span class="lineNum">      85 </span>                :            : }</a>
+<a name="51"><span class="lineNum">      51 </span>                :            :     /**</a>
+<a name="52"><span class="lineNum">      52 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="53"><span class="lineNum">      53 </span>                :            :      */</a>
+<a name="54"><span class="lineNum">      54 </span>                :<span class="lineCov">          1 :     function _msgData() internal view virtual override(RuleEngineOwnableShared, Context) returns (bytes calldata) {</span></a>
+<a name="55"><span class="lineNum">      55 </span>                :<span class="lineCov">          1 :         return RuleEngineOwnableShared._msgData();</span></a>
+<a name="56"><span class="lineNum">      56 </span>                :            :     }</a>
+<a name="57"><span class="lineNum">      57 </span>                :            : </a>
+<a name="58"><span class="lineNum">      58 </span>                :            :     /**</a>
+<a name="59"><span class="lineNum">      59 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="60"><span class="lineNum">      60 </span>                :            :      */</a>
+<a name="61"><span class="lineNum">      61 </span>                :<span class="lineCov">        147 :     function _contextSuffixLength() internal view virtual override(RuleEngineOwnableShared, Context) returns (uint256) {</span></a>
+<a name="62"><span class="lineNum">      62 </span>                :<span class="lineCov">        147 :         return RuleEngineOwnableShared._contextSuffixLength();</span></a>
+<a name="63"><span class="lineNum">      63 </span>                :            :     }</a>
+<a name="64"><span class="lineNum">      64 </span>                :            : }</a>
 </pre>
       </td>
     </tr>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.func-sort-c.html b/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.func-sort-c.html
new file mode 100644
index 0000000..d43fc3b
--- /dev/null
+++ b/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.func-sort-c.html
@@ -0,0 +1,109 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - lcov.info - src/deployment/RuleEngineOwnable2Step.sol - functions</title>
+  <link rel="stylesheet" type="text/css" href="../../gcov.css">
+</head>
+
+<body>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="title">LCOV - code coverage report</td></tr>
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+
+    <tr>
+      <td width="100%">
+        <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="35%" class="headerValue"><a href="../../index.html">top level</a> - <a href="index.html">src/deployment</a> - RuleEngineOwnable2Step.sol<span style="font-size: 80%;"> (<a href="RuleEngineOwnable2Step.sol.gcov.html">source</a> / functions)</span></td>
+            <td width="5%"></td>
+            <td width="15%"></td>
+            <td width="10%" class="headerCovTableHead">Hit</td>
+            <td width="10%" class="headerCovTableHead">Total</td>
+            <td width="15%" class="headerCovTableHead">Coverage</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">lcov.info</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Date:</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntry">7</td>
+            <td class="headerCovTableEntry">7</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td></td>
+            <td></td>
+            <td></td>
+            <td class="headerItem">Branches:</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntryHi">-</td>
+          </tr>
+          <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+        </table>
+      </td>
+    </tr>
+
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+  </table>
+
+  <center>
+  <table width="60%" cellpadding=1 cellspacing=1 border=0>
+    <tr><td><br></td></tr>
+    <tr>
+      <td width="80%" class="tableHead">Function Name <span class="tableHeadSort"><a href="RuleEngineOwnable2Step.sol.func.html"><img src="../../updown.png" width=10 height=14 alt="Sort by function name" title="Sort by function name" border=0></a></span></td>
+      <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
+    </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#54">RuleEngineOwnable2Step._msgData</a></td>
+              <td class="coverFnHi">1</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#28">RuleEngineOwnable2Step._onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">2</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#33">RuleEngineOwnable2Step._onlyComplianceManager</a></td>
+              <td class="coverFnHi">3</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#27">RuleEngineOwnable2Step._onlyRulesManager</a></td>
+              <td class="coverFnHi">5</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#39">RuleEngineOwnable2Step.transferOwnership</a></td>
+              <td class="coverFnHi">6</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#47">RuleEngineOwnable2Step._msgSender</a></td>
+              <td class="coverFnHi">35</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#61">RuleEngineOwnable2Step._contextSuffixLength</a></td>
+              <td class="coverFnHi">36</td>
+            </tr>
+  </table>
+  <br>
+  </center>
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+    <tr><td class="versionInfo">Generated by: <a href="https://github.com/linux-test-project/lcov" target="_parent">LCOV version 1.16</a></td></tr>
+  </table>
+  <br>
+
+</body>
+</html>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.func.html b/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.func.html
new file mode 100644
index 0000000..95204c6
--- /dev/null
+++ b/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.func.html
@@ -0,0 +1,109 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - lcov.info - src/deployment/RuleEngineOwnable2Step.sol - functions</title>
+  <link rel="stylesheet" type="text/css" href="../../gcov.css">
+</head>
+
+<body>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="title">LCOV - code coverage report</td></tr>
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+
+    <tr>
+      <td width="100%">
+        <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="35%" class="headerValue"><a href="../../index.html">top level</a> - <a href="index.html">src/deployment</a> - RuleEngineOwnable2Step.sol<span style="font-size: 80%;"> (<a href="RuleEngineOwnable2Step.sol.gcov.html">source</a> / functions)</span></td>
+            <td width="5%"></td>
+            <td width="15%"></td>
+            <td width="10%" class="headerCovTableHead">Hit</td>
+            <td width="10%" class="headerCovTableHead">Total</td>
+            <td width="15%" class="headerCovTableHead">Coverage</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">lcov.info</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Date:</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntry">7</td>
+            <td class="headerCovTableEntry">7</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td></td>
+            <td></td>
+            <td></td>
+            <td class="headerItem">Branches:</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntryHi">-</td>
+          </tr>
+          <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+        </table>
+      </td>
+    </tr>
+
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+  </table>
+
+  <center>
+  <table width="60%" cellpadding=1 cellspacing=1 border=0>
+    <tr><td><br></td></tr>
+    <tr>
+      <td width="80%" class="tableHead">Function Name <span class="tableHeadSort"><img src="../../glass.png" width=10 height=14 alt="Sort by function name" title="Sort by function name" border=0></span></td>
+      <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="RuleEngineOwnable2Step.sol.func-sort-c.html"><img src="../../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
+    </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#61">RuleEngineOwnable2Step._contextSuffixLength</a></td>
+              <td class="coverFnHi">36</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#54">RuleEngineOwnable2Step._msgData</a></td>
+              <td class="coverFnHi">1</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#47">RuleEngineOwnable2Step._msgSender</a></td>
+              <td class="coverFnHi">35</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#33">RuleEngineOwnable2Step._onlyComplianceManager</a></td>
+              <td class="coverFnHi">3</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#28">RuleEngineOwnable2Step._onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">2</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#27">RuleEngineOwnable2Step._onlyRulesManager</a></td>
+              <td class="coverFnHi">5</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RuleEngineOwnable2Step.sol.gcov.html#39">RuleEngineOwnable2Step.transferOwnership</a></td>
+              <td class="coverFnHi">6</td>
+            </tr>
+  </table>
+  <br>
+  </center>
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+    <tr><td class="versionInfo">Generated by: <a href="https://github.com/linux-test-project/lcov" target="_parent">LCOV version 1.16</a></td></tr>
+  </table>
+  <br>
+
+</body>
+</html>
diff --git a/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.gcov.html b/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.gcov.html
new file mode 100644
index 0000000..7d77041
--- /dev/null
+++ b/doc/coverage/coverage/src/deployment/RuleEngineOwnable2Step.sol.gcov.html
@@ -0,0 +1,151 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - lcov.info - src/deployment/RuleEngineOwnable2Step.sol</title>
+  <link rel="stylesheet" type="text/css" href="../../gcov.css">
+</head>
+
+<body>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="title">LCOV - code coverage report</td></tr>
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+
+    <tr>
+      <td width="100%">
+        <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="35%" class="headerValue"><a href="../../index.html">top level</a> - <a href="index.html">src/deployment</a> - RuleEngineOwnable2Step.sol<span style="font-size: 80%;"> (source / <a href="RuleEngineOwnable2Step.sol.func-sort-c.html">functions</a>)</span></td>
+            <td width="5%"></td>
+            <td width="15%"></td>
+            <td width="10%" class="headerCovTableHead">Hit</td>
+            <td width="10%" class="headerCovTableHead">Total</td>
+            <td width="15%" class="headerCovTableHead">Coverage</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">lcov.info</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Date:</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntry">7</td>
+            <td class="headerCovTableEntry">7</td>
+            <td class="headerCovTableEntryHi">100.0 %</td>
+          </tr>
+          <tr>
+            <td></td>
+            <td></td>
+            <td></td>
+            <td class="headerItem">Branches:</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntryHi">-</td>
+          </tr>
+          <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+        </table>
+      </td>
+    </tr>
+
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+  </table>
+
+  <table cellpadding=0 cellspacing=0 border=0>
+    <tr>
+      <td><br></td>
+    </tr>
+    <tr>
+      <td>
+<pre class="sourceHeading">           Branch data     Line data    Source code</pre>
+<pre class="source">
+<a name="1"><span class="lineNum">       1 </span>                :            : // SPDX-License-Identifier: MPL-2.0</a>
+<a name="2"><span class="lineNum">       2 </span>                :            : </a>
+<a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
+<a name="4"><span class="lineNum">       4 </span>                :            : </a>
+<a name="5"><span class="lineNum">       5 </span>                :            : /* ==== OpenZeppelin === */</a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {Ownable2Step} from &quot;@openzeppelin/contracts/access/Ownable2Step.sol&quot;;</a>
+<a name="7"><span class="lineNum">       7 </span>                :            : import {Ownable} from &quot;@openzeppelin/contracts/access/Ownable.sol&quot;;</a>
+<a name="8"><span class="lineNum">       8 </span>                :            : import {Context} from &quot;@openzeppelin/contracts/utils/Context.sol&quot;;</a>
+<a name="9"><span class="lineNum">       9 </span>                :            : import {RuleEngineOwnableShared} from &quot;../RuleEngineOwnableShared.sol&quot;;</a>
+<a name="10"><span class="lineNum">      10 </span>                :            : </a>
+<a name="11"><span class="lineNum">      11 </span>                :            : /**</a>
+<a name="12"><span class="lineNum">      12 </span>                :            :  * @title Implementation of a ruleEngine with ERC-173 Ownable2Step access control</a>
+<a name="13"><span class="lineNum">      13 </span>                :            :  */</a>
+<a name="14"><span class="lineNum">      14 </span>                :            : contract RuleEngineOwnable2Step is RuleEngineOwnableShared, Ownable2Step {</a>
+<a name="15"><span class="lineNum">      15 </span>                :            :     /**</a>
+<a name="16"><span class="lineNum">      16 </span>                :            :      * @param owner_ Address of the contract owner (ERC-173)</a>
+<a name="17"><span class="lineNum">      17 </span>                :            :      * @param forwarderIrrevocable Address of the forwarder, required for the gasless support</a>
+<a name="18"><span class="lineNum">      18 </span>                :            :      * @param tokenContract Address of the token contract to bind (can be zero address)</a>
+<a name="19"><span class="lineNum">      19 </span>                :            :      */</a>
+<a name="20"><span class="lineNum">      20 </span>                :            :     constructor(address owner_, address forwarderIrrevocable, address tokenContract)</a>
+<a name="21"><span class="lineNum">      21 </span>                :            :         RuleEngineOwnableShared(forwarderIrrevocable, tokenContract)</a>
+<a name="22"><span class="lineNum">      22 </span>                :            :         Ownable(owner_)</a>
+<a name="23"><span class="lineNum">      23 </span>                :            :     {}</a>
+<a name="24"><span class="lineNum">      24 </span>                :            : </a>
+<a name="25"><span class="lineNum">      25 </span>                :            :     /* ============ ACCESS CONTROL ============ */</a>
+<a name="26"><span class="lineNum">      26 </span>                :            :     /**</a>
+<a name="27"><span class="lineNum">      27 </span>                :            :      * @dev Access control check using Ownable pattern</a>
+<a name="28"><span class="lineNum">      28 </span>                :            :      */</a>
+<a name="29"><span class="lineNum">      29 </span>                :<span class="lineCov">          5 :     function _onlyRulesManager() internal virtual override onlyOwner {}</span></a>
+<a name="30"><span class="lineNum">      30 </span>                :<span class="lineCov">          2 :     function _onlyRulesLimitManager() internal virtual override onlyOwner {}</span></a>
+<a name="31"><span class="lineNum">      31 </span>                :            : </a>
+<a name="32"><span class="lineNum">      32 </span>                :            :     /**</a>
+<a name="33"><span class="lineNum">      33 </span>                :            :      * @dev Access control check using Ownable pattern</a>
+<a name="34"><span class="lineNum">      34 </span>                :            :      */</a>
+<a name="35"><span class="lineNum">      35 </span>                :<span class="lineCov">          3 :     function _onlyComplianceManager() internal virtual override onlyOwner {}</span></a>
+<a name="36"><span class="lineNum">      36 </span>                :            : </a>
+<a name="37"><span class="lineNum">      37 </span>                :            :     /**</a>
+<a name="38"><span class="lineNum">      38 </span>                :            :      * @notice Starts ownership transfer to `newOwner`.</a>
+<a name="39"><span class="lineNum">      39 </span>                :            :      * @dev Reverts when `newOwner` is already configured as a rule.</a>
+<a name="40"><span class="lineNum">      40 </span>                :            :      */</a>
+<a name="41"><span class="lineNum">      41 </span>                :<span class="lineCov">          6 :     function transferOwnership(address newOwner) public virtual override onlyOwner {</span></a>
+<a name="42"><span class="lineNum">      42 </span>                :<span class="lineCov">          6 :         RuleEngineOwnableShared._checkOwnershipTransferTarget(newOwner);</span></a>
+<a name="43"><span class="lineNum">      43 </span>                :<span class="lineCov">          5 :         Ownable2Step.transferOwnership(newOwner);</span></a>
+<a name="44"><span class="lineNum">      44 </span>                :            :     }</a>
+<a name="45"><span class="lineNum">      45 </span>                :            : </a>
+<a name="46"><span class="lineNum">      46 </span>                :            :     /**</a>
+<a name="47"><span class="lineNum">      47 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="48"><span class="lineNum">      48 </span>                :            :      */</a>
+<a name="49"><span class="lineNum">      49 </span>                :<span class="lineCov">         35 :     function _msgSender() internal view virtual override(RuleEngineOwnableShared, Context) returns (address sender) {</span></a>
+<a name="50"><span class="lineNum">      50 </span>                :<span class="lineCov">         35 :         return RuleEngineOwnableShared._msgSender();</span></a>
+<a name="51"><span class="lineNum">      51 </span>                :            :     }</a>
+<a name="52"><span class="lineNum">      52 </span>                :            : </a>
+<a name="53"><span class="lineNum">      53 </span>                :            :     /**</a>
+<a name="54"><span class="lineNum">      54 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="55"><span class="lineNum">      55 </span>                :            :      */</a>
+<a name="56"><span class="lineNum">      56 </span>                :<span class="lineCov">          1 :     function _msgData() internal view virtual override(RuleEngineOwnableShared, Context) returns (bytes calldata) {</span></a>
+<a name="57"><span class="lineNum">      57 </span>                :<span class="lineCov">          1 :         return RuleEngineOwnableShared._msgData();</span></a>
+<a name="58"><span class="lineNum">      58 </span>                :            :     }</a>
+<a name="59"><span class="lineNum">      59 </span>                :            : </a>
+<a name="60"><span class="lineNum">      60 </span>                :            :     /**</a>
+<a name="61"><span class="lineNum">      61 </span>                :            :      * @dev This surcharge is not necessary if you do not use the MetaTxModule</a>
+<a name="62"><span class="lineNum">      62 </span>                :            :      */</a>
+<a name="63"><span class="lineNum">      63 </span>                :<span class="lineCov">         36 :     function _contextSuffixLength() internal view virtual override(RuleEngineOwnableShared, Context) returns (uint256) {</span></a>
+<a name="64"><span class="lineNum">      64 </span>                :<span class="lineCov">         36 :         return RuleEngineOwnableShared._contextSuffixLength();</span></a>
+<a name="65"><span class="lineNum">      65 </span>                :            :     }</a>
+<a name="66"><span class="lineNum">      66 </span>                :            : }</a>
+</pre>
+      </td>
+    </tr>
+  </table>
+  <br>
+
+  <table width="100%" border=0 cellspacing=0 cellpadding=0>
+    <tr><td class="ruler"><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
+    <tr><td class="versionInfo">Generated by: <a href="https://github.com/linux-test-project/lcov" target="_parent">LCOV version 1.16</a></td></tr>
+  </table>
+  <br>
+
+</body>
+</html>
diff --git a/doc/coverage/coverage/src/deployment/index-sort-b.html b/doc/coverage/coverage/src/deployment/index-sort-b.html
index f15808a..ed7dd14 100644
--- a/doc/coverage/coverage/src/deployment/index-sort-b.html
+++ b/doc/coverage/coverage/src/deployment/index-sort-b.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">49</td>
+            <td class="headerCovTableEntry">49</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">15</td>
-            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">24</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -87,11 +87,23 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">18 / 18</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
+    </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnable2Step.sol.gcov.html">RuleEngineOwnable2Step.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">1 / 1</td>
+      <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngine.sol.gcov.html">RuleEngine.sol</a></td>
@@ -99,11 +111,11 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">24 / 24</td>
+      <td class="coverNumHi">25 / 25</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">8 / 8</td>
+      <td class="coverNumHi">10 / 10</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverNumHi">5 / 5</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/deployment/index-sort-f.html b/doc/coverage/coverage/src/deployment/index-sort-f.html
index c49a9ca..465762f 100644
--- a/doc/coverage/coverage/src/deployment/index-sort-f.html
+++ b/doc/coverage/coverage/src/deployment/index-sort-f.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">49</td>
+            <td class="headerCovTableEntry">49</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">15</td>
-            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">24</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -87,11 +87,23 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">18 / 18</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
+    </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnable2Step.sol.gcov.html">RuleEngineOwnable2Step.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">1 / 1</td>
+      <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngine.sol.gcov.html">RuleEngine.sol</a></td>
@@ -99,11 +111,11 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">24 / 24</td>
+      <td class="coverNumHi">25 / 25</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">8 / 8</td>
+      <td class="coverNumHi">10 / 10</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverNumHi">5 / 5</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/deployment/index-sort-l.html b/doc/coverage/coverage/src/deployment/index-sort-l.html
index 298c674..761e2e1 100644
--- a/doc/coverage/coverage/src/deployment/index-sort-l.html
+++ b/doc/coverage/coverage/src/deployment/index-sort-l.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">49</td>
+            <td class="headerCovTableEntry">49</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">15</td>
-            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">24</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -87,11 +87,23 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">18 / 18</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
+    </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnable2Step.sol.gcov.html">RuleEngineOwnable2Step.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">1 / 1</td>
+      <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngine.sol.gcov.html">RuleEngine.sol</a></td>
@@ -99,11 +111,11 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">24 / 24</td>
+      <td class="coverNumHi">25 / 25</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">8 / 8</td>
+      <td class="coverNumHi">10 / 10</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverNumHi">5 / 5</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/deployment/index.html b/doc/coverage/coverage/src/deployment/index.html
index c7383b6..02b7147 100644
--- a/doc/coverage/coverage/src/deployment/index.html
+++ b/doc/coverage/coverage/src/deployment/index.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">49</td>
+            <td class="headerCovTableEntry">49</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">15</td>
-            <td class="headerCovTableEntry">15</td>
+            <td class="headerCovTableEntry">24</td>
+            <td class="headerCovTableEntry">24</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -87,11 +87,11 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">24 / 24</td>
+      <td class="coverNumHi">25 / 25</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">8 / 8</td>
+      <td class="coverNumHi">10 / 10</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">4 / 4</td>
+      <td class="coverNumHi">5 / 5</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngineOwnable.sol.gcov.html">RuleEngineOwnable.sol</a></td>
@@ -99,11 +99,23 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">18 / 18</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
+    </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnable2Step.sol.gcov.html">RuleEngineOwnable2Step.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">12 / 12</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">1 / 1</td>
+      <td class="coverNumHi">7 / 7</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/index-sort-b.html b/doc/coverage/coverage/src/index-sort-b.html
index 9424617..bd41fc0 100644
--- a/doc/coverage/coverage/src/index-sort-b.html
+++ b/doc/coverage/coverage/src/index-sort-b.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">63</td>
+            <td class="headerCovTableEntry">63</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">20</td>
+            <td class="headerCovTableEntry">20</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
@@ -81,15 +81,27 @@
       <td class="tableHead" colspan=2>Functions <span class="tableHeadSort"><a href="index-sort-f.html"><img src="../updown.png" width=10 height=14 alt="Sort by function coverage" title="Sort by function coverage" border=0></a></span></td>
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></span></td>
     </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnableShared.sol.gcov.html">RuleEngineOwnableShared.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">15 / 15</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">6 / 6</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">2 / 2</td>
+    </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngineBase.sol.gcov.html">RuleEngineBase.sol</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">48 / 48</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
+      <td class="coverNumHi">14 / 14</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">4 / 4</td>
     </tr>
diff --git a/doc/coverage/coverage/src/index-sort-f.html b/doc/coverage/coverage/src/index-sort-f.html
index b39eba9..6a0b8cd 100644
--- a/doc/coverage/coverage/src/index-sort-f.html
+++ b/doc/coverage/coverage/src/index-sort-f.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">63</td>
+            <td class="headerCovTableEntry">63</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">20</td>
+            <td class="headerCovTableEntry">20</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
@@ -81,15 +81,27 @@
       <td class="tableHead" colspan=2>Functions <span class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by function coverage" title="Sort by function coverage" border=0></span></td>
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><a href="index-sort-b.html"><img src="../updown.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></a></span></td>
     </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnableShared.sol.gcov.html">RuleEngineOwnableShared.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">15 / 15</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">6 / 6</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">2 / 2</td>
+    </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngineBase.sol.gcov.html">RuleEngineBase.sol</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">48 / 48</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
+      <td class="coverNumHi">14 / 14</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">4 / 4</td>
     </tr>
diff --git a/doc/coverage/coverage/src/index-sort-l.html b/doc/coverage/coverage/src/index-sort-l.html
index b0d14a3..36d479c 100644
--- a/doc/coverage/coverage/src/index-sort-l.html
+++ b/doc/coverage/coverage/src/index-sort-l.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">63</td>
+            <td class="headerCovTableEntry">63</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">20</td>
+            <td class="headerCovTableEntry">20</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
@@ -81,15 +81,27 @@
       <td class="tableHead" colspan=2>Functions <span class="tableHeadSort"><a href="index-sort-f.html"><img src="../updown.png" width=10 height=14 alt="Sort by function coverage" title="Sort by function coverage" border=0></a></span></td>
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><a href="index-sort-b.html"><img src="../updown.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></a></span></td>
     </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnableShared.sol.gcov.html">RuleEngineOwnableShared.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">15 / 15</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">6 / 6</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">2 / 2</td>
+    </tr>
     <tr>
       <td class="coverFile"><a href="RuleEngineBase.sol.gcov.html">RuleEngineBase.sol</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">48 / 48</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
+      <td class="coverNumHi">14 / 14</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">4 / 4</td>
     </tr>
diff --git a/doc/coverage/coverage/src/index.html b/doc/coverage/coverage/src/index.html
index 26bcfa8..eaa4aa1 100644
--- a/doc/coverage/coverage/src/index.html
+++ b/doc/coverage/coverage/src/index.html
@@ -31,17 +31,17 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">42</td>
-            <td class="headerCovTableEntry">42</td>
+            <td class="headerCovTableEntry">63</td>
+            <td class="headerCovTableEntry">63</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntry">13</td>
+            <td class="headerCovTableEntry">20</td>
+            <td class="headerCovTableEntry">20</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr>
@@ -49,8 +49,8 @@
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">4</td>
-            <td class="headerCovTableEntry">4</td>
+            <td class="headerCovTableEntry">6</td>
+            <td class="headerCovTableEntry">6</td>
             <td class="headerCovTableEntryHi">100.0 %</td>
           </tr>
           <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
@@ -87,12 +87,24 @@
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">42 / 42</td>
+      <td class="coverNumHi">48 / 48</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">13 / 13</td>
+      <td class="coverNumHi">14 / 14</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
       <td class="coverNumHi">4 / 4</td>
     </tr>
+    <tr>
+      <td class="coverFile"><a href="RuleEngineOwnableShared.sol.gcov.html">RuleEngineOwnableShared.sol</a></td>
+      <td class="coverBar" align="center">
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+      </td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">15 / 15</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">6 / 6</td>
+      <td class="coverPerHi">100.0&nbsp;%</td>
+      <td class="coverNumHi">2 / 2</td>
+    </tr>
   </table>
   </center>
   <br>
diff --git a/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func-sort-c.html b/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func-sort-c.html
index 1447d4e..61a292e 100644
--- a/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func-sort-c.html
+++ b/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func-sort-c.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">28</td>
-            <td class="headerCovTableEntry">28</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntry">34</td>
+            <td class="headerCovTableEntryHi">91.2 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntryMed">83.3 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">11</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntryMed">84.6 %</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">14</td>
+            <td class="headerCovTableEntryMed">85.7 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -69,11 +69,19 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#79">ERC3643ComplianceModule.getTokenBounds</a></td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#125">ERC3643ComplianceModule._onlyComplianceManager</a></td>
+              <td class="coverFnLo">0</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#32">ERC3643ComplianceModule.onlyComplianceManager</a></td>
+              <td class="coverFnLo">0</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#85">ERC3643ComplianceModule.getTokenBounds</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#68">ERC3643ComplianceModule.getTokenBound</a></td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#74">ERC3643ComplianceModule.getTokenBound</a></td>
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
@@ -81,32 +89,32 @@
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#87">ERC3643ComplianceModule._unbindToken</a></td>
-              <td class="coverFnHi">9</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#93">ERC3643ComplianceModule._unbindToken</a></td>
+              <td class="coverFnHi">12</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#58">ERC3643ComplianceModule.unbindToken</a></td>
-              <td class="coverFnHi">10</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#63">ERC3643ComplianceModule.unbindToken</a></td>
+              <td class="coverFnHi">16</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#63">ERC3643ComplianceModule.isTokenBound</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#69">ERC3643ComplianceModule.isTokenBound</a></td>
+              <td class="coverFnHi">21</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#48">ERC3643ComplianceModule.bindToken</a></td>
-              <td class="coverFnHi">26</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#109">ERC3643ComplianceModule._checkBoundToken</a></td>
+              <td class="coverFnHi">31</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#32">ERC3643ComplianceModule.onlyComplianceManager</a></td>
-              <td class="coverFnHi">26</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#50">ERC3643ComplianceModule.bindToken</a></td>
+              <td class="coverFnHi">38</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#103">ERC3643ComplianceModule._checkBoundToken</a></td>
-              <td class="coverFnHi">31</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#119">ERC3643ComplianceModule._authorizeComplianceBindingChange</a></td>
+              <td class="coverFnHi">54</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#95">ERC3643ComplianceModule._bindToken</a></td>
-              <td class="coverFnHi">57</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#101">ERC3643ComplianceModule._bindToken</a></td>
+              <td class="coverFnHi">66</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func.html b/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func.html
index 53bed1c..f5ade38 100644
--- a/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func.html
+++ b/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.func.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">28</td>
-            <td class="headerCovTableEntry">28</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntry">34</td>
+            <td class="headerCovTableEntryHi">91.2 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntryMed">83.3 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">11</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntryMed">84.6 %</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">14</td>
+            <td class="headerCovTableEntryMed">85.7 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -69,32 +69,40 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="ERC3643ComplianceModule.sol.func-sort-c.html"><img src="../../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#95">ERC3643ComplianceModule._bindToken</a></td>
-              <td class="coverFnHi">57</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#119">ERC3643ComplianceModule._authorizeComplianceBindingChange</a></td>
+              <td class="coverFnHi">54</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#101">ERC3643ComplianceModule._bindToken</a></td>
+              <td class="coverFnHi">66</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#103">ERC3643ComplianceModule._checkBoundToken</a></td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#109">ERC3643ComplianceModule._checkBoundToken</a></td>
               <td class="coverFnHi">31</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#87">ERC3643ComplianceModule._unbindToken</a></td>
-              <td class="coverFnHi">9</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#125">ERC3643ComplianceModule._onlyComplianceManager</a></td>
+              <td class="coverFnLo">0</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#93">ERC3643ComplianceModule._unbindToken</a></td>
+              <td class="coverFnHi">12</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#48">ERC3643ComplianceModule.bindToken</a></td>
-              <td class="coverFnHi">26</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#50">ERC3643ComplianceModule.bindToken</a></td>
+              <td class="coverFnHi">38</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#68">ERC3643ComplianceModule.getTokenBound</a></td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#74">ERC3643ComplianceModule.getTokenBound</a></td>
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#79">ERC3643ComplianceModule.getTokenBounds</a></td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#85">ERC3643ComplianceModule.getTokenBounds</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#63">ERC3643ComplianceModule.isTokenBound</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#69">ERC3643ComplianceModule.isTokenBound</a></td>
+              <td class="coverFnHi">21</td>
             </tr>
     <tr>
               <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#27">ERC3643ComplianceModule.onlyBoundToken</a></td>
@@ -102,11 +110,11 @@
             </tr>
     <tr>
               <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#32">ERC3643ComplianceModule.onlyComplianceManager</a></td>
-              <td class="coverFnHi">26</td>
+              <td class="coverFnLo">0</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#58">ERC3643ComplianceModule.unbindToken</a></td>
-              <td class="coverFnHi">10</td>
+              <td class="coverFn"><a href="ERC3643ComplianceModule.sol.gcov.html#63">ERC3643ComplianceModule.unbindToken</a></td>
+              <td class="coverFnHi">16</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.gcov.html b/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.gcov.html
index 0dfe087..232a450 100644
--- a/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.gcov.html
+++ b/doc/coverage/coverage/src/modules/ERC3643ComplianceModule.sol.gcov.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">28</td>
-            <td class="headerCovTableEntry">28</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntry">34</td>
+            <td class="headerCovTableEntryHi">91.2 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntryMed">83.3 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">11</td>
-            <td class="headerCovTableEntry">13</td>
-            <td class="headerCovTableEntryMed">84.6 %</td>
+            <td class="headerCovTableEntry">12</td>
+            <td class="headerCovTableEntry">14</td>
+            <td class="headerCovTableEntryMed">85.7 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -74,8 +74,8 @@
 <a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
 <a name="4"><span class="lineNum">       4 </span>                :            : </a>
 <a name="5"><span class="lineNum">       5 </span>                :            : /* ==== OpenZeppelin === */</a>
-<a name="6"><span class="lineNum">       6 </span>                :            : import {EnumerableSet} from &quot;OZ/utils/structs/EnumerableSet.sol&quot;;</a>
-<a name="7"><span class="lineNum">       7 </span>                :            : import {Context} from &quot;OZ/utils/Context.sol&quot;;</a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {EnumerableSet} from &quot;@openzeppelin/contracts/utils/structs/EnumerableSet.sol&quot;;</a>
+<a name="7"><span class="lineNum">       7 </span>                :            : import {Context} from &quot;@openzeppelin/contracts/utils/Context.sol&quot;;</a>
 <a name="8"><span class="lineNum">       8 </span>                :            : /* ==== Interface and other library === */</a>
 <a name="9"><span class="lineNum">       9 </span>                :            : import {IERC3643Compliance} from &quot;../interfaces/IERC3643Compliance.sol&quot;;</a>
 <a name="10"><span class="lineNum">      10 </span>                :            : </a>
@@ -102,8 +102,8 @@
 <a name="31"><span class="lineNum">      31 </span>                :            :         _;</a>
 <a name="32"><span class="lineNum">      32 </span>                :            :     }</a>
 <a name="33"><span class="lineNum">      33 </span>                :            : </a>
-<a name="34"><span class="lineNum">      34 </span>                :<span class="lineCov">         26 :     modifier onlyComplianceManager() {</span></a>
-<a name="35"><span class="lineNum">      35 </span>                :<span class="lineCov">         26 :         _onlyComplianceManager();</span></a>
+<a name="34"><span class="lineNum">      34 </span>                :<span class="lineNoCov">          0 :     modifier onlyComplianceManager() {</span></a>
+<a name="35"><span class="lineNum">      35 </span>                :<span class="lineNoCov">          0 :         _onlyComplianceManager();</span></a>
 <a name="36"><span class="lineNum">      36 </span>                :            :         _;</a>
 <a name="37"><span class="lineNum">      37 </span>                :            :     }</a>
 <a name="38"><span class="lineNum">      38 </span>                :            : </a>
@@ -117,70 +117,86 @@
 <a name="46"><span class="lineNum">      46 </span>                :            :      * @dev Operator warning: &quot;multi-tenant&quot; means one RuleEngine is shared by</a>
 <a name="47"><span class="lineNum">      47 </span>                :            :      * multiple token contracts. In that setup, bind only tokens that are equally</a>
 <a name="48"><span class="lineNum">      48 </span>                :            :      * trusted and governed together.</a>
-<a name="49"><span class="lineNum">      49 </span>                :            :      */</a>
-<a name="50"><span class="lineNum">      50 </span>                :<span class="lineCov">         26 :     function bindToken(address token) public virtual override onlyComplianceManager {</span></a>
-<a name="51"><span class="lineNum">      51 </span>                :<span class="lineCov">         25 :         _bindToken(token);</span></a>
-<a name="52"><span class="lineNum">      52 </span>                :            :     }</a>
-<a name="53"><span class="lineNum">      53 </span>                :            : </a>
-<a name="54"><span class="lineNum">      54 </span>                :            :     /**</a>
-<a name="55"><span class="lineNum">      55 </span>                :            :      * @inheritdoc IERC3643Compliance</a>
-<a name="56"><span class="lineNum">      56 </span>                :            :      * @dev Operator warning: unbinding is an administrative operation and does not</a>
-<a name="57"><span class="lineNum">      57 </span>                :            :      * erase any state already stored by external rule contracts in a previously</a>
-<a name="58"><span class="lineNum">      58 </span>                :            :      * shared (&quot;multi-tenant&quot;) setup.</a>
-<a name="59"><span class="lineNum">      59 </span>                :            :      */</a>
-<a name="60"><span class="lineNum">      60 </span>                :<span class="lineCov">         10 :     function unbindToken(address token) public virtual override onlyComplianceManager {</span></a>
-<a name="61"><span class="lineNum">      61 </span>                :<span class="lineCov">          9 :         _unbindToken(token);</span></a>
-<a name="62"><span class="lineNum">      62 </span>                :            :     }</a>
-<a name="63"><span class="lineNum">      63 </span>                :            : </a>
-<a name="64"><span class="lineNum">      64 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
-<a name="65"><span class="lineNum">      65 </span>                :<span class="lineCov">         15 :     function isTokenBound(address token) public view virtual override returns (bool) {</span></a>
-<a name="66"><span class="lineNum">      66 </span>                :<span class="lineCov">         15 :         return _boundTokens.contains(token);</span></a>
-<a name="67"><span class="lineNum">      67 </span>                :            :     }</a>
-<a name="68"><span class="lineNum">      68 </span>                :            : </a>
-<a name="69"><span class="lineNum">      69 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
-<a name="70"><span class="lineNum">      70 </span>                :<span class="lineCov">          5 :     function getTokenBound() public view virtual override returns (address) {</span></a>
-<a name="71"><span class="lineNum">      71 </span>        [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span><span class="branchCov" title="Branch 1 was taken 2 times"> + </span>]:<span class="lineCov">          5 :         if (_boundTokens.length() &gt; 0) {</span></a>
-<a name="72"><span class="lineNum">      72 </span>                :            :             // Note that there are no guarantees on the ordering of values inside the array,</a>
-<a name="73"><span class="lineNum">      73 </span>                :            :             // and it may change when more values are added or removed.</a>
-<a name="74"><span class="lineNum">      74 </span>                :<span class="lineCov">          3 :             return _boundTokens.at(0);</span></a>
-<a name="75"><span class="lineNum">      75 </span>                :            :         } else {</a>
-<a name="76"><span class="lineNum">      76 </span>                :<span class="lineCov">          2 :             return address(0);</span></a>
-<a name="77"><span class="lineNum">      77 </span>                :            :         }</a>
-<a name="78"><span class="lineNum">      78 </span>                :            :     }</a>
-<a name="79"><span class="lineNum">      79 </span>                :            : </a>
-<a name="80"><span class="lineNum">      80 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
-<a name="81"><span class="lineNum">      81 </span>                :<span class="lineCov">          4 :     function getTokenBounds() public view override returns (address[] memory) {</span></a>
-<a name="82"><span class="lineNum">      82 </span>                :<span class="lineCov">          4 :         return _boundTokens.values();</span></a>
-<a name="83"><span class="lineNum">      83 </span>                :            :     }</a>
-<a name="84"><span class="lineNum">      84 </span>                :            : </a>
-<a name="85"><span class="lineNum">      85 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
-<a name="86"><span class="lineNum">      86 </span>                :            :                             INTERNAL/PRIVATE FUNCTIONS</a>
-<a name="87"><span class="lineNum">      87 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
-<a name="88"><span class="lineNum">      88 </span>                :            : </a>
-<a name="89"><span class="lineNum">      89 </span>                :<span class="lineCov">          9 :     function _unbindToken(address token) internal {</span></a>
-<a name="90"><span class="lineNum">      90 </span>        [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span><span class="branchCov" title="Branch 1 was taken 7 times"> + </span>]:<span class="lineCov">          9 :         require(_boundTokens.contains(token), RuleEngine_ERC3643Compliance_TokenNotBound());</span></a>
-<a name="91"><span class="lineNum">      91 </span>                :            :         // Should never revert because we check if the token address is already set before</a>
-<a name="92"><span class="lineNum">      92 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 7 times"> + </span>]:<span class="lineCov">          7 :         require(_boundTokens.remove(token), RuleEngine_ERC3643Compliance_OperationNotSuccessful());</span></a>
-<a name="93"><span class="lineNum">      93 </span>                :            : </a>
-<a name="94"><span class="lineNum">      94 </span>                :<span class="lineCov">          7 :         emit TokenUnbound(token);</span></a>
-<a name="95"><span class="lineNum">      95 </span>                :            :     }</a>
-<a name="96"><span class="lineNum">      96 </span>                :            : </a>
-<a name="97"><span class="lineNum">      97 </span>                :<span class="lineCov">         57 :     function _bindToken(address token) internal {</span></a>
-<a name="98"><span class="lineNum">      98 </span>        [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span><span class="branchCov" title="Branch 1 was taken 55 times"> + </span>]:<span class="lineCov">         57 :         require(token != address(0), RuleEngine_ERC3643Compliance_InvalidTokenAddress());</span></a>
-<a name="99"><span class="lineNum">      99 </span>        [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span><span class="branchCov" title="Branch 1 was taken 53 times"> + </span>]:<span class="lineCov">         55 :         require(!_boundTokens.contains(token), RuleEngine_ERC3643Compliance_TokenAlreadyBound());</span></a>
-<a name="100"><span class="lineNum">     100 </span>                :            :         // Should never revert because we check if the token address is already set before</a>
-<a name="101"><span class="lineNum">     101 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 53 times"> + </span>]:<span class="lineCov">         53 :         require(_boundTokens.add(token), RuleEngine_ERC3643Compliance_OperationNotSuccessful());</span></a>
-<a name="102"><span class="lineNum">     102 </span>                :<span class="lineCov">         53 :         emit TokenBound(token);</span></a>
-<a name="103"><span class="lineNum">     103 </span>                :            :     }</a>
-<a name="104"><span class="lineNum">     104 </span>                :            : </a>
-<a name="105"><span class="lineNum">     105 </span>                :<span class="lineCov">         31 :     function _checkBoundToken() internal view virtual{</span></a>
-<a name="106"><span class="lineNum">     106 </span>           [<span class="branchCov" title="Branch 0 was taken 7 times"> + </span>]:<span class="lineCov">         31 :         if (!_boundTokens.contains(_msgSender())) {</span></a>
-<a name="107"><span class="lineNum">     107 </span>                :<span class="lineCov">          7 :             revert RuleEngine_ERC3643Compliance_UnauthorizedCaller();</span></a>
-<a name="108"><span class="lineNum">     108 </span>                :            :         }</a>
+<a name="49"><span class="lineNum">      49 </span>                :            :      * @dev T-REX compatibility: allows token self-binding when caller equals</a>
+<a name="50"><span class="lineNum">      50 </span>                :            :      * `token`, because TREX `Token.setCompliance` invokes `compliance.bindToken(address(this))`.</a>
+<a name="51"><span class="lineNum">      51 </span>                :            :      */</a>
+<a name="52"><span class="lineNum">      52 </span>                :<span class="lineCov">         38 :     function bindToken(address token) public virtual override {</span></a>
+<a name="53"><span class="lineNum">      53 </span>                :<span class="lineCov">         38 :         _authorizeComplianceBindingChange(token);</span></a>
+<a name="54"><span class="lineNum">      54 </span>                :<span class="lineCov">         34 :         _bindToken(token);</span></a>
+<a name="55"><span class="lineNum">      55 </span>                :            :     }</a>
+<a name="56"><span class="lineNum">      56 </span>                :            : </a>
+<a name="57"><span class="lineNum">      57 </span>                :            :     /**</a>
+<a name="58"><span class="lineNum">      58 </span>                :            :      * @inheritdoc IERC3643Compliance</a>
+<a name="59"><span class="lineNum">      59 </span>                :            :      * @dev Operator warning: unbinding is an administrative operation and does not</a>
+<a name="60"><span class="lineNum">      60 </span>                :            :      * erase any state already stored by external rule contracts in a previously</a>
+<a name="61"><span class="lineNum">      61 </span>                :            :      * shared (&quot;multi-tenant&quot;) setup.</a>
+<a name="62"><span class="lineNum">      62 </span>                :            :      * @dev T-REX compatibility: allows token self-unbinding when caller equals</a>
+<a name="63"><span class="lineNum">      63 </span>                :            :      * `token`, because TREX token contracts may call `compliance.unbindToken(address(this))`.</a>
+<a name="64"><span class="lineNum">      64 </span>                :            :      */</a>
+<a name="65"><span class="lineNum">      65 </span>                :<span class="lineCov">         16 :     function unbindToken(address token) public virtual override {</span></a>
+<a name="66"><span class="lineNum">      66 </span>                :<span class="lineCov">         16 :         _authorizeComplianceBindingChange(token);</span></a>
+<a name="67"><span class="lineNum">      67 </span>                :<span class="lineCov">         12 :         _unbindToken(token);</span></a>
+<a name="68"><span class="lineNum">      68 </span>                :            :     }</a>
+<a name="69"><span class="lineNum">      69 </span>                :            : </a>
+<a name="70"><span class="lineNum">      70 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
+<a name="71"><span class="lineNum">      71 </span>                :<span class="lineCov">         21 :     function isTokenBound(address token) public view virtual override returns (bool) {</span></a>
+<a name="72"><span class="lineNum">      72 </span>                :<span class="lineCov">         21 :         return _boundTokens.contains(token);</span></a>
+<a name="73"><span class="lineNum">      73 </span>                :            :     }</a>
+<a name="74"><span class="lineNum">      74 </span>                :            : </a>
+<a name="75"><span class="lineNum">      75 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
+<a name="76"><span class="lineNum">      76 </span>                :<span class="lineCov">          5 :     function getTokenBound() public view virtual override returns (address) {</span></a>
+<a name="77"><span class="lineNum">      77 </span>        [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span><span class="branchCov" title="Branch 1 was taken 2 times"> + </span>]:<span class="lineCov">          5 :         if (_boundTokens.length() &gt; 0) {</span></a>
+<a name="78"><span class="lineNum">      78 </span>                :            :             // Note that there are no guarantees on the ordering of values inside the array,</a>
+<a name="79"><span class="lineNum">      79 </span>                :            :             // and it may change when more values are added or removed.</a>
+<a name="80"><span class="lineNum">      80 </span>                :<span class="lineCov">          3 :             return _boundTokens.at(0);</span></a>
+<a name="81"><span class="lineNum">      81 </span>                :            :         } else {</a>
+<a name="82"><span class="lineNum">      82 </span>                :<span class="lineCov">          2 :             return address(0);</span></a>
+<a name="83"><span class="lineNum">      83 </span>                :            :         }</a>
+<a name="84"><span class="lineNum">      84 </span>                :            :     }</a>
+<a name="85"><span class="lineNum">      85 </span>                :            : </a>
+<a name="86"><span class="lineNum">      86 </span>                :            :     /// @inheritdoc IERC3643Compliance</a>
+<a name="87"><span class="lineNum">      87 </span>                :<span class="lineCov">          4 :     function getTokenBounds() public view override returns (address[] memory) {</span></a>
+<a name="88"><span class="lineNum">      88 </span>                :<span class="lineCov">          4 :         return _boundTokens.values();</span></a>
+<a name="89"><span class="lineNum">      89 </span>                :            :     }</a>
+<a name="90"><span class="lineNum">      90 </span>                :            : </a>
+<a name="91"><span class="lineNum">      91 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
+<a name="92"><span class="lineNum">      92 </span>                :            :                             INTERNAL/PRIVATE FUNCTIONS</a>
+<a name="93"><span class="lineNum">      93 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
+<a name="94"><span class="lineNum">      94 </span>                :            : </a>
+<a name="95"><span class="lineNum">      95 </span>                :<span class="lineCov">         12 :     function _unbindToken(address token) internal {</span></a>
+<a name="96"><span class="lineNum">      96 </span>        [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span><span class="branchCov" title="Branch 1 was taken 10 times"> + </span>]:<span class="lineCov">         12 :         require(_boundTokens.contains(token), RuleEngine_ERC3643Compliance_TokenNotBound());</span></a>
+<a name="97"><span class="lineNum">      97 </span>                :            :         // Should never revert because we check if the token address is already set before</a>
+<a name="98"><span class="lineNum">      98 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 10 times"> + </span>]:<span class="lineCov">         10 :         require(_boundTokens.remove(token), RuleEngine_ERC3643Compliance_OperationNotSuccessful());</span></a>
+<a name="99"><span class="lineNum">      99 </span>                :            : </a>
+<a name="100"><span class="lineNum">     100 </span>                :<span class="lineCov">         10 :         emit TokenUnbound(token);</span></a>
+<a name="101"><span class="lineNum">     101 </span>                :            :     }</a>
+<a name="102"><span class="lineNum">     102 </span>                :            : </a>
+<a name="103"><span class="lineNum">     103 </span>                :<span class="lineCov">         66 :     function _bindToken(address token) internal {</span></a>
+<a name="104"><span class="lineNum">     104 </span>        [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span><span class="branchCov" title="Branch 1 was taken 64 times"> + </span>]:<span class="lineCov">         66 :         require(token != address(0), RuleEngine_ERC3643Compliance_InvalidTokenAddress());</span></a>
+<a name="105"><span class="lineNum">     105 </span>        [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span><span class="branchCov" title="Branch 1 was taken 62 times"> + </span>]:<span class="lineCov">         64 :         require(!_boundTokens.contains(token), RuleEngine_ERC3643Compliance_TokenAlreadyBound());</span></a>
+<a name="106"><span class="lineNum">     106 </span>                :            :         // Should never revert because we check if the token address is already set before</a>
+<a name="107"><span class="lineNum">     107 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 62 times"> + </span>]:<span class="lineCov">         62 :         require(_boundTokens.add(token), RuleEngine_ERC3643Compliance_OperationNotSuccessful());</span></a>
+<a name="108"><span class="lineNum">     108 </span>                :<span class="lineCov">         62 :         emit TokenBound(token);</span></a>
 <a name="109"><span class="lineNum">     109 </span>                :            :     }</a>
 <a name="110"><span class="lineNum">     110 </span>                :            : </a>
-<a name="111"><span class="lineNum">     111 </span>                :            :     function _onlyComplianceManager() internal virtual;</a>
-<a name="112"><span class="lineNum">     112 </span>                :            : }</a>
+<a name="111"><span class="lineNum">     111 </span>                :<span class="lineCov">         31 :     function _checkBoundToken() internal view virtual {</span></a>
+<a name="112"><span class="lineNum">     112 </span>           [<span class="branchCov" title="Branch 0 was taken 7 times"> + </span>]:<span class="lineCov">         31 :         if (!_boundTokens.contains(_msgSender())) {</span></a>
+<a name="113"><span class="lineNum">     113 </span>                :<span class="lineCov">          7 :             revert RuleEngine_ERC3643Compliance_UnauthorizedCaller();</span></a>
+<a name="114"><span class="lineNum">     114 </span>                :            :         }</a>
+<a name="115"><span class="lineNum">     115 </span>                :            :     }</a>
+<a name="116"><span class="lineNum">     116 </span>                :            : </a>
+<a name="117"><span class="lineNum">     117 </span>                :            :     /**</a>
+<a name="118"><span class="lineNum">     118 </span>                :            :      * @dev Authorizes bind/unbind operations.</a>
+<a name="119"><span class="lineNum">     119 </span>                :            :      * Allows compliance manager, or token self-calls for T-REX compatibility.</a>
+<a name="120"><span class="lineNum">     120 </span>                :            :      */</a>
+<a name="121"><span class="lineNum">     121 </span>                :<span class="lineCov">         54 :     function _authorizeComplianceBindingChange(address token) internal virtual {</span></a>
+<a name="122"><span class="lineNum">     122 </span>           [<span class="branchCov" title="Branch 0 was taken 43 times"> + </span>]:<span class="lineCov">         54 :         if (_msgSender() != token) {</span></a>
+<a name="123"><span class="lineNum">     123 </span>                :<span class="lineCov">         43 :             _onlyComplianceManager();</span></a>
+<a name="124"><span class="lineNum">     124 </span>                :            :         }</a>
+<a name="125"><span class="lineNum">     125 </span>                :            :     }</a>
+<a name="126"><span class="lineNum">     126 </span>                :            : </a>
+<a name="127"><span class="lineNum">     127 </span>                :<span class="lineNoCov">          0 :     function _onlyComplianceManager() internal virtual;</span></a>
+<a name="128"><span class="lineNum">     128 </span>                :            : }</a>
 </pre>
       </td>
     </tr>
diff --git a/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func-sort-c.html b/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func-sort-c.html
index 9c2e3a2..e3c9a39 100644
--- a/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func-sort-c.html
+++ b/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func-sort-c.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">49</td>
-            <td class="headerCovTableEntry">49</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">62</td>
+            <td class="headerCovTableEntry">64</td>
+            <td class="headerCovTableEntryHi">96.9 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">17</td>
+            <td class="headerCovTableEntry">19</td>
+            <td class="headerCovTableEntryMed">89.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">11</td>
             <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntryMed">78.6 %</td>
+            <td class="headerCovTableEntry">17</td>
+            <td class="headerCovTableEntryMed">82.4 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -69,60 +69,80 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><img src="../../glass.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#190">RulesManagementModule._transferred.1</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#226">RulesManagementModule._onlyRulesLimitManager</a></td>
+              <td class="coverFnLo">0</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#225">RulesManagementModule._onlyRulesManager</a></td>
+              <td class="coverFnLo">0</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#218">RulesManagementModule._transferred.1</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#104">RulesManagementModule.rule</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#132">RulesManagementModule.rule</a></td>
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#140">RulesManagementModule._removeRule</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#90">RulesManagementModule.maxRules</a></td>
+              <td class="coverFnHi">8</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#19">RulesManagementModule.onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">9</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#97">RulesManagementModule.setMaxRules</a></td>
+              <td class="coverFnHi">9</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#168">RulesManagementModule._removeRule</a></td>
               <td class="coverFnHi">13</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#61">RulesManagementModule.clearRules</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#145">RulesManagementModule.rules</a></td>
               <td class="coverFnHi">15</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#14">RulesManagementModule.onlyRulesManager</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#69">RulesManagementModule.clearRules</a></td>
+              <td class="coverFnHi">16</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#117">RulesManagementModule.rules</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#14">RulesManagementModule.onlyRulesManager</a></td>
+              <td class="coverFnHi">16</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#80">RulesManagementModule.removeRule</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#108">RulesManagementModule.removeRule</a></td>
               <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#171">RulesManagementModule._transferred.0</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#199">RulesManagementModule._transferred.0</a></td>
               <td class="coverFnHi">20</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#128">RulesManagementModule._clearRules</a></td>
-              <td class="coverFnHi">48</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#156">RulesManagementModule._clearRules</a></td>
+              <td class="coverFnHi">49</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#43">RulesManagementModule.setRules</a></td>
-              <td class="coverFnHi">49</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#48">RulesManagementModule.setRules</a></td>
+              <td class="coverFnHi">51</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#97">RulesManagementModule.containsRule</a></td>
-              <td class="coverFnHi">71</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#125">RulesManagementModule.containsRule</a></td>
+              <td class="coverFnHi">79</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#71">RulesManagementModule.addRule</a></td>
-              <td class="coverFnHi">152</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#78">RulesManagementModule.addRule</a></td>
+              <td class="coverFnHi">181</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#90">RulesManagementModule.rulesCount</a></td>
-              <td class="coverFnHi">161</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#118">RulesManagementModule.rulesCount</a></td>
+              <td class="coverFnHi">183</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#149">RulesManagementModule._checkRule</a></td>
-              <td class="coverFnHi">217</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#177">RulesManagementModule._checkRule</a></td>
+              <td class="coverFnHi">253</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func.html b/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func.html
index 2a8a1b0..f303599 100644
--- a/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func.html
+++ b/doc/coverage/coverage/src/modules/RulesManagementModule.sol.func.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">49</td>
-            <td class="headerCovTableEntry">49</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">62</td>
+            <td class="headerCovTableEntry">64</td>
+            <td class="headerCovTableEntryHi">96.9 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">17</td>
+            <td class="headerCovTableEntry">19</td>
+            <td class="headerCovTableEntryMed">89.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">11</td>
             <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntryMed">78.6 %</td>
+            <td class="headerCovTableEntry">17</td>
+            <td class="headerCovTableEntryMed">82.4 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -69,60 +69,80 @@
       <td width="20%" class="tableHead">Hit count <span class="tableHeadSort"><a href="RulesManagementModule.sol.func-sort-c.html"><img src="../../updown.png" width=10 height=14 alt="Sort by hit count" title="Sort by hit count" border=0></a></span></td>
     </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#149">RulesManagementModule._checkRule</a></td>
-              <td class="coverFnHi">217</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#177">RulesManagementModule._checkRule</a></td>
+              <td class="coverFnHi">253</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#156">RulesManagementModule._clearRules</a></td>
+              <td class="coverFnHi">49</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#226">RulesManagementModule._onlyRulesLimitManager</a></td>
+              <td class="coverFnLo">0</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#128">RulesManagementModule._clearRules</a></td>
-              <td class="coverFnHi">48</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#225">RulesManagementModule._onlyRulesManager</a></td>
+              <td class="coverFnLo">0</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#140">RulesManagementModule._removeRule</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#168">RulesManagementModule._removeRule</a></td>
               <td class="coverFnHi">13</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#171">RulesManagementModule._transferred.0</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#199">RulesManagementModule._transferred.0</a></td>
               <td class="coverFnHi">20</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#190">RulesManagementModule._transferred.1</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#218">RulesManagementModule._transferred.1</a></td>
               <td class="coverFnHi">4</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#71">RulesManagementModule.addRule</a></td>
-              <td class="coverFnHi">152</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#78">RulesManagementModule.addRule</a></td>
+              <td class="coverFnHi">181</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#61">RulesManagementModule.clearRules</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#69">RulesManagementModule.clearRules</a></td>
+              <td class="coverFnHi">16</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#97">RulesManagementModule.containsRule</a></td>
-              <td class="coverFnHi">71</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#125">RulesManagementModule.containsRule</a></td>
+              <td class="coverFnHi">79</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#90">RulesManagementModule.maxRules</a></td>
+              <td class="coverFnHi">8</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#19">RulesManagementModule.onlyRulesLimitManager</a></td>
+              <td class="coverFnHi">9</td>
             </tr>
     <tr>
               <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#14">RulesManagementModule.onlyRulesManager</a></td>
-              <td class="coverFnHi">15</td>
+              <td class="coverFnHi">16</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#80">RulesManagementModule.removeRule</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#108">RulesManagementModule.removeRule</a></td>
               <td class="coverFnHi">18</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#104">RulesManagementModule.rule</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#132">RulesManagementModule.rule</a></td>
               <td class="coverFnHi">5</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#117">RulesManagementModule.rules</a></td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#145">RulesManagementModule.rules</a></td>
               <td class="coverFnHi">15</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#90">RulesManagementModule.rulesCount</a></td>
-              <td class="coverFnHi">161</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#118">RulesManagementModule.rulesCount</a></td>
+              <td class="coverFnHi">183</td>
             </tr>
     <tr>
-              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#43">RulesManagementModule.setRules</a></td>
-              <td class="coverFnHi">49</td>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#97">RulesManagementModule.setMaxRules</a></td>
+              <td class="coverFnHi">9</td>
+            </tr>
+    <tr>
+              <td class="coverFn"><a href="RulesManagementModule.sol.gcov.html#48">RulesManagementModule.setRules</a></td>
+              <td class="coverFnHi">51</td>
             </tr>
   </table>
   <br>
diff --git a/doc/coverage/coverage/src/modules/RulesManagementModule.sol.gcov.html b/doc/coverage/coverage/src/modules/RulesManagementModule.sol.gcov.html
index 97c1d96..afffd64 100644
--- a/doc/coverage/coverage/src/modules/RulesManagementModule.sol.gcov.html
+++ b/doc/coverage/coverage/src/modules/RulesManagementModule.sol.gcov.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">49</td>
-            <td class="headerCovTableEntry">49</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">62</td>
+            <td class="headerCovTableEntry">64</td>
+            <td class="headerCovTableEntryHi">96.9 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">17</td>
+            <td class="headerCovTableEntry">19</td>
+            <td class="headerCovTableEntryMed">89.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">11</td>
             <td class="headerCovTableEntry">14</td>
-            <td class="headerCovTableEntryMed">78.6 %</td>
+            <td class="headerCovTableEntry">17</td>
+            <td class="headerCovTableEntryMed">82.4 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -74,7 +74,7 @@
 <a name="3"><span class="lineNum">       3 </span>                :            : pragma solidity ^0.8.20;</a>
 <a name="4"><span class="lineNum">       4 </span>                :            : </a>
 <a name="5"><span class="lineNum">       5 </span>                :            : /* ==== OpenZeppelin === */</a>
-<a name="6"><span class="lineNum">       6 </span>                :            : import {EnumerableSet} from &quot;OZ/utils/structs/EnumerableSet.sol&quot;;</a>
+<a name="6"><span class="lineNum">       6 </span>                :            : import {EnumerableSet} from &quot;@openzeppelin/contracts/utils/structs/EnumerableSet.sol&quot;;</a>
 <a name="7"><span class="lineNum">       7 </span>                :            : /* ==== Interface and other library === */</a>
 <a name="8"><span class="lineNum">       8 </span>                :            : import {IRulesManagementModule} from &quot;../interfaces/IRulesManagementModule.sol&quot;;</a>
 <a name="9"><span class="lineNum">       9 </span>                :            : import {IRule} from &quot;../interfaces/IRule.sol&quot;;</a>
@@ -84,191 +84,220 @@
 <a name="13"><span class="lineNum">      13 </span>                :            :  * @title RuleEngine -  part</a>
 <a name="14"><span class="lineNum">      14 </span>                :            :  */</a>
 <a name="15"><span class="lineNum">      15 </span>                :            : abstract contract RulesManagementModule is RulesManagementModuleInvariantStorage, IRulesManagementModule {</a>
-<a name="16"><span class="lineNum">      16 </span>                :<span class="lineCov">         15 :     modifier onlyRulesManager() {</span></a>
-<a name="17"><span class="lineNum">      17 </span>                :<span class="lineCov">         15 :         _onlyRulesManager();</span></a>
+<a name="16"><span class="lineNum">      16 </span>                :<span class="lineCov">         16 :     modifier onlyRulesManager() {</span></a>
+<a name="17"><span class="lineNum">      17 </span>                :<span class="lineCov">         16 :         _onlyRulesManager();</span></a>
 <a name="18"><span class="lineNum">      18 </span>                :            :         _;</a>
 <a name="19"><span class="lineNum">      19 </span>                :            :     }</a>
 <a name="20"><span class="lineNum">      20 </span>                :            : </a>
-<a name="21"><span class="lineNum">      21 </span>                :            :     /* ==== Type declaration === */</a>
-<a name="22"><span class="lineNum">      22 </span>                :            :     using EnumerableSet for EnumerableSet.AddressSet;</a>
-<a name="23"><span class="lineNum">      23 </span>                :            : </a>
-<a name="24"><span class="lineNum">      24 </span>                :            :     /* ==== State Variables === */</a>
-<a name="25"><span class="lineNum">      25 </span>                :            :     /// @dev Array of rules</a>
-<a name="26"><span class="lineNum">      26 </span>                :            :     EnumerableSet.AddressSet internal _rules;</a>
-<a name="27"><span class="lineNum">      27 </span>                :            : </a>
-<a name="28"><span class="lineNum">      28 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
-<a name="29"><span class="lineNum">      29 </span>                :            :                             PUBLIC/EXTERNAL FUNCTIONS</a>
-<a name="30"><span class="lineNum">      30 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
-<a name="31"><span class="lineNum">      31 </span>                :            : </a>
-<a name="32"><span class="lineNum">      32 </span>                :            :     /* ============ State functions ============ */</a>
-<a name="33"><span class="lineNum">      33 </span>                :            : </a>
-<a name="34"><span class="lineNum">      34 </span>                :            :     /**</a>
-<a name="35"><span class="lineNum">      35 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
-<a name="36"><span class="lineNum">      36 </span>                :            :      * @dev Replaces the entire rule set atomically.</a>
-<a name="37"><span class="lineNum">      37 </span>                :            :      * Reverts if `rules_` is empty. Use {clearRules} to remove all rules explicitly.</a>
-<a name="38"><span class="lineNum">      38 </span>                :            :      * To transition from one non-empty set to another without an enforcement gap,</a>
-<a name="39"><span class="lineNum">      39 </span>                :            :      * call this function directly with the new set.</a>
-<a name="40"><span class="lineNum">      40 </span>                :            :      * No on-chain maximum number of rules is enforced. Operators are responsible</a>
-<a name="41"><span class="lineNum">      41 </span>                :            :      * for keeping the rule set size compatible with the target chain gas limits.</a>
-<a name="42"><span class="lineNum">      42 </span>                :            :      * Security convention: rule contracts should be treated as trusted business logic,</a>
-<a name="43"><span class="lineNum">      43 </span>                :            :      * but should not also be granted {RULES_MANAGEMENT_ROLE}.</a>
-<a name="44"><span class="lineNum">      44 </span>                :            :      */</a>
-<a name="45"><span class="lineNum">      45 </span>                :<span class="lineCov">         49 :     function setRules(IRule[] calldata rules_) public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
-<a name="46"><span class="lineNum">      46 </span>           [<span class="branchCov" title="Branch 0 was taken 6 times"> + </span>]:<span class="lineCov">         47 :         if (rules_.length == 0) {</span></a>
-<a name="47"><span class="lineNum">      47 </span>                :<span class="lineCov">          6 :             revert RuleEngine_RulesManagementModule_ArrayIsEmpty();</span></a>
-<a name="48"><span class="lineNum">      48 </span>                :            :         }</a>
-<a name="49"><span class="lineNum">      49 </span>           [<span class="branchCov" title="Branch 0 was taken 35 times"> + </span>]:<span class="lineCov">         41 :         if (_rules.length() &gt; 0) {</span></a>
-<a name="50"><span class="lineNum">      50 </span>                :<span class="lineCov">         35 :             _clearRules();</span></a>
-<a name="51"><span class="lineNum">      51 </span>                :            :         }</a>
-<a name="52"><span class="lineNum">      52 </span>                :<span class="lineCov">         41 :         for (uint256 i = 0; i &lt; rules_.length; ++i) {</span></a>
-<a name="53"><span class="lineNum">      53 </span>                :<span class="lineCov">         69 :             _checkRule(address(rules_[i]));</span></a>
-<a name="54"><span class="lineNum">      54 </span>                :            :             // Should never revert because we check the presence of the rule before</a>
-<a name="55"><span class="lineNum">      55 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 64 times"> + </span>]:<span class="lineCov">         64 :             require(_rules.add(address(rules_[i])), RuleEngine_RulesManagementModule_OperationNotSuccessful());</span></a>
-<a name="56"><span class="lineNum">      56 </span>                :<span class="lineCov">         64 :             emit AddRule(rules_[i]);</span></a>
-<a name="57"><span class="lineNum">      57 </span>                :            :         }</a>
-<a name="58"><span class="lineNum">      58 </span>                :            :     }</a>
-<a name="59"><span class="lineNum">      59 </span>                :            : </a>
-<a name="60"><span class="lineNum">      60 </span>                :            :     /**</a>
-<a name="61"><span class="lineNum">      61 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
-<a name="62"><span class="lineNum">      62 </span>                :            :      */</a>
-<a name="63"><span class="lineNum">      63 </span>                :<span class="lineCov">         15 :     function clearRules() public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
-<a name="64"><span class="lineNum">      64 </span>                :<span class="lineCov">         13 :         _clearRules();</span></a>
-<a name="65"><span class="lineNum">      65 </span>                :            :     }</a>
-<a name="66"><span class="lineNum">      66 </span>                :            : </a>
-<a name="67"><span class="lineNum">      67 </span>                :            :     /**</a>
-<a name="68"><span class="lineNum">      68 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
-<a name="69"><span class="lineNum">      69 </span>                :            :      * @dev No on-chain maximum number of rules is enforced. Adding too many rules</a>
-<a name="70"><span class="lineNum">      70 </span>                :            :      * can increase transfer-time gas usage because rule checks are linear in rule count.</a>
-<a name="71"><span class="lineNum">      71 </span>                :            :      * Security convention: do not grant {RULES_MANAGEMENT_ROLE} to rule contracts.</a>
-<a name="72"><span class="lineNum">      72 </span>                :            :      */</a>
-<a name="73"><span class="lineNum">      73 </span>                :<span class="lineCov">        152 :     function addRule(IRule rule_) public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
-<a name="74"><span class="lineNum">      74 </span>                :<span class="lineCov">        148 :         _checkRule(address(rule_));</span></a>
-<a name="75"><span class="lineNum">      75 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 138 times"> + </span>]:<span class="lineCov">        138 :         require(_rules.add(address(rule_)), RuleEngine_RulesManagementModule_OperationNotSuccessful());</span></a>
-<a name="76"><span class="lineNum">      76 </span>                :<span class="lineCov">        138 :         emit AddRule(rule_);</span></a>
-<a name="77"><span class="lineNum">      77 </span>                :            :     }</a>
-<a name="78"><span class="lineNum">      78 </span>                :            : </a>
-<a name="79"><span class="lineNum">      79 </span>                :            :     /**</a>
-<a name="80"><span class="lineNum">      80 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
-<a name="81"><span class="lineNum">      81 </span>                :            :      */</a>
-<a name="82"><span class="lineNum">      82 </span>                :<span class="lineCov">         18 :     function removeRule(IRule rule_) public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
-<a name="83"><span class="lineNum">      83 </span>        [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span><span class="branchCov" title="Branch 1 was taken 13 times"> + </span>]:<span class="lineCov">         16 :         require(_rules.contains(address(rule_)), RuleEngine_RulesManagementModule_RuleDoNotMatch());</span></a>
-<a name="84"><span class="lineNum">      84 </span>                :<span class="lineCov">         13 :         _removeRule(rule_);</span></a>
-<a name="85"><span class="lineNum">      85 </span>                :            :     }</a>
-<a name="86"><span class="lineNum">      86 </span>                :            : </a>
-<a name="87"><span class="lineNum">      87 </span>                :            :     /* ============ View functions ============ */</a>
+<a name="21"><span class="lineNum">      21 </span>                :<span class="lineCov">          9 :     modifier onlyRulesLimitManager() {</span></a>
+<a name="22"><span class="lineNum">      22 </span>                :<span class="lineCov">          9 :         _onlyRulesLimitManager();</span></a>
+<a name="23"><span class="lineNum">      23 </span>                :            :         _;</a>
+<a name="24"><span class="lineNum">      24 </span>                :            :     }</a>
+<a name="25"><span class="lineNum">      25 </span>                :            : </a>
+<a name="26"><span class="lineNum">      26 </span>                :            :     /* ==== Type declaration === */</a>
+<a name="27"><span class="lineNum">      27 </span>                :            :     using EnumerableSet for EnumerableSet.AddressSet;</a>
+<a name="28"><span class="lineNum">      28 </span>                :            : </a>
+<a name="29"><span class="lineNum">      29 </span>                :            :     /* ==== State Variables === */</a>
+<a name="30"><span class="lineNum">      30 </span>                :            :     /// @dev Array of rules</a>
+<a name="31"><span class="lineNum">      31 </span>                :            :     EnumerableSet.AddressSet internal _rules;</a>
+<a name="32"><span class="lineNum">      32 </span>                :            :     /// @dev Maximum number of rules allowed in the engine.</a>
+<a name="33"><span class="lineNum">      33 </span>                :            :     uint256 internal _maxRules = 10;</a>
+<a name="34"><span class="lineNum">      34 </span>                :            : </a>
+<a name="35"><span class="lineNum">      35 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
+<a name="36"><span class="lineNum">      36 </span>                :            :                             PUBLIC/EXTERNAL FUNCTIONS</a>
+<a name="37"><span class="lineNum">      37 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
+<a name="38"><span class="lineNum">      38 </span>                :            : </a>
+<a name="39"><span class="lineNum">      39 </span>                :            :     /* ============ State functions ============ */</a>
+<a name="40"><span class="lineNum">      40 </span>                :            : </a>
+<a name="41"><span class="lineNum">      41 </span>                :            :     /**</a>
+<a name="42"><span class="lineNum">      42 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="43"><span class="lineNum">      43 </span>                :            :      * @dev Replaces the entire rule set atomically.</a>
+<a name="44"><span class="lineNum">      44 </span>                :            :      * Reverts if `rules_` is empty. Use {clearRules} to remove all rules explicitly.</a>
+<a name="45"><span class="lineNum">      45 </span>                :            :      * To transition from one non-empty set to another without an enforcement gap,</a>
+<a name="46"><span class="lineNum">      46 </span>                :            :      * call this function directly with the new set.</a>
+<a name="47"><span class="lineNum">      47 </span>                :            :      * Security convention: rule contracts should be treated as trusted business logic,</a>
+<a name="48"><span class="lineNum">      48 </span>                :            :      * but should not also be granted {RULES_MANAGEMENT_ROLE}.</a>
+<a name="49"><span class="lineNum">      49 </span>                :            :      */</a>
+<a name="50"><span class="lineNum">      50 </span>                :<span class="lineCov">         51 :     function setRules(IRule[] calldata rules_) public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
+<a name="51"><span class="lineNum">      51 </span>           [<span class="branchCov" title="Branch 0 was taken 6 times"> + </span>]:<span class="lineCov">         49 :         if (rules_.length == 0) {</span></a>
+<a name="52"><span class="lineNum">      52 </span>                :<span class="lineCov">          6 :             revert RuleEngine_RulesManagementModule_ArrayIsEmpty();</span></a>
+<a name="53"><span class="lineNum">      53 </span>                :            :         }</a>
+<a name="54"><span class="lineNum">      54 </span>           [<span class="branchCov" title="Branch 0 was taken 1 time"> + </span>]:<span class="lineCov">         43 :         if (rules_.length &gt; _maxRules) {</span></a>
+<a name="55"><span class="lineNum">      55 </span>                :<span class="lineCov">          1 :             revert RuleEngine_RulesManagementModule_MaxRulesExceeded(_maxRules);</span></a>
+<a name="56"><span class="lineNum">      56 </span>                :            :         }</a>
+<a name="57"><span class="lineNum">      57 </span>           [<span class="branchCov" title="Branch 0 was taken 36 times"> + </span>]:<span class="lineCov">         42 :         if (_rules.length() &gt; 0) {</span></a>
+<a name="58"><span class="lineNum">      58 </span>                :<span class="lineCov">         36 :             _clearRules();</span></a>
+<a name="59"><span class="lineNum">      59 </span>                :            :         }</a>
+<a name="60"><span class="lineNum">      60 </span>                :<span class="lineCov">         42 :         for (uint256 i = 0; i &lt; rules_.length; ++i) {</span></a>
+<a name="61"><span class="lineNum">      61 </span>                :<span class="lineCov">         79 :             _checkRule(address(rules_[i]));</span></a>
+<a name="62"><span class="lineNum">      62 </span>                :            :             // Should never revert because we check the presence of the rule before</a>
+<a name="63"><span class="lineNum">      63 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 74 times"> + </span>]:<span class="lineCov">         74 :             require(_rules.add(address(rules_[i])), RuleEngine_RulesManagementModule_OperationNotSuccessful());</span></a>
+<a name="64"><span class="lineNum">      64 </span>                :<span class="lineCov">         74 :             emit AddRule(rules_[i]);</span></a>
+<a name="65"><span class="lineNum">      65 </span>                :            :         }</a>
+<a name="66"><span class="lineNum">      66 </span>                :            :     }</a>
+<a name="67"><span class="lineNum">      67 </span>                :            : </a>
+<a name="68"><span class="lineNum">      68 </span>                :            :     /**</a>
+<a name="69"><span class="lineNum">      69 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="70"><span class="lineNum">      70 </span>                :            :      */</a>
+<a name="71"><span class="lineNum">      71 </span>                :<span class="lineCov">         16 :     function clearRules() public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
+<a name="72"><span class="lineNum">      72 </span>                :<span class="lineCov">         13 :         _clearRules();</span></a>
+<a name="73"><span class="lineNum">      73 </span>                :            :     }</a>
+<a name="74"><span class="lineNum">      74 </span>                :            : </a>
+<a name="75"><span class="lineNum">      75 </span>                :            :     /**</a>
+<a name="76"><span class="lineNum">      76 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="77"><span class="lineNum">      77 </span>                :            :      * @dev Reverts when the configured maximum number of rules is already reached.</a>
+<a name="78"><span class="lineNum">      78 </span>                :            :      * Security convention: do not grant {RULES_MANAGEMENT_ROLE} to rule contracts.</a>
+<a name="79"><span class="lineNum">      79 </span>                :            :      */</a>
+<a name="80"><span class="lineNum">      80 </span>                :<span class="lineCov">        181 :     function addRule(IRule rule_) public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
+<a name="81"><span class="lineNum">      81 </span>           [<span class="branchCov" title="Branch 0 was taken 2 times"> + </span>]:<span class="lineCov">        176 :         if (_rules.length() &gt;= _maxRules) {</span></a>
+<a name="82"><span class="lineNum">      82 </span>                :<span class="lineCov">          2 :             revert RuleEngine_RulesManagementModule_MaxRulesExceeded(_maxRules);</span></a>
+<a name="83"><span class="lineNum">      83 </span>                :            :         }</a>
+<a name="84"><span class="lineNum">      84 </span>                :<span class="lineCov">        174 :         _checkRule(address(rule_));</span></a>
+<a name="85"><span class="lineNum">      85 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 164 times"> + </span>]:<span class="lineCov">        164 :         require(_rules.add(address(rule_)), RuleEngine_RulesManagementModule_OperationNotSuccessful());</span></a>
+<a name="86"><span class="lineNum">      86 </span>                :<span class="lineCov">        164 :         emit AddRule(rule_);</span></a>
+<a name="87"><span class="lineNum">      87 </span>                :            :     }</a>
 <a name="88"><span class="lineNum">      88 </span>                :            : </a>
 <a name="89"><span class="lineNum">      89 </span>                :            :     /**</a>
 <a name="90"><span class="lineNum">      90 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
 <a name="91"><span class="lineNum">      91 </span>                :            :      */</a>
-<a name="92"><span class="lineNum">      92 </span>                :<span class="lineCov">        161 :     function rulesCount() public view virtual override(IRulesManagementModule) returns (uint256) {</span></a>
-<a name="93"><span class="lineNum">      93 </span>                :<span class="lineCov">        278 :         return _rules.length();</span></a>
+<a name="92"><span class="lineNum">      92 </span>                :<span class="lineCov">          8 :     function maxRules() public view virtual override(IRulesManagementModule) returns (uint256) {</span></a>
+<a name="93"><span class="lineNum">      93 </span>                :<span class="lineCov">          8 :         return _maxRules;</span></a>
 <a name="94"><span class="lineNum">      94 </span>                :            :     }</a>
 <a name="95"><span class="lineNum">      95 </span>                :            : </a>
 <a name="96"><span class="lineNum">      96 </span>                :            :     /**</a>
 <a name="97"><span class="lineNum">      97 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
 <a name="98"><span class="lineNum">      98 </span>                :            :      */</a>
-<a name="99"><span class="lineNum">      99 </span>                :<span class="lineCov">         71 :     function containsRule(IRule rule_) public view virtual override(IRulesManagementModule) returns (bool) {</span></a>
-<a name="100"><span class="lineNum">     100 </span>                :<span class="lineCov">         71 :         return _rules.contains(address(rule_));</span></a>
-<a name="101"><span class="lineNum">     101 </span>                :            :     }</a>
-<a name="102"><span class="lineNum">     102 </span>                :            : </a>
-<a name="103"><span class="lineNum">     103 </span>                :            :     /**</a>
-<a name="104"><span class="lineNum">     104 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
-<a name="105"><span class="lineNum">     105 </span>                :            :      */</a>
-<a name="106"><span class="lineNum">     106 </span>                :<span class="lineCov">          5 :     function rule(uint256 ruleId) public view virtual override(IRulesManagementModule) returns (address) {</span></a>
-<a name="107"><span class="lineNum">     107 </span>        [<span class="branchCov" title="Branch 0 was taken 131 times"> + </span><span class="branchCov" title="Branch 1 was taken 2 times"> + </span>]:<span class="lineCov">        133 :         if (ruleId &lt; _rules.length()) {</span></a>
-<a name="108"><span class="lineNum">     108 </span>                :            :             // Note that there are no guarantees on the ordering of values inside the array,</a>
-<a name="109"><span class="lineNum">     109 </span>                :            :             // and it may change when more values are added or removed.</a>
-<a name="110"><span class="lineNum">     110 </span>                :<span class="lineCov">        131 :             return _rules.at(ruleId);</span></a>
-<a name="111"><span class="lineNum">     111 </span>                :            :         } else {</a>
-<a name="112"><span class="lineNum">     112 </span>                :<span class="lineCov">          2 :             return address(0);</span></a>
-<a name="113"><span class="lineNum">     113 </span>                :            :         }</a>
-<a name="114"><span class="lineNum">     114 </span>                :            :     }</a>
-<a name="115"><span class="lineNum">     115 </span>                :            : </a>
-<a name="116"><span class="lineNum">     116 </span>                :            :     /**</a>
-<a name="117"><span class="lineNum">     117 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
-<a name="118"><span class="lineNum">     118 </span>                :            :      */</a>
-<a name="119"><span class="lineNum">     119 </span>                :<span class="lineCov">         15 :     function rules() public view virtual override(IRulesManagementModule) returns (address[] memory) {</span></a>
-<a name="120"><span class="lineNum">     120 </span>                :<span class="lineCov">         15 :         return _rules.values();</span></a>
-<a name="121"><span class="lineNum">     121 </span>                :            :     }</a>
-<a name="122"><span class="lineNum">     122 </span>                :            : </a>
-<a name="123"><span class="lineNum">     123 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
-<a name="124"><span class="lineNum">     124 </span>                :            :                             INTERNAL/PRIVATE FUNCTIONS</a>
-<a name="125"><span class="lineNum">     125 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
-<a name="126"><span class="lineNum">     126 </span>                :            :     /**</a>
-<a name="127"><span class="lineNum">     127 </span>                :            :      * @notice Clear all the rules of the array of rules</a>
-<a name="128"><span class="lineNum">     128 </span>                :            :      *</a>
-<a name="129"><span class="lineNum">     129 </span>                :            :      */</a>
-<a name="130"><span class="lineNum">     130 </span>                :<span class="lineCov">         48 :     function _clearRules() internal virtual {</span></a>
-<a name="131"><span class="lineNum">     131 </span>                :<span class="lineCov">         48 :         emit ClearRules();</span></a>
-<a name="132"><span class="lineNum">     132 </span>                :<span class="lineCov">         48 :         _rules.clear();</span></a>
-<a name="133"><span class="lineNum">     133 </span>                :            :     }</a>
-<a name="134"><span class="lineNum">     134 </span>                :            : </a>
-<a name="135"><span class="lineNum">     135 </span>                :            :     /**</a>
-<a name="136"><span class="lineNum">     136 </span>                :            :      * @notice Remove a rule from the array of rules</a>
-<a name="137"><span class="lineNum">     137 </span>                :            :      * Revert if the rule found at the specified index does not match the rule in argument</a>
-<a name="138"><span class="lineNum">     138 </span>                :            :      * @param rule_ address of the target rule</a>
-<a name="139"><span class="lineNum">     139 </span>                :            :      *</a>
-<a name="140"><span class="lineNum">     140 </span>                :            :      *</a>
-<a name="141"><span class="lineNum">     141 </span>                :            :      */</a>
-<a name="142"><span class="lineNum">     142 </span>                :<span class="lineCov">         13 :     function _removeRule(IRule rule_) internal virtual {</span></a>
-<a name="143"><span class="lineNum">     143 </span>                :            :         // Should never revert because we check the presence of the rule before</a>
-<a name="144"><span class="lineNum">     144 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 13 times"> + </span>]:<span class="lineCov">         13 :         require(_rules.remove(address(rule_)), RuleEngine_RulesManagementModule_OperationNotSuccessful());</span></a>
-<a name="145"><span class="lineNum">     145 </span>                :<span class="lineCov">         13 :         emit RemoveRule(rule_);</span></a>
-<a name="146"><span class="lineNum">     146 </span>                :            :     }</a>
-<a name="147"><span class="lineNum">     147 </span>                :            : </a>
-<a name="148"><span class="lineNum">     148 </span>                :            :     /**</a>
-<a name="149"><span class="lineNum">     149 </span>                :            :      * @dev check if a rule is valid, revert otherwise</a>
-<a name="150"><span class="lineNum">     150 </span>                :            :      */</a>
-<a name="151"><span class="lineNum">     151 </span>                :<span class="lineCov">        217 :     function _checkRule(address rule_) internal view virtual {</span></a>
-<a name="152"><span class="lineNum">     152 </span>           [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span>]:<span class="lineCov">        217 :         if (rule_ == address(0x0)) {</span></a>
-<a name="153"><span class="lineNum">     153 </span>                :<span class="lineCov">          3 :             revert RuleEngine_RulesManagementModule_RuleAddressZeroNotAllowed();</span></a>
-<a name="154"><span class="lineNum">     154 </span>                :            :         }</a>
-<a name="155"><span class="lineNum">     155 </span>           [<span class="branchCov" title="Branch 0 was taken 6 times"> + </span>]:<span class="lineCov">        214 :         if (_rules.contains(rule_)) {</span></a>
-<a name="156"><span class="lineNum">     156 </span>                :<span class="lineCov">          6 :             revert RuleEngine_RulesManagementModule_RuleAlreadyExists();</span></a>
-<a name="157"><span class="lineNum">     157 </span>                :            :         }</a>
-<a name="158"><span class="lineNum">     158 </span>                :            :     }</a>
-<a name="159"><span class="lineNum">     159 </span>                :            : </a>
-<a name="160"><span class="lineNum">     160 </span>                :            :     /* ============ Transferred functions ============ */</a>
-<a name="161"><span class="lineNum">     161 </span>                :            : </a>
-<a name="162"><span class="lineNum">     162 </span>                :            :     /**</a>
-<a name="163"><span class="lineNum">     163 </span>                :            :      * @notice Go through all the rule to know if a restriction exists on the transfer</a>
-<a name="164"><span class="lineNum">     164 </span>                :            :      * @dev Complexity is O(number of configured rules). Large rule sets can make</a>
-<a name="165"><span class="lineNum">     165 </span>                :            :      * transfers too expensive on chains with lower block gas limits.</a>
-<a name="166"><span class="lineNum">     166 </span>                :            :      * Security convention: rule contracts are expected to be trusted and must not</a>
-<a name="167"><span class="lineNum">     167 </span>                :            :      * hold {RULES_MANAGEMENT_ROLE}.</a>
-<a name="168"><span class="lineNum">     168 </span>                :            :      * @param from the origin address</a>
-<a name="169"><span class="lineNum">     169 </span>                :            :      * @param to the destination address</a>
-<a name="170"><span class="lineNum">     170 </span>                :            :      * @param value to transfer</a>
-<a name="171"><span class="lineNum">     171 </span>                :            :      *</a>
-<a name="172"><span class="lineNum">     172 </span>                :            :      */</a>
-<a name="173"><span class="lineNum">     173 </span>                :<span class="lineCov">         20 :     function _transferred(address from, address to, uint256 value) internal virtual {</span></a>
-<a name="174"><span class="lineNum">     174 </span>                :<span class="lineCov">         20 :         uint256 rulesLength = _rules.length();</span></a>
-<a name="175"><span class="lineNum">     175 </span>                :<span class="lineCov">         20 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
-<a name="176"><span class="lineNum">     176 </span>                :<span class="lineCov">         14 :             IRule(_rules.at(i)).transferred(from, to, value);</span></a>
-<a name="177"><span class="lineNum">     177 </span>                :            :         }</a>
-<a name="178"><span class="lineNum">     178 </span>                :            :     }</a>
-<a name="179"><span class="lineNum">     179 </span>                :            : </a>
-<a name="180"><span class="lineNum">     180 </span>                :            :     /**</a>
-<a name="181"><span class="lineNum">     181 </span>                :            :      * @notice Go through all the rule to know if a restriction exists on the transfer</a>
-<a name="182"><span class="lineNum">     182 </span>                :            :      * @dev Complexity is O(number of configured rules). Large rule sets can make</a>
-<a name="183"><span class="lineNum">     183 </span>                :            :      * transfers too expensive on chains with lower block gas limits.</a>
-<a name="184"><span class="lineNum">     184 </span>                :            :      * Security convention: rule contracts are expected to be trusted and must not</a>
-<a name="185"><span class="lineNum">     185 </span>                :            :      * hold {RULES_MANAGEMENT_ROLE}.</a>
-<a name="186"><span class="lineNum">     186 </span>                :            :      * @param spender the spender address (transferFrom)</a>
-<a name="187"><span class="lineNum">     187 </span>                :            :      * @param from the origin address</a>
-<a name="188"><span class="lineNum">     188 </span>                :            :      * @param to the destination address</a>
-<a name="189"><span class="lineNum">     189 </span>                :            :      * @param value to transfer</a>
-<a name="190"><span class="lineNum">     190 </span>                :            :      *</a>
-<a name="191"><span class="lineNum">     191 </span>                :            :      */</a>
-<a name="192"><span class="lineNum">     192 </span>                :<span class="lineCov">          4 :     function _transferred(address spender, address from, address to, uint256 value) internal virtual {</span></a>
-<a name="193"><span class="lineNum">     193 </span>                :<span class="lineCov">          4 :         uint256 rulesLength = _rules.length();</span></a>
-<a name="194"><span class="lineNum">     194 </span>                :<span class="lineCov">          4 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
-<a name="195"><span class="lineNum">     195 </span>                :<span class="lineCov">          4 :             IRule(_rules.at(i)).transferred(spender, from, to, value);</span></a>
-<a name="196"><span class="lineNum">     196 </span>                :            :         }</a>
-<a name="197"><span class="lineNum">     197 </span>                :            :     }</a>
-<a name="198"><span class="lineNum">     198 </span>                :            : </a>
-<a name="199"><span class="lineNum">     199 </span>                :            :     function _onlyRulesManager() internal virtual;</a>
-<a name="200"><span class="lineNum">     200 </span>                :            : }</a>
+<a name="99"><span class="lineNum">      99 </span>                :<span class="lineCov">          9 :     function setMaxRules(uint256 maxRules_) public virtual override(IRulesManagementModule) onlyRulesLimitManager {</span></a>
+<a name="100"><span class="lineNum">     100 </span>           [<span class="branchCov" title="Branch 0 was taken 1 time"> + </span>]:<span class="lineCov">          5 :         if (maxRules_ == 0) {</span></a>
+<a name="101"><span class="lineNum">     101 </span>                :<span class="lineCov">          1 :             revert RuleEngine_RulesManagementModule_MaxRulesZeroNotAllowed();</span></a>
+<a name="102"><span class="lineNum">     102 </span>                :            :         }</a>
+<a name="103"><span class="lineNum">     103 </span>                :<span class="lineCov">          4 :         _maxRules = maxRules_;</span></a>
+<a name="104"><span class="lineNum">     104 </span>                :<span class="lineCov">          4 :         emit SetMaxRules(maxRules_);</span></a>
+<a name="105"><span class="lineNum">     105 </span>                :            :     }</a>
+<a name="106"><span class="lineNum">     106 </span>                :            : </a>
+<a name="107"><span class="lineNum">     107 </span>                :            :     /**</a>
+<a name="108"><span class="lineNum">     108 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="109"><span class="lineNum">     109 </span>                :            :      */</a>
+<a name="110"><span class="lineNum">     110 </span>                :<span class="lineCov">         18 :     function removeRule(IRule rule_) public virtual override(IRulesManagementModule) onlyRulesManager {</span></a>
+<a name="111"><span class="lineNum">     111 </span>        [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span><span class="branchCov" title="Branch 1 was taken 13 times"> + </span>]:<span class="lineCov">         16 :         require(_rules.contains(address(rule_)), RuleEngine_RulesManagementModule_RuleDoNotMatch());</span></a>
+<a name="112"><span class="lineNum">     112 </span>                :<span class="lineCov">         13 :         _removeRule(rule_);</span></a>
+<a name="113"><span class="lineNum">     113 </span>                :            :     }</a>
+<a name="114"><span class="lineNum">     114 </span>                :            : </a>
+<a name="115"><span class="lineNum">     115 </span>                :            :     /* ============ View functions ============ */</a>
+<a name="116"><span class="lineNum">     116 </span>                :            : </a>
+<a name="117"><span class="lineNum">     117 </span>                :            :     /**</a>
+<a name="118"><span class="lineNum">     118 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="119"><span class="lineNum">     119 </span>                :            :      */</a>
+<a name="120"><span class="lineNum">     120 </span>                :<span class="lineCov">        183 :     function rulesCount() public view virtual override(IRulesManagementModule) returns (uint256) {</span></a>
+<a name="121"><span class="lineNum">     121 </span>                :<span class="lineCov">        300 :         return _rules.length();</span></a>
+<a name="122"><span class="lineNum">     122 </span>                :            :     }</a>
+<a name="123"><span class="lineNum">     123 </span>                :            : </a>
+<a name="124"><span class="lineNum">     124 </span>                :            :     /**</a>
+<a name="125"><span class="lineNum">     125 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="126"><span class="lineNum">     126 </span>                :            :      */</a>
+<a name="127"><span class="lineNum">     127 </span>                :<span class="lineCov">         79 :     function containsRule(IRule rule_) public view virtual override(IRulesManagementModule) returns (bool) {</span></a>
+<a name="128"><span class="lineNum">     128 </span>                :<span class="lineCov">         89 :         return _rules.contains(address(rule_));</span></a>
+<a name="129"><span class="lineNum">     129 </span>                :            :     }</a>
+<a name="130"><span class="lineNum">     130 </span>                :            : </a>
+<a name="131"><span class="lineNum">     131 </span>                :            :     /**</a>
+<a name="132"><span class="lineNum">     132 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="133"><span class="lineNum">     133 </span>                :            :      */</a>
+<a name="134"><span class="lineNum">     134 </span>                :<span class="lineCov">          5 :     function rule(uint256 ruleId) public view virtual override(IRulesManagementModule) returns (address) {</span></a>
+<a name="135"><span class="lineNum">     135 </span>        [<span class="branchCov" title="Branch 0 was taken 131 times"> + </span><span class="branchCov" title="Branch 1 was taken 2 times"> + </span>]:<span class="lineCov">        133 :         if (ruleId &lt; _rules.length()) {</span></a>
+<a name="136"><span class="lineNum">     136 </span>                :            :             // Note that there are no guarantees on the ordering of values inside the array,</a>
+<a name="137"><span class="lineNum">     137 </span>                :            :             // and it may change when more values are added or removed.</a>
+<a name="138"><span class="lineNum">     138 </span>                :<span class="lineCov">        131 :             return _rules.at(ruleId);</span></a>
+<a name="139"><span class="lineNum">     139 </span>                :            :         } else {</a>
+<a name="140"><span class="lineNum">     140 </span>                :<span class="lineCov">          2 :             return address(0);</span></a>
+<a name="141"><span class="lineNum">     141 </span>                :            :         }</a>
+<a name="142"><span class="lineNum">     142 </span>                :            :     }</a>
+<a name="143"><span class="lineNum">     143 </span>                :            : </a>
+<a name="144"><span class="lineNum">     144 </span>                :            :     /**</a>
+<a name="145"><span class="lineNum">     145 </span>                :            :      * @inheritdoc IRulesManagementModule</a>
+<a name="146"><span class="lineNum">     146 </span>                :            :      */</a>
+<a name="147"><span class="lineNum">     147 </span>                :<span class="lineCov">         15 :     function rules() public view virtual override(IRulesManagementModule) returns (address[] memory) {</span></a>
+<a name="148"><span class="lineNum">     148 </span>                :<span class="lineCov">         15 :         return _rules.values();</span></a>
+<a name="149"><span class="lineNum">     149 </span>                :            :     }</a>
+<a name="150"><span class="lineNum">     150 </span>                :            : </a>
+<a name="151"><span class="lineNum">     151 </span>                :            :     /*//////////////////////////////////////////////////////////////</a>
+<a name="152"><span class="lineNum">     152 </span>                :            :                             INTERNAL/PRIVATE FUNCTIONS</a>
+<a name="153"><span class="lineNum">     153 </span>                :            :     //////////////////////////////////////////////////////////////*/</a>
+<a name="154"><span class="lineNum">     154 </span>                :            :     /**</a>
+<a name="155"><span class="lineNum">     155 </span>                :            :      * @notice Clear all the rules of the array of rules</a>
+<a name="156"><span class="lineNum">     156 </span>                :            :      *</a>
+<a name="157"><span class="lineNum">     157 </span>                :            :      */</a>
+<a name="158"><span class="lineNum">     158 </span>                :<span class="lineCov">         49 :     function _clearRules() internal virtual {</span></a>
+<a name="159"><span class="lineNum">     159 </span>                :<span class="lineCov">         49 :         emit ClearRules();</span></a>
+<a name="160"><span class="lineNum">     160 </span>                :<span class="lineCov">         49 :         _rules.clear();</span></a>
+<a name="161"><span class="lineNum">     161 </span>                :            :     }</a>
+<a name="162"><span class="lineNum">     162 </span>                :            : </a>
+<a name="163"><span class="lineNum">     163 </span>                :            :     /**</a>
+<a name="164"><span class="lineNum">     164 </span>                :            :      * @notice Remove a rule from the array of rules</a>
+<a name="165"><span class="lineNum">     165 </span>                :            :      * Revert if the rule found at the specified index does not match the rule in argument</a>
+<a name="166"><span class="lineNum">     166 </span>                :            :      * @param rule_ address of the target rule</a>
+<a name="167"><span class="lineNum">     167 </span>                :            :      *</a>
+<a name="168"><span class="lineNum">     168 </span>                :            :      *</a>
+<a name="169"><span class="lineNum">     169 </span>                :            :      */</a>
+<a name="170"><span class="lineNum">     170 </span>                :<span class="lineCov">         13 :     function _removeRule(IRule rule_) internal virtual {</span></a>
+<a name="171"><span class="lineNum">     171 </span>                :            :         // Should never revert because we check the presence of the rule before</a>
+<a name="172"><span class="lineNum">     172 </span>        [<span class="branchNoExec" title="Branch 0 was not executed"> # </span><span class="branchCov" title="Branch 1 was taken 13 times"> + </span>]:<span class="lineCov">         13 :         require(_rules.remove(address(rule_)), RuleEngine_RulesManagementModule_OperationNotSuccessful());</span></a>
+<a name="173"><span class="lineNum">     173 </span>                :<span class="lineCov">         13 :         emit RemoveRule(rule_);</span></a>
+<a name="174"><span class="lineNum">     174 </span>                :            :     }</a>
+<a name="175"><span class="lineNum">     175 </span>                :            : </a>
+<a name="176"><span class="lineNum">     176 </span>                :            :     /**</a>
+<a name="177"><span class="lineNum">     177 </span>                :            :      * @dev check if a rule is valid, revert otherwise</a>
+<a name="178"><span class="lineNum">     178 </span>                :            :      */</a>
+<a name="179"><span class="lineNum">     179 </span>                :<span class="lineCov">        253 :     function _checkRule(address rule_) internal view virtual {</span></a>
+<a name="180"><span class="lineNum">     180 </span>           [<span class="branchCov" title="Branch 0 was taken 3 times"> + </span>]:<span class="lineCov">        253 :         if (rule_ == address(0x0)) {</span></a>
+<a name="181"><span class="lineNum">     181 </span>                :<span class="lineCov">          3 :             revert RuleEngine_RulesManagementModule_RuleAddressZeroNotAllowed();</span></a>
+<a name="182"><span class="lineNum">     182 </span>                :            :         }</a>
+<a name="183"><span class="lineNum">     183 </span>           [<span class="branchCov" title="Branch 0 was taken 6 times"> + </span>]:<span class="lineCov">        250 :         if (_rules.contains(rule_)) {</span></a>
+<a name="184"><span class="lineNum">     184 </span>                :<span class="lineCov">          6 :             revert RuleEngine_RulesManagementModule_RuleAlreadyExists();</span></a>
+<a name="185"><span class="lineNum">     185 </span>                :            :         }</a>
+<a name="186"><span class="lineNum">     186 </span>                :            :     }</a>
+<a name="187"><span class="lineNum">     187 </span>                :            : </a>
+<a name="188"><span class="lineNum">     188 </span>                :            :     /* ============ Transferred functions ============ */</a>
+<a name="189"><span class="lineNum">     189 </span>                :            : </a>
+<a name="190"><span class="lineNum">     190 </span>                :            :     /**</a>
+<a name="191"><span class="lineNum">     191 </span>                :            :      * @notice Go through all the rule to know if a restriction exists on the transfer</a>
+<a name="192"><span class="lineNum">     192 </span>                :            :      * @dev Complexity is O(number of configured rules). Large rule sets can make</a>
+<a name="193"><span class="lineNum">     193 </span>                :            :      * transfers too expensive on chains with lower block gas limits.</a>
+<a name="194"><span class="lineNum">     194 </span>                :            :      * Security convention: rule contracts are expected to be trusted and must not</a>
+<a name="195"><span class="lineNum">     195 </span>                :            :      * hold {RULES_MANAGEMENT_ROLE}.</a>
+<a name="196"><span class="lineNum">     196 </span>                :            :      * @param from the origin address</a>
+<a name="197"><span class="lineNum">     197 </span>                :            :      * @param to the destination address</a>
+<a name="198"><span class="lineNum">     198 </span>                :            :      * @param value to transfer</a>
+<a name="199"><span class="lineNum">     199 </span>                :            :      *</a>
+<a name="200"><span class="lineNum">     200 </span>                :            :      */</a>
+<a name="201"><span class="lineNum">     201 </span>                :<span class="lineCov">         20 :     function _transferred(address from, address to, uint256 value) internal virtual {</span></a>
+<a name="202"><span class="lineNum">     202 </span>                :<span class="lineCov">         20 :         uint256 rulesLength = _rules.length();</span></a>
+<a name="203"><span class="lineNum">     203 </span>                :<span class="lineCov">         20 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
+<a name="204"><span class="lineNum">     204 </span>                :<span class="lineCov">         14 :             IRule(_rules.at(i)).transferred(from, to, value);</span></a>
+<a name="205"><span class="lineNum">     205 </span>                :            :         }</a>
+<a name="206"><span class="lineNum">     206 </span>                :            :     }</a>
+<a name="207"><span class="lineNum">     207 </span>                :            : </a>
+<a name="208"><span class="lineNum">     208 </span>                :            :     /**</a>
+<a name="209"><span class="lineNum">     209 </span>                :            :      * @notice Go through all the rule to know if a restriction exists on the transfer</a>
+<a name="210"><span class="lineNum">     210 </span>                :            :      * @dev Complexity is O(number of configured rules). Large rule sets can make</a>
+<a name="211"><span class="lineNum">     211 </span>                :            :      * transfers too expensive on chains with lower block gas limits.</a>
+<a name="212"><span class="lineNum">     212 </span>                :            :      * Security convention: rule contracts are expected to be trusted and must not</a>
+<a name="213"><span class="lineNum">     213 </span>                :            :      * hold {RULES_MANAGEMENT_ROLE}.</a>
+<a name="214"><span class="lineNum">     214 </span>                :            :      * @param spender the spender address (transferFrom)</a>
+<a name="215"><span class="lineNum">     215 </span>                :            :      * @param from the origin address</a>
+<a name="216"><span class="lineNum">     216 </span>                :            :      * @param to the destination address</a>
+<a name="217"><span class="lineNum">     217 </span>                :            :      * @param value to transfer</a>
+<a name="218"><span class="lineNum">     218 </span>                :            :      *</a>
+<a name="219"><span class="lineNum">     219 </span>                :            :      */</a>
+<a name="220"><span class="lineNum">     220 </span>                :<span class="lineCov">          4 :     function _transferred(address spender, address from, address to, uint256 value) internal virtual {</span></a>
+<a name="221"><span class="lineNum">     221 </span>                :<span class="lineCov">          4 :         uint256 rulesLength = _rules.length();</span></a>
+<a name="222"><span class="lineNum">     222 </span>                :<span class="lineCov">          4 :         for (uint256 i = 0; i &lt; rulesLength; ++i) {</span></a>
+<a name="223"><span class="lineNum">     223 </span>                :<span class="lineCov">          4 :             IRule(_rules.at(i)).transferred(spender, from, to, value);</span></a>
+<a name="224"><span class="lineNum">     224 </span>                :            :         }</a>
+<a name="225"><span class="lineNum">     225 </span>                :            :     }</a>
+<a name="226"><span class="lineNum">     226 </span>                :            : </a>
+<a name="227"><span class="lineNum">     227 </span>                :<span class="lineNoCov">          0 :     function _onlyRulesManager() internal virtual;</span></a>
+<a name="228"><span class="lineNum">     228 </span>                :<span class="lineNoCov">          0 :     function _onlyRulesLimitManager() internal virtual;</span></a>
+<a name="229"><span class="lineNum">     229 </span>                :            : }</a>
 </pre>
       </td>
     </tr>
diff --git a/doc/coverage/coverage/src/modules/VersionModule.sol.func-sort-c.html b/doc/coverage/coverage/src/modules/VersionModule.sol.func-sort-c.html
index b953c88..a850218 100644
--- a/doc/coverage/coverage/src/modules/VersionModule.sol.func-sort-c.html
+++ b/doc/coverage/coverage/src/modules/VersionModule.sol.func-sort-c.html
@@ -37,7 +37,7 @@
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">1</td>
diff --git a/doc/coverage/coverage/src/modules/VersionModule.sol.func.html b/doc/coverage/coverage/src/modules/VersionModule.sol.func.html
index f4517d4..47875c2 100644
--- a/doc/coverage/coverage/src/modules/VersionModule.sol.func.html
+++ b/doc/coverage/coverage/src/modules/VersionModule.sol.func.html
@@ -37,7 +37,7 @@
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">1</td>
diff --git a/doc/coverage/coverage/src/modules/VersionModule.sol.gcov.html b/doc/coverage/coverage/src/modules/VersionModule.sol.gcov.html
index cf339dc..348fd4f 100644
--- a/doc/coverage/coverage/src/modules/VersionModule.sol.gcov.html
+++ b/doc/coverage/coverage/src/modules/VersionModule.sol.gcov.html
@@ -37,7 +37,7 @@
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
             <td class="headerCovTableEntry">1</td>
diff --git a/doc/coverage/coverage/src/modules/index-sort-b.html b/doc/coverage/coverage/src/modules/index-sort-b.html
index b6a5a03..fa15856 100644
--- a/doc/coverage/coverage/src/modules/index-sort-b.html
+++ b/doc/coverage/coverage/src/modules/index-sort-b.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">95</td>
+            <td class="headerCovTableEntry">100</td>
+            <td class="headerCovTableEntryHi">95.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">28</td>
+            <td class="headerCovTableEntry">32</td>
+            <td class="headerCovTableEntryMed">87.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">22</td>
-            <td class="headerCovTableEntry">27</td>
-            <td class="headerCovTableEntryMed">81.5 %</td>
+            <td class="headerCovTableEntry">26</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntryMed">83.9 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -84,26 +84,26 @@
     <tr>
       <td class="coverFile"><a href="RulesManagementModule.sol.gcov.html">RulesManagementModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=97 height=10 alt="96.9%"><img src="../../snow.png" width=3 height=10 alt="96.9%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">49 / 49</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">14 / 14</td>
-      <td class="coverPerMed">78.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 14</td>
+      <td class="coverPerHi">96.9&nbsp;%</td>
+      <td class="coverNumHi">62 / 64</td>
+      <td class="coverPerMed">89.5&nbsp;%</td>
+      <td class="coverNumMed">17 / 19</td>
+      <td class="coverPerMed">82.4&nbsp;%</td>
+      <td class="coverNumMed">14 / 17</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="ERC3643ComplianceModule.sol.gcov.html">ERC3643ComplianceModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=91 height=10 alt="91.2%"><img src="../../snow.png" width=9 height=10 alt="91.2%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">28 / 28</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">10 / 10</td>
-      <td class="coverPerMed">84.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 13</td>
+      <td class="coverPerHi">91.2&nbsp;%</td>
+      <td class="coverNumHi">31 / 34</td>
+      <td class="coverPerMed">83.3&nbsp;%</td>
+      <td class="coverNumMed">10 / 12</td>
+      <td class="coverPerMed">85.7&nbsp;%</td>
+      <td class="coverNumMed">12 / 14</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="VersionModule.sol.gcov.html">VersionModule.sol</a></td>
diff --git a/doc/coverage/coverage/src/modules/index-sort-f.html b/doc/coverage/coverage/src/modules/index-sort-f.html
index 4252b69..a2c384a 100644
--- a/doc/coverage/coverage/src/modules/index-sort-f.html
+++ b/doc/coverage/coverage/src/modules/index-sort-f.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">95</td>
+            <td class="headerCovTableEntry">100</td>
+            <td class="headerCovTableEntryHi">95.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">28</td>
+            <td class="headerCovTableEntry">32</td>
+            <td class="headerCovTableEntryMed">87.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">22</td>
-            <td class="headerCovTableEntry">27</td>
-            <td class="headerCovTableEntryMed">81.5 %</td>
+            <td class="headerCovTableEntry">26</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntryMed">83.9 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -82,40 +82,40 @@
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><a href="index-sort-b.html"><img src="../../updown.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></a></span></td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="VersionModule.sol.gcov.html">VersionModule.sol</a></td>
+      <td class="coverFile"><a href="ERC3643ComplianceModule.sol.gcov.html">ERC3643ComplianceModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=91 height=10 alt="91.2%"><img src="../../snow.png" width=9 height=10 alt="91.2%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">2 / 2</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">1 / 1</td>
-      <td class="coverPerHi">-</td>
-      <td class="coverNumHi">0 / 0</td>
+      <td class="coverPerHi">91.2&nbsp;%</td>
+      <td class="coverNumHi">31 / 34</td>
+      <td class="coverPerMed">83.3&nbsp;%</td>
+      <td class="coverNumMed">10 / 12</td>
+      <td class="coverPerMed">85.7&nbsp;%</td>
+      <td class="coverNumMed">12 / 14</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="ERC3643ComplianceModule.sol.gcov.html">ERC3643ComplianceModule.sol</a></td>
+      <td class="coverFile"><a href="RulesManagementModule.sol.gcov.html">RulesManagementModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=97 height=10 alt="96.9%"><img src="../../snow.png" width=3 height=10 alt="96.9%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">28 / 28</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">10 / 10</td>
-      <td class="coverPerMed">84.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 13</td>
+      <td class="coverPerHi">96.9&nbsp;%</td>
+      <td class="coverNumHi">62 / 64</td>
+      <td class="coverPerMed">89.5&nbsp;%</td>
+      <td class="coverNumMed">17 / 19</td>
+      <td class="coverPerMed">82.4&nbsp;%</td>
+      <td class="coverNumMed">14 / 17</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="RulesManagementModule.sol.gcov.html">RulesManagementModule.sol</a></td>
+      <td class="coverFile"><a href="VersionModule.sol.gcov.html">VersionModule.sol</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">49 / 49</td>
+      <td class="coverNumHi">2 / 2</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">14 / 14</td>
-      <td class="coverPerMed">78.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 14</td>
+      <td class="coverNumHi">1 / 1</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/modules/index-sort-l.html b/doc/coverage/coverage/src/modules/index-sort-l.html
index db2c56d..d18eaa9 100644
--- a/doc/coverage/coverage/src/modules/index-sort-l.html
+++ b/doc/coverage/coverage/src/modules/index-sort-l.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">95</td>
+            <td class="headerCovTableEntry">100</td>
+            <td class="headerCovTableEntryHi">95.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">28</td>
+            <td class="headerCovTableEntry">32</td>
+            <td class="headerCovTableEntryMed">87.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">22</td>
-            <td class="headerCovTableEntry">27</td>
-            <td class="headerCovTableEntryMed">81.5 %</td>
+            <td class="headerCovTableEntry">26</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntryMed">83.9 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -82,40 +82,40 @@
       <td class="tableHead" colspan=2>Branches <span class="tableHeadSort"><a href="index-sort-b.html"><img src="../../updown.png" width=10 height=14 alt="Sort by branch coverage" title="Sort by branch coverage" border=0></a></span></td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="VersionModule.sol.gcov.html">VersionModule.sol</a></td>
+      <td class="coverFile"><a href="ERC3643ComplianceModule.sol.gcov.html">ERC3643ComplianceModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=91 height=10 alt="91.2%"><img src="../../snow.png" width=9 height=10 alt="91.2%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">2 / 2</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">1 / 1</td>
-      <td class="coverPerHi">-</td>
-      <td class="coverNumHi">0 / 0</td>
+      <td class="coverPerHi">91.2&nbsp;%</td>
+      <td class="coverNumHi">31 / 34</td>
+      <td class="coverPerMed">83.3&nbsp;%</td>
+      <td class="coverNumMed">10 / 12</td>
+      <td class="coverPerMed">85.7&nbsp;%</td>
+      <td class="coverNumMed">12 / 14</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="ERC3643ComplianceModule.sol.gcov.html">ERC3643ComplianceModule.sol</a></td>
+      <td class="coverFile"><a href="RulesManagementModule.sol.gcov.html">RulesManagementModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=97 height=10 alt="96.9%"><img src="../../snow.png" width=3 height=10 alt="96.9%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">28 / 28</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">10 / 10</td>
-      <td class="coverPerMed">84.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 13</td>
+      <td class="coverPerHi">96.9&nbsp;%</td>
+      <td class="coverNumHi">62 / 64</td>
+      <td class="coverPerMed">89.5&nbsp;%</td>
+      <td class="coverNumMed">17 / 19</td>
+      <td class="coverPerMed">82.4&nbsp;%</td>
+      <td class="coverNumMed">14 / 17</td>
     </tr>
     <tr>
-      <td class="coverFile"><a href="RulesManagementModule.sol.gcov.html">RulesManagementModule.sol</a></td>
+      <td class="coverFile"><a href="VersionModule.sol.gcov.html">VersionModule.sol</a></td>
       <td class="coverBar" align="center">
         <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
       </td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">49 / 49</td>
+      <td class="coverNumHi">2 / 2</td>
       <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">14 / 14</td>
-      <td class="coverPerMed">78.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 14</td>
+      <td class="coverNumHi">1 / 1</td>
+      <td class="coverPerHi">-</td>
+      <td class="coverNumHi">0 / 0</td>
     </tr>
   </table>
   </center>
diff --git a/doc/coverage/coverage/src/modules/index.html b/doc/coverage/coverage/src/modules/index.html
index f103df9..164da3f 100644
--- a/doc/coverage/coverage/src/modules/index.html
+++ b/doc/coverage/coverage/src/modules/index.html
@@ -31,27 +31,27 @@
             <td class="headerValue">lcov.info</td>
             <td></td>
             <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntry">79</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">95</td>
+            <td class="headerCovTableEntry">100</td>
+            <td class="headerCovTableEntryHi">95.0 %</td>
           </tr>
           <tr>
             <td class="headerItem">Date:</td>
-            <td class="headerValue">2026-03-18 19:08:29</td>
+            <td class="headerValue">2026-05-05 13:03:55</td>
             <td></td>
             <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntry">25</td>
-            <td class="headerCovTableEntryHi">100.0 %</td>
+            <td class="headerCovTableEntry">28</td>
+            <td class="headerCovTableEntry">32</td>
+            <td class="headerCovTableEntryMed">87.5 %</td>
           </tr>
           <tr>
             <td></td>
             <td></td>
             <td></td>
             <td class="headerItem">Branches:</td>
-            <td class="headerCovTableEntry">22</td>
-            <td class="headerCovTableEntry">27</td>
-            <td class="headerCovTableEntryMed">81.5 %</td>
+            <td class="headerCovTableEntry">26</td>
+            <td class="headerCovTableEntry">31</td>
+            <td class="headerCovTableEntryMed">83.9 %</td>
           </tr>
           <tr><td><img src="../../glass.png" width=3 height=3 alt=""></td></tr>
         </table>
@@ -84,26 +84,26 @@
     <tr>
       <td class="coverFile"><a href="ERC3643ComplianceModule.sol.gcov.html">ERC3643ComplianceModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=91 height=10 alt="91.2%"><img src="../../snow.png" width=9 height=10 alt="91.2%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">28 / 28</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">10 / 10</td>
-      <td class="coverPerMed">84.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 13</td>
+      <td class="coverPerHi">91.2&nbsp;%</td>
+      <td class="coverNumHi">31 / 34</td>
+      <td class="coverPerMed">83.3&nbsp;%</td>
+      <td class="coverNumMed">10 / 12</td>
+      <td class="coverPerMed">85.7&nbsp;%</td>
+      <td class="coverNumMed">12 / 14</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="RulesManagementModule.sol.gcov.html">RulesManagementModule.sol</a></td>
       <td class="coverBar" align="center">
-        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+        <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../emerald.png" width=97 height=10 alt="96.9%"><img src="../../snow.png" width=3 height=10 alt="96.9%"></td></tr></table>
       </td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">49 / 49</td>
-      <td class="coverPerHi">100.0&nbsp;%</td>
-      <td class="coverNumHi">14 / 14</td>
-      <td class="coverPerMed">78.6&nbsp;%</td>
-      <td class="coverNumMed">11 / 14</td>
+      <td class="coverPerHi">96.9&nbsp;%</td>
+      <td class="coverNumHi">62 / 64</td>
+      <td class="coverPerMed">89.5&nbsp;%</td>
+      <td class="coverNumMed">17 / 19</td>
+      <td class="coverPerMed">82.4&nbsp;%</td>
+      <td class="coverNumMed">14 / 17</td>
     </tr>
     <tr>
       <td class="coverFile"><a href="VersionModule.sol.gcov.html">VersionModule.sol</a></td>
diff --git a/doc/coverage/lcov.info b/doc/coverage/lcov.info
index b64b64b..f9c8faf 100644
--- a/doc/coverage/lcov.info
+++ b/doc/coverage/lcov.info
@@ -1,178 +1,258 @@
 TN:
 SF:src/RuleEngineBase.sol
-DA:37,5
-FN:37,RuleEngineBase.transferred.0
+DA:42,5
+FN:42,RuleEngineBase.transferred.0
 FNDA:5,RuleEngineBase.transferred.0
-DA:44,4
-DA:50,18
-FN:50,RuleEngineBase.transferred.1
+DA:49,4
+DA:55,18
+FN:55,RuleEngineBase.transferred.1
 FNDA:18,RuleEngineBase.transferred.1
-DA:56,16
-DA:60,4
-FN:60,RuleEngineBase.created
-FNDA:4,RuleEngineBase.created
-DA:61,2
+DA:61,16
 DA:65,4
-FN:65,RuleEngineBase.destroyed
-FNDA:4,RuleEngineBase.destroyed
+FN:65,RuleEngineBase.created
+FNDA:4,RuleEngineBase.created
 DA:66,2
-DA:78,34
-FN:78,RuleEngineBase.detectTransferRestriction
+DA:70,4
+FN:70,RuleEngineBase.destroyed
+FNDA:4,RuleEngineBase.destroyed
+DA:71,2
+DA:83,34
+FN:83,RuleEngineBase.detectTransferRestriction
 FNDA:34,RuleEngineBase.detectTransferRestriction
-DA:85,59
-DA:91,18
-FN:91,RuleEngineBase.detectTransferRestrictionFrom
+DA:90,59
+DA:96,18
+FN:96,RuleEngineBase.detectTransferRestrictionFrom
 FNDA:18,RuleEngineBase.detectTransferRestrictionFrom
-DA:98,39
-DA:104,19
-FN:104,RuleEngineBase.messageForTransferRestriction
+DA:103,39
+DA:109,19
+FN:109,RuleEngineBase.messageForTransferRestriction
 FNDA:19,RuleEngineBase.messageForTransferRestriction
-DA:111,19
-DA:117,25
-FN:117,RuleEngineBase.canTransfer
+DA:116,19
+DA:122,25
+FN:122,RuleEngineBase.canTransfer
 FNDA:25,RuleEngineBase.canTransfer
-DA:124,25
-DA:130,21
-FN:130,RuleEngineBase.canTransferFrom
+DA:129,25
+DA:135,21
+FN:135,RuleEngineBase.canTransferFrom
 FNDA:21,RuleEngineBase.canTransferFrom
-DA:137,21
-DA:143,59
-FN:143,RuleEngineBase._detectTransferRestriction
+DA:142,21
+DA:148,59
+FN:148,RuleEngineBase._detectTransferRestriction
 FNDA:59,RuleEngineBase._detectTransferRestriction
-DA:144,59
-DA:145,59
-DA:146,59
-DA:147,59
-BRDA:147,0,0,43
-DA:148,43
-DA:151,16
-DA:154,39
-FN:154,RuleEngineBase._detectTransferRestrictionFrom
+DA:149,59
+DA:150,59
+DA:151,59
+DA:152,59
+BRDA:152,0,0,43
+DA:153,43
+DA:156,16
+DA:159,39
+FN:159,RuleEngineBase._detectTransferRestrictionFrom
 FNDA:39,RuleEngineBase._detectTransferRestrictionFrom
-DA:160,39
-DA:161,39
-DA:162,39
-DA:163,39
-BRDA:163,1,0,29
-DA:164,29
-DA:167,10
-DA:176,19
-FN:176,RuleEngineBase._messageForTransferRestriction
+DA:165,39
+DA:166,39
+DA:167,39
+DA:168,39
+BRDA:168,1,0,29
+DA:169,29
+DA:172,10
+DA:181,19
+FN:181,RuleEngineBase._messageForTransferRestriction
 FNDA:19,RuleEngineBase._messageForTransferRestriction
-DA:177,19
-DA:178,19
-DA:179,16
-BRDA:179,2,0,14
-DA:180,14
-DA:183,5
-DA:189,217
-FN:189,RuleEngineBase._checkRule
-FNDA:217,RuleEngineBase._checkRule
-DA:190,217
-DA:191,208
-BRDA:191,3,0,6
-DA:192,6
-FNF:13
-FNH:13
-LF:42
-LH:42
+DA:182,19
+DA:183,19
+DA:184,16
+BRDA:184,2,0,14
+DA:185,14
+DA:188,5
+DA:194,253
+FN:194,RuleEngineBase._checkRule
+FNDA:253,RuleEngineBase._checkRule
+DA:195,253
+DA:196,244
+BRDA:196,3,0,6
+DA:197,6
+DA:205,46
+FN:205,RuleEngineBase._supportsRuleEngineBaseInterface
+FNDA:46,RuleEngineBase._supportsRuleEngineBaseInterface
+DA:206,46
+DA:207,41
+DA:208,31
+DA:209,26
+DA:210,21
+FNF:14
+FNH:14
+LF:48
+LH:48
 BRF:4
 BRH:4
 end_of_record
 TN:
-SF:src/deployment/RuleEngine.sol
-DA:26,127
-FN:26,RuleEngine.constructor
-FNDA:127,RuleEngine.constructor
-DA:29,127
-BRDA:29,0,0,1
-DA:30,1
-DA:32,126
-BRDA:32,1,0,31
-DA:33,31
-DA:35,126
-DA:43,135
-FN:43,RuleEngine.hasRole
-FNDA:135,RuleEngine.hasRole
-DA:44,350
-BRDA:44,2,0,185
-BRDA:44,2,1,165
-DA:45,185
-DA:47,165
-DA:52,6
-FN:52,RuleEngine.supportsInterface
-FNDA:6,RuleEngine.supportsInterface
-DA:53,6
-DA:54,5
-DA:55,4
-DA:56,3
+SF:src/RuleEngineOwnableShared.sol
+DA:22,128
+FN:22,RuleEngineOwnableShared.constructor
+FNDA:128,RuleEngineOwnableShared.constructor
+DA:23,128
+BRDA:23,0,0,1
+DA:24,1
+DA:29,29
+FN:29,RuleEngineOwnableShared.supportsInterface
+FNDA:29,RuleEngineOwnableShared.supportsInterface
+DA:30,29
+DA:31,5
+DA:37,10
+FN:37,RuleEngineOwnableShared._checkOwnershipTransferTarget
+FNDA:10,RuleEngineOwnableShared._checkOwnershipTransferTarget
+DA:38,10
+BRDA:38,1,0,2
+DA:39,2
+DA:50,181
+FN:50,RuleEngineOwnableShared._msgSender
+FNDA:181,RuleEngineOwnableShared._msgSender
+DA:51,181
 DA:57,2
-DA:63,15
-FN:63,RuleEngine._onlyComplianceManager
-FNDA:15,RuleEngine._onlyComplianceManager
-DA:64,170
-FN:64,RuleEngine._onlyRulesManager
-FNDA:170,RuleEngine._onlyRulesManager
-DA:69,366
-FN:69,RuleEngine._msgSender
-FNDA:366,RuleEngine._msgSender
-DA:70,366
-DA:76,1
-FN:76,RuleEngine._msgData
+FN:57,RuleEngineOwnableShared._msgData
+FNDA:2,RuleEngineOwnableShared._msgData
+DA:58,2
+DA:64,183
+FN:64,RuleEngineOwnableShared._contextSuffixLength
+FNDA:183,RuleEngineOwnableShared._contextSuffixLength
+DA:65,183
+FNF:6
+FNH:6
+LF:15
+LH:15
+BRF:2
+BRH:2
+end_of_record
+TN:
+SF:src/deployment/RuleEngine.sol
+DA:27,146
+FN:27,RuleEngine.constructor
+FNDA:146,RuleEngine.constructor
+DA:30,146
+BRDA:30,0,0,1
+DA:31,1
+DA:33,145
+BRDA:33,1,0,31
+DA:34,31
+DA:36,145
+DA:44,22
+FN:44,RuleEngine.grantRole
+FNDA:22,RuleEngine.grantRole
+DA:45,22
+BRDA:45,2,0,3
+DA:46,3
+DA:48,19
+DA:55,154
+FN:55,RuleEngine.hasRole
+FNDA:154,RuleEngine.hasRole
+DA:62,413
+BRDA:62,3,0,219
+BRDA:62,3,1,194
+DA:63,219
+DA:65,194
+DA:70,17
+FN:70,RuleEngine.supportsInterface
+FNDA:17,RuleEngine.supportsInterface
+DA:77,17
+DA:83,18
+FN:83,RuleEngine._onlyComplianceManager
+FNDA:18,RuleEngine._onlyComplianceManager
+DA:84,196
+FN:84,RuleEngine._onlyRulesManager
+FNDA:196,RuleEngine._onlyRulesManager
+DA:85,5
+FN:85,RuleEngine._onlyRulesLimitManager
+FNDA:5,RuleEngine._onlyRulesLimitManager
+DA:90,450
+FN:90,RuleEngine._msgSender
+FNDA:450,RuleEngine._msgSender
+DA:91,450
+DA:97,1
+FN:97,RuleEngine._msgData
 FNDA:1,RuleEngine._msgData
-DA:77,1
-DA:83,367
-FN:83,RuleEngine._contextSuffixLength
-FNDA:367,RuleEngine._contextSuffixLength
-DA:84,367
-FNF:8
-FNH:8
-LF:24
-LH:24
-BRF:4
-BRH:4
+DA:98,1
+DA:104,451
+FN:104,RuleEngine._contextSuffixLength
+FNDA:451,RuleEngine._contextSuffixLength
+DA:105,451
+FNF:10
+FNH:10
+LF:25
+LH:25
+BRF:5
+BRH:5
 end_of_record
 TN:
 SF:src/deployment/RuleEngineOwnable.sol
-DA:29,77
-FN:29,RuleEngineOwnable.constructor
-FNDA:77,RuleEngineOwnable.constructor
-DA:35,76
-BRDA:35,0,0,1
-DA:36,1
-DA:44,64
-FN:44,RuleEngineOwnable._onlyRulesManager
-FNDA:64,RuleEngineOwnable._onlyRulesManager
-DA:49,21
-FN:49,RuleEngineOwnable._onlyComplianceManager
-FNDA:21,RuleEngineOwnable._onlyComplianceManager
-DA:52,9
-FN:52,RuleEngineOwnable.supportsInterface
-FNDA:9,RuleEngineOwnable.supportsInterface
-DA:53,9
-DA:54,8
-DA:55,7
-DA:56,5
-DA:57,4
-DA:58,3
-DA:68,108
-FN:68,RuleEngineOwnable._msgSender
-FNDA:108,RuleEngineOwnable._msgSender
-DA:69,108
-DA:75,1
-FN:75,RuleEngineOwnable._msgData
+DA:27,65
+FN:27,RuleEngineOwnable._onlyRulesManager
+FNDA:65,RuleEngineOwnable._onlyRulesManager
+DA:28,2
+FN:28,RuleEngineOwnable._onlyRulesLimitManager
+FNDA:2,RuleEngineOwnable._onlyRulesLimitManager
+DA:33,22
+FN:33,RuleEngineOwnable._onlyComplianceManager
+FNDA:22,RuleEngineOwnable._onlyComplianceManager
+DA:39,5
+FN:39,RuleEngineOwnable.transferOwnership
+FNDA:5,RuleEngineOwnable.transferOwnership
+DA:40,4
+DA:41,3
+DA:47,146
+FN:47,RuleEngineOwnable._msgSender
+FNDA:146,RuleEngineOwnable._msgSender
+DA:48,146
+DA:54,1
+FN:54,RuleEngineOwnable._msgData
 FNDA:1,RuleEngineOwnable._msgData
-DA:76,1
-DA:82,109
-FN:82,RuleEngineOwnable._contextSuffixLength
-FNDA:109,RuleEngineOwnable._contextSuffixLength
-DA:83,109
+DA:55,1
+DA:61,147
+FN:61,RuleEngineOwnable._contextSuffixLength
+FNDA:147,RuleEngineOwnable._contextSuffixLength
+DA:62,147
+FNF:7
+FNH:7
+LF:12
+LH:12
+BRF:0
+BRH:0
+end_of_record
+TN:
+SF:src/deployment/RuleEngineOwnable2Step.sol
+DA:29,5
+FN:29,RuleEngineOwnable2Step._onlyRulesManager
+FNDA:5,RuleEngineOwnable2Step._onlyRulesManager
+DA:30,2
+FN:30,RuleEngineOwnable2Step._onlyRulesLimitManager
+FNDA:2,RuleEngineOwnable2Step._onlyRulesLimitManager
+DA:35,3
+FN:35,RuleEngineOwnable2Step._onlyComplianceManager
+FNDA:3,RuleEngineOwnable2Step._onlyComplianceManager
+DA:41,6
+FN:41,RuleEngineOwnable2Step.transferOwnership
+FNDA:6,RuleEngineOwnable2Step.transferOwnership
+DA:42,6
+DA:43,5
+DA:49,35
+FN:49,RuleEngineOwnable2Step._msgSender
+FNDA:35,RuleEngineOwnable2Step._msgSender
+DA:50,35
+DA:56,1
+FN:56,RuleEngineOwnable2Step._msgData
+FNDA:1,RuleEngineOwnable2Step._msgData
+DA:57,1
+DA:63,36
+FN:63,RuleEngineOwnable2Step._contextSuffixLength
+FNDA:36,RuleEngineOwnable2Step._contextSuffixLength
+DA:64,36
 FNF:7
 FNH:7
-LF:18
-LH:18
-BRF:1
-BRH:1
+LF:12
+LH:12
+BRF:0
+BRH:0
 end_of_record
 TN:
 SF:src/modules/ERC3643ComplianceModule.sol
@@ -180,169 +260,208 @@ DA:29,5
 FN:29,ERC3643ComplianceModule.onlyBoundToken
 FNDA:5,ERC3643ComplianceModule.onlyBoundToken
 DA:30,5
-DA:34,26
+DA:34,0
 FN:34,ERC3643ComplianceModule.onlyComplianceManager
-FNDA:26,ERC3643ComplianceModule.onlyComplianceManager
-DA:35,26
-DA:50,26
-FN:50,ERC3643ComplianceModule.bindToken
-FNDA:26,ERC3643ComplianceModule.bindToken
-DA:51,25
-DA:60,10
-FN:60,ERC3643ComplianceModule.unbindToken
-FNDA:10,ERC3643ComplianceModule.unbindToken
-DA:61,9
-DA:65,15
-FN:65,ERC3643ComplianceModule.isTokenBound
-FNDA:15,ERC3643ComplianceModule.isTokenBound
-DA:66,15
-DA:70,5
-FN:70,ERC3643ComplianceModule.getTokenBound
+FNDA:0,ERC3643ComplianceModule.onlyComplianceManager
+DA:35,0
+DA:52,38
+FN:52,ERC3643ComplianceModule.bindToken
+FNDA:38,ERC3643ComplianceModule.bindToken
+DA:53,38
+DA:54,34
+DA:65,16
+FN:65,ERC3643ComplianceModule.unbindToken
+FNDA:16,ERC3643ComplianceModule.unbindToken
+DA:66,16
+DA:67,12
+DA:71,21
+FN:71,ERC3643ComplianceModule.isTokenBound
+FNDA:21,ERC3643ComplianceModule.isTokenBound
+DA:72,21
+DA:76,5
+FN:76,ERC3643ComplianceModule.getTokenBound
 FNDA:5,ERC3643ComplianceModule.getTokenBound
-DA:71,5
-BRDA:71,0,0,3
-BRDA:71,0,1,2
-DA:74,3
-DA:76,2
-DA:81,4
-FN:81,ERC3643ComplianceModule.getTokenBounds
+DA:77,5
+BRDA:77,0,0,3
+BRDA:77,0,1,2
+DA:80,3
+DA:82,2
+DA:87,4
+FN:87,ERC3643ComplianceModule.getTokenBounds
 FNDA:4,ERC3643ComplianceModule.getTokenBounds
-DA:82,4
-DA:89,9
-FN:89,ERC3643ComplianceModule._unbindToken
-FNDA:9,ERC3643ComplianceModule._unbindToken
-DA:90,9
-BRDA:90,1,0,2
-BRDA:90,1,1,7
-DA:92,7
-BRDA:92,2,0,-
-BRDA:92,2,1,7
-DA:94,7
-DA:97,57
-FN:97,ERC3643ComplianceModule._bindToken
-FNDA:57,ERC3643ComplianceModule._bindToken
-DA:98,57
-BRDA:98,3,0,2
-BRDA:98,3,1,55
-DA:99,55
-BRDA:99,4,0,2
-BRDA:99,4,1,53
-DA:101,53
-BRDA:101,5,0,-
-BRDA:101,5,1,53
-DA:102,53
-DA:105,31
-FN:105,ERC3643ComplianceModule._checkBoundToken
+DA:88,4
+DA:95,12
+FN:95,ERC3643ComplianceModule._unbindToken
+FNDA:12,ERC3643ComplianceModule._unbindToken
+DA:96,12
+BRDA:96,1,0,2
+BRDA:96,1,1,10
+DA:98,10
+BRDA:98,2,0,-
+BRDA:98,2,1,10
+DA:100,10
+DA:103,66
+FN:103,ERC3643ComplianceModule._bindToken
+FNDA:66,ERC3643ComplianceModule._bindToken
+DA:104,66
+BRDA:104,3,0,2
+BRDA:104,3,1,64
+DA:105,64
+BRDA:105,4,0,2
+BRDA:105,4,1,62
+DA:107,62
+BRDA:107,5,0,-
+BRDA:107,5,1,62
+DA:108,62
+DA:111,31
+FN:111,ERC3643ComplianceModule._checkBoundToken
 FNDA:31,ERC3643ComplianceModule._checkBoundToken
-DA:106,31
-BRDA:106,6,0,7
-DA:107,7
-FNF:10
+DA:112,31
+BRDA:112,6,0,7
+DA:113,7
+DA:121,54
+FN:121,ERC3643ComplianceModule._authorizeComplianceBindingChange
+FNDA:54,ERC3643ComplianceModule._authorizeComplianceBindingChange
+DA:122,54
+BRDA:122,7,0,43
+DA:123,43
+DA:127,0
+FN:127,ERC3643ComplianceModule._onlyComplianceManager
+FNDA:0,ERC3643ComplianceModule._onlyComplianceManager
+FNF:12
 FNH:10
-LF:28
-LH:28
-BRF:13
-BRH:11
+LF:34
+LH:31
+BRF:14
+BRH:12
 end_of_record
 TN:
 SF:src/modules/RulesManagementModule.sol
-DA:16,15
+DA:16,16
 FN:16,RulesManagementModule.onlyRulesManager
-FNDA:15,RulesManagementModule.onlyRulesManager
-DA:17,15
-DA:45,49
-FN:45,RulesManagementModule.setRules
-FNDA:49,RulesManagementModule.setRules
-DA:46,47
-BRDA:46,0,0,6
-DA:47,6
-DA:49,41
-BRDA:49,1,0,35
-DA:50,35
-DA:52,41
-DA:53,69
-DA:55,64
-BRDA:55,2,0,-
-BRDA:55,2,1,64
-DA:56,64
-DA:63,15
-FN:63,RulesManagementModule.clearRules
-FNDA:15,RulesManagementModule.clearRules
-DA:64,13
-DA:73,152
-FN:73,RulesManagementModule.addRule
-FNDA:152,RulesManagementModule.addRule
-DA:74,148
-DA:75,138
-BRDA:75,3,0,-
-BRDA:75,3,1,138
-DA:76,138
-DA:82,18
-FN:82,RulesManagementModule.removeRule
+FNDA:16,RulesManagementModule.onlyRulesManager
+DA:17,16
+DA:21,9
+FN:21,RulesManagementModule.onlyRulesLimitManager
+FNDA:9,RulesManagementModule.onlyRulesLimitManager
+DA:22,9
+DA:50,51
+FN:50,RulesManagementModule.setRules
+FNDA:51,RulesManagementModule.setRules
+DA:51,49
+BRDA:51,0,0,6
+DA:52,6
+DA:54,43
+BRDA:54,1,0,1
+DA:55,1
+DA:57,42
+BRDA:57,2,0,36
+DA:58,36
+DA:60,42
+DA:61,79
+DA:63,74
+BRDA:63,3,0,-
+BRDA:63,3,1,74
+DA:64,74
+DA:71,16
+FN:71,RulesManagementModule.clearRules
+FNDA:16,RulesManagementModule.clearRules
+DA:72,13
+DA:80,181
+FN:80,RulesManagementModule.addRule
+FNDA:181,RulesManagementModule.addRule
+DA:81,176
+BRDA:81,4,0,2
+DA:82,2
+DA:84,174
+DA:85,164
+BRDA:85,5,0,-
+BRDA:85,5,1,164
+DA:86,164
+DA:92,8
+FN:92,RulesManagementModule.maxRules
+FNDA:8,RulesManagementModule.maxRules
+DA:93,8
+DA:99,9
+FN:99,RulesManagementModule.setMaxRules
+FNDA:9,RulesManagementModule.setMaxRules
+DA:100,5
+BRDA:100,6,0,1
+DA:101,1
+DA:103,4
+DA:104,4
+DA:110,18
+FN:110,RulesManagementModule.removeRule
 FNDA:18,RulesManagementModule.removeRule
-DA:83,16
-BRDA:83,4,0,3
-BRDA:83,4,1,13
-DA:84,13
-DA:92,161
-FN:92,RulesManagementModule.rulesCount
-FNDA:161,RulesManagementModule.rulesCount
-DA:93,278
-DA:99,71
-FN:99,RulesManagementModule.containsRule
-FNDA:71,RulesManagementModule.containsRule
-DA:100,71
-DA:106,5
-FN:106,RulesManagementModule.rule
+DA:111,16
+BRDA:111,7,0,3
+BRDA:111,7,1,13
+DA:112,13
+DA:120,183
+FN:120,RulesManagementModule.rulesCount
+FNDA:183,RulesManagementModule.rulesCount
+DA:121,300
+DA:127,79
+FN:127,RulesManagementModule.containsRule
+FNDA:79,RulesManagementModule.containsRule
+DA:128,89
+DA:134,5
+FN:134,RulesManagementModule.rule
 FNDA:5,RulesManagementModule.rule
-DA:107,133
-BRDA:107,5,0,131
-BRDA:107,5,1,2
-DA:110,131
-DA:112,2
-DA:119,15
-FN:119,RulesManagementModule.rules
+DA:135,133
+BRDA:135,8,0,131
+BRDA:135,8,1,2
+DA:138,131
+DA:140,2
+DA:147,15
+FN:147,RulesManagementModule.rules
 FNDA:15,RulesManagementModule.rules
-DA:120,15
-DA:130,48
-FN:130,RulesManagementModule._clearRules
-FNDA:48,RulesManagementModule._clearRules
-DA:131,48
-DA:132,48
-DA:142,13
-FN:142,RulesManagementModule._removeRule
+DA:148,15
+DA:158,49
+FN:158,RulesManagementModule._clearRules
+FNDA:49,RulesManagementModule._clearRules
+DA:159,49
+DA:160,49
+DA:170,13
+FN:170,RulesManagementModule._removeRule
 FNDA:13,RulesManagementModule._removeRule
-DA:144,13
-BRDA:144,6,0,-
-BRDA:144,6,1,13
-DA:145,13
-DA:151,217
-FN:151,RulesManagementModule._checkRule
-FNDA:217,RulesManagementModule._checkRule
-DA:152,217
-BRDA:152,7,0,3
-DA:153,3
-DA:155,214
-BRDA:155,8,0,6
-DA:156,6
-DA:173,20
-FN:173,RulesManagementModule._transferred.0
+DA:172,13
+BRDA:172,9,0,-
+BRDA:172,9,1,13
+DA:173,13
+DA:179,253
+FN:179,RulesManagementModule._checkRule
+FNDA:253,RulesManagementModule._checkRule
+DA:180,253
+BRDA:180,10,0,3
+DA:181,3
+DA:183,250
+BRDA:183,11,0,6
+DA:184,6
+DA:201,20
+FN:201,RulesManagementModule._transferred.0
 FNDA:20,RulesManagementModule._transferred.0
-DA:174,20
-DA:175,20
-DA:176,14
-DA:192,4
-FN:192,RulesManagementModule._transferred.1
+DA:202,20
+DA:203,20
+DA:204,14
+DA:220,4
+FN:220,RulesManagementModule._transferred.1
 FNDA:4,RulesManagementModule._transferred.1
-DA:193,4
-DA:194,4
-DA:195,4
-FNF:14
-FNH:14
-LF:49
-LH:49
-BRF:14
-BRH:11
+DA:221,4
+DA:222,4
+DA:223,4
+DA:227,0
+FN:227,RulesManagementModule._onlyRulesManager
+FNDA:0,RulesManagementModule._onlyRulesManager
+DA:228,0
+FN:228,RulesManagementModule._onlyRulesLimitManager
+FNDA:0,RulesManagementModule._onlyRulesLimitManager
+FNF:19
+FNH:17
+LF:64
+LH:62
+BRF:17
+BRH:14
 end_of_record
 TN:
 SF:src/modules/VersionModule.sol
diff --git a/doc/security/audits/tools/aderyn-report-feedback.md b/doc/security/audits/tools/aderyn-report-feedback.md
index 7211d8d..1d3e41a 100644
--- a/doc/security/audits/tools/aderyn-report-feedback.md
+++ b/doc/security/audits/tools/aderyn-report-feedback.md
@@ -1,160 +1,49 @@
 # Aderyn Report — Assessment Feedback
 
-**Tool:** [Aderyn](https://github.com/Cyfrin/aderyn)
-**Report file:** `aderyn-report.md`
-**Codebase version:** v3.0.0-rc2 (14 files, 425 nSLOC)
-**Assessment date:** 2026-03-18
-
-> Aderyn was run with `aderyn -x mocks`. Findings cover production source only (`src/`).
-
----
+**Tool:** [Aderyn](https://github.com/Cyfrin/aderyn)  
+**Report file:** `doc/security/audits/tools/aderyn-report.md`  
+**Assessment date:** 2026-05-05
 
 ## Summary
 
-| ID | Finding | Severity | Assessment |
-|----|---------|----------|------------|
-| L-1 | Centralization Risk | Low | Accepted by design |
-| L-2 | Unspecific Solidity Pragma | Low | Accepted by design |
-| L-3 | PUSH0 Opcode | Low | Not applicable — EVM target is Prague |
-| L-4 | Empty Block | Low | Accepted by design (access-control hook pattern) |
-| L-5 | Loop Contains `require`/`revert` | Low | Accepted by design (atomic batch validation) |
-| L-6 | Costly Operations Inside Loop | Low | Accepted — unavoidable `SSTORE` in `setRules` |
-| L-7 | Unchecked Return | Low | Accepted — return value is irrelevant in constructor |
-
-No High findings.
-
----
-
-## L-1: Centralization Risk
-
-### What Aderyn reports
-
-6 instances: `AccessControl` + role-gated hooks in `RuleEngine`, and `Ownable` + owner-gated hooks in `RuleEngineOwnable`.
-
-### Assessment
-
-**Accepted by design. No action required.**
-
-The RuleEngine is an administrative compliance contract for tokenized securities. Privileged access control is an intentional and necessary feature:
-
-- `RuleEngine` uses RBAC (`AccessControl`) with distinct `RULES_MANAGEMENT_ROLE` and `COMPLIANCE_MANAGER_ROLE`, allowing fine-grained delegation to different operators.
-- `RuleEngineOwnable` uses ERC-173 `Ownable` for simpler single-owner deployments, as recommended by the ERC-3643 specification.
-
-Both variants are provided precisely to give deployers a choice of trust model. Centralization at the operator level is expected and required for a compliance tool managing transfer restrictions on regulated assets.
-
----
-
-## L-2: Unspecific Solidity Pragma
-
-### What Aderyn reports
-
-12 instances of `pragma solidity ^0.8.20;` across all source files.
-
-### Assessment
-
-**Accepted by design. No action required.**
-
-The floating `^0.8.20` pragma is intentional. The RuleEngine is designed to be used as a library/dependency by integrators who may compile with different Solidity versions ≥ 0.8.20. Locking to a specific patch version would unnecessarily restrict integrators.
-
-The project itself always compiles with a pinned version: Solidity `0.8.34` as specified in `foundry.toml` and `hardhat.config.js`. The pragma floor of `0.8.20` captures the minimum required language features (custom errors, EnumerableSet improvements, etc.).
-
----
-
-## L-3: PUSH0 Opcode
-
-### What Aderyn reports
-
-14 instances: `pragma solidity ^0.8.20` may generate `PUSH0` opcodes (introduced in Shanghai), which are unsupported on some chains.
-
-### Assessment
-
-**Not applicable. No action required.**
-
-The project explicitly targets the **Prague EVM** (`evm_version = "prague"` in both `foundry.toml` and `hardhat.config.js`). `PUSH0` was introduced in the Shanghai upgrade (EIP-3855); it is supported by all EVM versions from Shanghai onwards, including Cancun and Prague. Any chain that supports Prague also supports `PUSH0`.
-
-If the project were ever deployed to a pre-Shanghai chain, this would require attention — but that is not a supported target.
-
----
-
-## L-4: Empty Block
-
-### What Aderyn reports
-
-4 instances: `_onlyComplianceManager()` and `_onlyRulesManager()` in both `RuleEngine` and `RuleEngineOwnable` have empty function bodies.
-
-### Assessment
-
-**Accepted by design. No action required.**
-
-These functions implement the **access-control hook pattern** used throughout the codebase (documented in `CLAUDE.md`). The access control check is enforced entirely by the modifier on the function declaration line — e.g.:
-
-```solidity
-function _onlyRulesManager() internal virtual override onlyOwner {}
-```
-
-The modifier (`onlyOwner` / `onlyRole(...)`) executes before the empty body. The body is intentionally empty because the entire semantics are carried by the modifier. This pattern is necessary to allow abstract modules to define virtual hooks that concrete contracts override with different access control mechanisms.
-
-Removing or rewriting these functions would break the hook pattern.
-
----
-
-## L-5: Loop Contains `require`/`revert`
-
-### What Aderyn reports
-
-1 instance: `setRules` loop at `RulesManagementModule.sol` line 57 — `_checkRule` inside the loop can revert.
-
-### Assessment
-
-**Accepted by design. No action required.**
-
-`setRules` is an **atomic batch replacement** operation: it clears the existing rule set and registers a new one in a single transaction. If any rule in the input array is invalid (zero address, duplicate, or fails ERC-165 check), the entire operation must revert to prevent partial registration, which would leave the engine in an inconsistent compliance state.
-
-The "forgive on fail" pattern suggested by Aderyn (skip invalid entries and return them post-loop) is inappropriate here: silently skipping an invalid rule would give the operator a false impression that all rules were registered when in fact some were not, potentially creating a compliance gap.
-
-The revert-on-invalid behavior is intentional and correct.
-
----
-
-## L-6: Costly Operations Inside Loop
-
-### What Aderyn reports
-
-1 instance: `setRules` loop at `RulesManagementModule.sol` line 57 — `_rules.add()` performs an `SSTORE`.
-
-### Assessment
-
-**Accepted — unavoidable. No action required.**
-
-The purpose of `setRules` is to persist each rule to storage atomically. `EnumerableSet.add()` must write to storage by definition — there is no way to register rules without `SSTORE`. The suggestion to use a local variable to defer the storage write does not apply here because the goal of the loop body IS the storage write.
-
-The gas cost is bounded by the number of rules being registered, which is under operator control and bounded by practical constraints (see NatSpec and README warnings on rule-count limits).
-
----
-
-## L-7: Unchecked Return
-
-### What Aderyn reports
+| ID | Finding | Tool Severity | Assessment | Decision |
+|----|---------|---------------|------------|----------|
+| L-1 | Centralization Risk | Low | Valid observation of privileged governance model | Accepted by design |
+| L-2 | Unspecific Solidity Pragma | Low | Intentional library-style pragma with pinned compiler in tooling | Accepted by design |
+| L-3 | PUSH0 Opcode | Low | Not applicable for configured target EVM | Accepted by design |
+| L-4 | Modifier Invoked Only Once | Low | Style heuristic; modifier supports hook pattern consistency | Accepted by design |
+| L-5 | Empty Block | Low | Expected for hook overrides where modifier carries logic | Accepted by design |
+| L-6 | Loop Contains `require`/`revert` | Low | Required for atomicity in `setRules` | Accepted by design |
+| L-7 | Costly operations inside loop | Low | Storage writes are intrinsic to rule registration | Accepted by design |
+| L-8 | Unchecked Return | Low | `_grantRole` return not security-relevant in constructor flow | Accepted by design |
 
-1 instance: `_grantRole(DEFAULT_ADMIN_ROLE, admin)` in `RuleEngine` constructor (line 35) — the `bool` return value is ignored.
+No High findings were reported.
 
-### Assessment
+## Detailed triage
 
-**Accepted — return value is irrelevant in this context. No action required.**
+### L-1 Centralization Risk
+This contract family is explicitly administrative compliance infrastructure. `RuleEngine` (RBAC), `RuleEngineOwnable`, and `RuleEngineOwnable2Step` intentionally expose privileged operations for rule and token binding governance. This is a product requirement, not a vulnerability.
 
-`AccessControl._grantRole()` (OpenZeppelin v5) returns `true` if the role was newly granted, `false` if the account already held the role. In the constructor, `admin` cannot already hold `DEFAULT_ADMIN_ROLE` (the contract was just deployed; no roles have been assigned yet), so the call always returns `true`.
+### L-2 Unspecific Solidity Pragma
+`^0.8.20` is intentional for integrator compatibility. Build tooling remains pinned (Solc 0.8.34). This is a common and acceptable pattern for reusable contract packages.
 
-Even if somehow `false` were returned, it would not represent an error — `_grantRole` does not revert on a no-op. Checking and branching on this value in a constructor would add meaningless code.
+### L-3 PUSH0 Opcode
+The project target is modern EVM (`prague`). `PUSH0` compatibility concerns only pre-Shanghai targets; those are outside the supported deployment matrix.
 
-This pattern (ignoring the return of `_grantRole` in a constructor) is standard across all OpenZeppelin-based contracts.
+### L-4 Modifier Invoked Only Once
+`onlyRulesLimitManager` being used once is not a risk. It preserves the same extensible access-control abstraction used across modules and variants.
 
----
+### L-5 Empty Block
+Empty bodies in `_onlyComplianceManager`, `_onlyRulesManager`, and `_onlyRulesLimitManager` are intentional. Authorization executes in the modifier, and the empty body enforces a clean virtual-hook architecture.
 
-## Overall conclusion
+### L-6 Loop Contains `require`/`revert`
+`setRules` must be all-or-nothing. Reverting on invalid element prevents partial updates and inconsistent policy state.
 
-All 7 Aderyn findings are **accepted**:
+### L-7 Costly operations inside loop
+`EnumerableSet.add` in a loop is unavoidable for persistent rule set updates. Cost scales with rule count and is an operator-controlled admin path.
 
-- **L-1, L-2, L-3**: Reflect intentional design choices (privileged compliance model, library-friendly pragma, Prague EVM target).
-- **L-4, L-5, L-6, L-7**: Are false-positive patterns generated by Aderyn that do not apply to this codebase's architecture.
+### L-8 Unchecked Return
+Ignoring `_grantRole` return in constructor is acceptable; no exploitable path is introduced, and constructor semantics do not depend on that boolean.
 
-No code changes are required for v3.0.0-rc2 based on this report.
+## Conclusion
+All Aderyn findings are either design tradeoffs or static-analysis style heuristics. No code changes are required based on this report.
diff --git a/doc/security/audits/tools/aderyn-report.md b/doc/security/audits/tools/aderyn-report.md
index d408f9d..9619842 100644
--- a/doc/security/audits/tools/aderyn-report.md
+++ b/doc/security/audits/tools/aderyn-report.md
@@ -11,10 +11,11 @@ This report was generated by [Aderyn](https://github.com/Cyfrin/aderyn), a stati
   - [L-1: Centralization Risk](#l-1-centralization-risk)
   - [L-2: Unspecific Solidity Pragma](#l-2-unspecific-solidity-pragma)
   - [L-3: PUSH0 Opcode](#l-3-push0-opcode)
-  - [L-4: Empty Block](#l-4-empty-block)
-  - [L-5: Loop Contains `require`/`revert`](#l-5-loop-contains-requirerevert)
-  - [L-6: Costly operations inside loop](#l-6-costly-operations-inside-loop)
-  - [L-7: Unchecked Return](#l-7-unchecked-return)
+  - [L-4: Modifier Invoked Only Once](#l-4-modifier-invoked-only-once)
+  - [L-5: Empty Block](#l-5-empty-block)
+  - [L-6: Loop Contains `require`/`revert`](#l-6-loop-contains-requirerevert)
+  - [L-7: Costly operations inside loop](#l-7-costly-operations-inside-loop)
+  - [L-8: Unchecked Return](#l-8-unchecked-return)
 
 
 # Summary
@@ -23,29 +24,33 @@ This report was generated by [Aderyn](https://github.com/Cyfrin/aderyn), a stati
 
 | Key | Value |
 | --- | --- |
-| .sol Files | 14 |
-| Total nSLOC | 425 |
+| .sol Files | 18 |
+| Total nSLOC | 542 |
 
 
 ## Files Details
 
 | Filepath | nSLOC |
 | --- | --- |
-| src/RuleEngineBase.sol | 127 |
-| src/deployment/RuleEngine.sol | 47 |
-| src/deployment/RuleEngineOwnable.sol | 39 |
+| src/RuleEngineBase.sol | 138 |
+| src/RuleEngineOwnableShared.sol | 33 |
+| src/deployment/RuleEngine.sol | 63 |
+| src/deployment/RuleEngineOwnable.sol | 26 |
+| src/deployment/RuleEngineOwnable2Step.sol | 27 |
 | src/interfaces/IERC3643Compliance.sol | 13 |
 | src/interfaces/IRule.sol | 5 |
-| src/interfaces/IRulesManagementModule.sol | 12 |
+| src/interfaces/IRulesManagementModule.sol | 14 |
 | src/modules/ERC2771ModuleStandalone.sol | 6 |
-| src/modules/ERC3643ComplianceModule.sol | 58 |
-| src/modules/RulesManagementModule.sol | 83 |
+| src/modules/ERC3643ComplianceModule.sol | 65 |
+| src/modules/RulesManagementModule.sol | 105 |
 | src/modules/VersionModule.sol | 8 |
 | src/modules/library/ComplianceInterfaceId.sol | 5 |
+| src/modules/library/ERC1404InterfaceId.sol | 4 |
+| src/modules/library/OwnableInterfaceId.sol | 4 |
 | src/modules/library/RuleEngineInvariantStorage.sol | 5 |
 | src/modules/library/RuleInterfaceId.sol | 4 |
-| src/modules/library/RulesManagementModuleInvariantStorage.sol | 13 |
-| **Total** | **425** |
+| src/modules/library/RulesManagementModuleInvariantStorage.sol | 17 |
+| **Total** | **542** |
 
 
 ## Issue Summary
@@ -53,7 +58,7 @@ This report was generated by [Aderyn](https://github.com/Cyfrin/aderyn), a stati
 | Category | No. of Issues |
 | --- | --- |
 | High | 0 |
-| Low | 7 |
+| Low | 8 |
 
 
 # Low Issues
@@ -62,45 +67,93 @@ This report was generated by [Aderyn](https://github.com/Cyfrin/aderyn), a stati
 
 Contracts have owners with privileged rights to perform admin tasks and need to be trusted to not perform malicious updates or drain funds.
 
-<details><summary>6 Found Instances</summary>
+<details><summary>14 Found Instances</summary>
 
 
-- Found in src/deployment/RuleEngine.sol [Line: 21](src/deployment/RuleEngine.sol#L21)
+- Found in src/deployment/RuleEngine.sol [Line: 20](src/deployment/RuleEngine.sol#L20)
 
 	```solidity
-	contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControl {
+	contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControlEnumerable {
 	```
 
-- Found in src/deployment/RuleEngine.sol [Line: 63](src/deployment/RuleEngine.sol#L63)
+- Found in src/deployment/RuleEngine.sol [Line: 83](src/deployment/RuleEngine.sol#L83)
 
 	```solidity
 	    function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}
 	```
 
-- Found in src/deployment/RuleEngine.sol [Line: 64](src/deployment/RuleEngine.sol#L64)
+- Found in src/deployment/RuleEngine.sol [Line: 84](src/deployment/RuleEngine.sol#L84)
 
 	```solidity
 	    function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}
 	```
 
-- Found in src/deployment/RuleEngineOwnable.sol [Line: 21](src/deployment/RuleEngineOwnable.sol#L21)
+- Found in src/deployment/RuleEngine.sol [Line: 85](src/deployment/RuleEngine.sol#L85)
 
 	```solidity
-	contract RuleEngineOwnable is ERC2771ModuleStandalone, RuleEngineBase, Ownable {
+	    function _onlyRulesLimitManager() internal virtual override onlyRole(DEFAULT_ADMIN_ROLE) {}
 	```
 
-- Found in src/deployment/RuleEngineOwnable.sol [Line: 44](src/deployment/RuleEngineOwnable.sol#L44)
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 12](src/deployment/RuleEngineOwnable.sol#L12)
+
+	```solidity
+	contract RuleEngineOwnable is RuleEngineOwnableShared, Ownable {
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 27](src/deployment/RuleEngineOwnable.sol#L27)
 
 	```solidity
 	    function _onlyRulesManager() internal virtual override onlyOwner {}
 	```
 
-- Found in src/deployment/RuleEngineOwnable.sol [Line: 49](src/deployment/RuleEngineOwnable.sol#L49)
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 28](src/deployment/RuleEngineOwnable.sol#L28)
+
+	```solidity
+	    function _onlyRulesLimitManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 33](src/deployment/RuleEngineOwnable.sol#L33)
 
 	```solidity
 	    function _onlyComplianceManager() internal virtual override onlyOwner {}
 	```
 
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 39](src/deployment/RuleEngineOwnable.sol#L39)
+
+	```solidity
+	    function transferOwnership(address newOwner) public virtual override onlyOwner {
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 14](src/deployment/RuleEngineOwnable2Step.sol#L14)
+
+	```solidity
+	contract RuleEngineOwnable2Step is RuleEngineOwnableShared, Ownable2Step {
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 29](src/deployment/RuleEngineOwnable2Step.sol#L29)
+
+	```solidity
+	    function _onlyRulesManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 30](src/deployment/RuleEngineOwnable2Step.sol#L30)
+
+	```solidity
+	    function _onlyRulesLimitManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 35](src/deployment/RuleEngineOwnable2Step.sol#L35)
+
+	```solidity
+	    function _onlyComplianceManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 41](src/deployment/RuleEngineOwnable2Step.sol#L41)
+
+	```solidity
+	    function transferOwnership(address newOwner) public virtual override onlyOwner {
+	```
+
 </details>
 
 
@@ -109,7 +162,7 @@ Contracts have owners with privileged rights to perform admin tasks and need to
 
 Consider using a specific version of Solidity in your contracts instead of a wide version. For example, instead of `pragma solidity ^0.8.0;`, use `pragma solidity 0.8.0;`
 
-<details><summary>12 Found Instances</summary>
+<details><summary>14 Found Instances</summary>
 
 
 - Found in src/RuleEngineBase.sol [Line: 3](src/RuleEngineBase.sol#L3)
@@ -118,6 +171,12 @@ Consider using a specific version of Solidity in your contracts instead of a wid
 	pragma solidity ^0.8.20;
 	```
 
+- Found in src/RuleEngineOwnableShared.sol [Line: 3](src/RuleEngineOwnableShared.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
 - Found in src/deployment/RuleEngine.sol [Line: 3](src/deployment/RuleEngine.sol#L3)
 
 	```solidity
@@ -130,6 +189,12 @@ Consider using a specific version of Solidity in your contracts instead of a wid
 	pragma solidity ^0.8.20;
 	```
 
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 3](src/deployment/RuleEngineOwnable2Step.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
 - Found in src/interfaces/IERC3643Compliance.sol [Line: 3](src/interfaces/IERC3643Compliance.sol#L3)
 
 	```solidity
@@ -192,7 +257,7 @@ Consider using a specific version of Solidity in your contracts instead of a wid
 
 Solc compiler version 0.8.20 switches the default target EVM version to Shanghai, which means that the generated bytecode will include PUSH0 opcodes. Be sure to select the appropriate EVM version in case you intend to deploy on a chain other than mainnet like L2 chains that may not support PUSH0, otherwise deployment of your contracts will fail.
 
-<details><summary>14 Found Instances</summary>
+<details><summary>18 Found Instances</summary>
 
 
 - Found in src/RuleEngineBase.sol [Line: 3](src/RuleEngineBase.sol#L3)
@@ -201,6 +266,12 @@ Solc compiler version 0.8.20 switches the default target EVM version to Shanghai
 	pragma solidity ^0.8.20;
 	```
 
+- Found in src/RuleEngineOwnableShared.sol [Line: 3](src/RuleEngineOwnableShared.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
 - Found in src/deployment/RuleEngine.sol [Line: 3](src/deployment/RuleEngine.sol#L3)
 
 	```solidity
@@ -213,6 +284,12 @@ Solc compiler version 0.8.20 switches the default target EVM version to Shanghai
 	pragma solidity ^0.8.20;
 	```
 
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 3](src/deployment/RuleEngineOwnable2Step.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
 - Found in src/interfaces/IERC3643Compliance.sol [Line: 3](src/interfaces/IERC3643Compliance.sol#L3)
 
 	```solidity
@@ -261,6 +338,18 @@ Solc compiler version 0.8.20 switches the default target EVM version to Shanghai
 	pragma solidity ^0.8.20;
 	```
 
+- Found in src/modules/library/ERC1404InterfaceId.sol [Line: 3](src/modules/library/ERC1404InterfaceId.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/OwnableInterfaceId.sol [Line: 3](src/modules/library/OwnableInterfaceId.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
 - Found in src/modules/library/RuleEngineInvariantStorage.sol [Line: 3](src/modules/library/RuleEngineInvariantStorage.sol#L3)
 
 	```solidity
@@ -283,32 +372,79 @@ Solc compiler version 0.8.20 switches the default target EVM version to Shanghai
 
 
 
-## L-4: Empty Block
+## L-4: Modifier Invoked Only Once
+
+Consider removing the modifier or inlining the logic into the calling function.
+
+<details><summary>1 Found Instances</summary>
+
+
+- Found in src/modules/RulesManagementModule.sol [Line: 21](src/modules/RulesManagementModule.sol#L21)
+
+	```solidity
+	    modifier onlyRulesLimitManager() {
+	```
+
+</details>
+
+
+
+## L-5: Empty Block
 
 Consider removing empty blocks.
 
-<details><summary>4 Found Instances</summary>
+<details><summary>9 Found Instances</summary>
 
 
-- Found in src/deployment/RuleEngine.sol [Line: 63](src/deployment/RuleEngine.sol#L63)
+- Found in src/deployment/RuleEngine.sol [Line: 83](src/deployment/RuleEngine.sol#L83)
 
 	```solidity
 	    function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}
 	```
 
-- Found in src/deployment/RuleEngine.sol [Line: 64](src/deployment/RuleEngine.sol#L64)
+- Found in src/deployment/RuleEngine.sol [Line: 84](src/deployment/RuleEngine.sol#L84)
 
 	```solidity
 	    function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}
 	```
 
-- Found in src/deployment/RuleEngineOwnable.sol [Line: 44](src/deployment/RuleEngineOwnable.sol#L44)
+- Found in src/deployment/RuleEngine.sol [Line: 85](src/deployment/RuleEngine.sol#L85)
+
+	```solidity
+	    function _onlyRulesLimitManager() internal virtual override onlyRole(DEFAULT_ADMIN_ROLE) {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 27](src/deployment/RuleEngineOwnable.sol#L27)
 
 	```solidity
 	    function _onlyRulesManager() internal virtual override onlyOwner {}
 	```
 
-- Found in src/deployment/RuleEngineOwnable.sol [Line: 49](src/deployment/RuleEngineOwnable.sol#L49)
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 28](src/deployment/RuleEngineOwnable.sol#L28)
+
+	```solidity
+	    function _onlyRulesLimitManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 33](src/deployment/RuleEngineOwnable.sol#L33)
+
+	```solidity
+	    function _onlyComplianceManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 29](src/deployment/RuleEngineOwnable2Step.sol#L29)
+
+	```solidity
+	    function _onlyRulesManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 30](src/deployment/RuleEngineOwnable2Step.sol#L30)
+
+	```solidity
+	    function _onlyRulesLimitManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable2Step.sol [Line: 35](src/deployment/RuleEngineOwnable2Step.sol#L35)
 
 	```solidity
 	    function _onlyComplianceManager() internal virtual override onlyOwner {}
@@ -318,14 +454,14 @@ Consider removing empty blocks.
 
 
 
-## L-5: Loop Contains `require`/`revert`
+## L-6: Loop Contains `require`/`revert`
 
 Avoid `require` / `revert` statements in a loop because a single bad item can cause the whole transaction to fail. It's better to forgive on fail and return failed elements post processing of the loop
 
 <details><summary>1 Found Instances</summary>
 
 
-- Found in src/modules/RulesManagementModule.sol [Line: 52](src/modules/RulesManagementModule.sol#L52)
+- Found in src/modules/RulesManagementModule.sol [Line: 60](src/modules/RulesManagementModule.sol#L60)
 
 	```solidity
 	        for (uint256 i = 0; i < rules_.length; ++i) {
@@ -335,14 +471,14 @@ Avoid `require` / `revert` statements in a loop because a single bad item can ca
 
 
 
-## L-6: Costly operations inside loop
+## L-7: Costly operations inside loop
 
 Invoking `SSTORE` operations in loops may waste gas. Use a local variable to hold the loop computation result.
 
 <details><summary>1 Found Instances</summary>
 
 
-- Found in src/modules/RulesManagementModule.sol [Line: 52](src/modules/RulesManagementModule.sol#L52)
+- Found in src/modules/RulesManagementModule.sol [Line: 60](src/modules/RulesManagementModule.sol#L60)
 
 	```solidity
 	        for (uint256 i = 0; i < rules_.length; ++i) {
@@ -352,14 +488,14 @@ Invoking `SSTORE` operations in loops may waste gas. Use a local variable to hol
 
 
 
-## L-7: Unchecked Return
+## L-8: Unchecked Return
 
 Function returns a value but it is ignored. Consider checking the return value.
 
 <details><summary>1 Found Instances</summary>
 
 
-- Found in src/deployment/RuleEngine.sol [Line: 35](src/deployment/RuleEngine.sol#L35)
+- Found in src/deployment/RuleEngine.sol [Line: 36](src/deployment/RuleEngine.sol#L36)
 
 	```solidity
 	        _grantRole(DEFAULT_ADMIN_ROLE, admin);
diff --git a/doc/security/audits/tools/nethermind-audit-agent/v3.0.0-rc1/audit_agent_report_1_v3.0.0-rc1-feedback.md b/doc/security/audits/tools/nethermind-audit-agent/v3.0.0-rc1/audit_agent_report_1_v3.0.0-rc1-feedback.md
index 0bec46a..5ad6bdd 100644
--- a/doc/security/audits/tools/nethermind-audit-agent/v3.0.0-rc1/audit_agent_report_1_v3.0.0-rc1-feedback.md
+++ b/doc/security/audits/tools/nethermind-audit-agent/v3.0.0-rc1/audit_agent_report_1_v3.0.0-rc1-feedback.md
@@ -88,7 +88,7 @@ Code check confirmed:
 
 **File(s):** `src/modules/RulesManagementModule.sol`, `src/RuleEngineBase.sol`
 
-**Remediation commit:** `1caf4ea` — `Id-3: docs(rules-management): clarify operator-owned rule-count risk and blockchain-dependent gas limits`
+**Remediation commits:** `1caf4ea` (rc2 docs warning), `v3.0.0-rc3` hard-cap implementation
 
 ### Finding summary
 
@@ -96,27 +96,37 @@ Code check confirmed:
 
 ### Developer assessment
 
-**Partially agree.** The risk is real as an operational concern. However, a fixed on-chain maximum would be deployment-dependent and potentially overly restrictive across different blockchains and rule complexities. Operator responsibility is retained; the mitigation is explicit documentation.
+**Updated in rc3: fully addressed on-chain.** The prior rc2 docs-only mitigation was insufficient for liveness guarantees. `v3.0.0-rc3` introduces an on-chain configurable cap with a safe default.
 
 ### Implementation
 
-- **`src/modules/RulesManagementModule.sol`**:
-  - `setRules`: "No on-chain maximum number of rules is enforced. Operators are responsible for keeping the rule set size compatible with the target chain gas limits."
-  - `addRule`: "No on-chain maximum number of rules is enforced. Adding too many rules can increase transfer-time gas usage because rule checks are linear in rule count."
-  - `_transferred` (both overloads): "Complexity is O(number of configured rules). Large rule sets can make transfers too expensive on chains with lower block gas limits."
-- **`README.md`** — explicit "How it works" warning paragraph added about gas scaling and absence of an on-chain rule count cap.
-
-No runtime logic was changed.
+- **`src/modules/library/RulesManagementModuleInvariantStorage.sol`**
+  - Add `DEFAULT_MAX_RULES = 10`.
+  - Add `RuleEngine_RulesManagementModule_MaxRulesExceeded(uint256)`.
+  - Add `RuleEngine_RulesManagementModule_MaxRulesZeroNotAllowed()`.
+  - Add `SetMaxRules(uint256)` event.
+- **`src/interfaces/IRulesManagementModule.sol`**
+  - Add `maxRules()` and `setMaxRules(uint256)`.
+- **`src/modules/RulesManagementModule.sol`**
+  - Add `_maxRules` state initialized to default cap (`10`).
+  - Enforce cap in `addRule` and `setRules`.
+  - Add governance setter `setMaxRules(uint256)` with zero-value guard.
+- **Access control overrides**
+  - `RuleEngine`: cap setter restricted to `DEFAULT_ADMIN_ROLE`.
+  - `RuleEngineOwnable` / `RuleEngineOwnable2Step`: cap setter restricted to owner.
+- **`README.md`**
+  - Replace outdated “no on-chain cap” warning with current rc3 behavior.
 
 ### Verification
 
-Code check confirmed:
-- `RulesManagementModule.sol` line 46: `setRules` NatSpec — gas/cap warning present. ✓
-- `RulesManagementModule.sol` line 75: `addRule` NatSpec — linear gas warning present. ✓
-- `RulesManagementModule.sol` lines 169–173 and 188–192: `_transferred` overloads — O(n) and block-gas warning present. ✓
-- `README.md` line 69: gas-limit warning block present. ✓
+Code and tests confirm:
+- cap default is `10`;
+- `addRule` and `setRules` revert above cap;
+- cap update emits `SetMaxRules`;
+- cap setter is admin/owner restricted by variant;
+- zero cap is rejected.
 
-**Status: Implemented (warnings only — no hard cap by design).**
+**Status: Fixed in `v3.0.0-rc3` (runtime mitigation implemented).**
 
 ---
 
@@ -157,7 +167,7 @@ Code check confirmed:
 
 **File(s):** `src/RuleEngineBase.sol`, `src/modules/RulesManagementModule.sol`
 
-**Remediation commit:** `33ff6fa` — `ID5: docs(access-control): warn that rule contracts must never hold RULES_MANAGEMENT_ROLE`
+**Remediation commits:** `33ff6fa` (rc2 docs warning), `v3.0.0-rc3` on-chain privilege separation
 
 ### Finding summary
 
@@ -165,26 +175,32 @@ Code check confirmed:
 
 ### Developer assessment
 
-**Disagree with exploit framing; agree on governance risk.** The scenario requires granting `RULES_MANAGEMENT_ROLE` to an external rule contract — a severe governance misconfiguration. Rules are trusted logic components; they should never be granted management privileges. The key mitigation is making this constraint explicit in code and documentation.
+**Updated in rc3: partially mitigated on-chain.** We keep the trust-model framing, but implemented direct runtime guardrails to prevent key privilege-coupling paths between rule accounts and governance/control-plane identities.
 
 ### Implementation
 
-- **`src/modules/RulesManagementModule.sol`**:
-  - `setRules` and `addRule`: "Security convention: rule contracts should be treated as trusted business logic, but should not also be granted `{RULES_MANAGEMENT_ROLE}`."
-  - `_transferred` (both overloads): "Security convention: rule contracts are expected to be trusted and must not hold `{RULES_MANAGEMENT_ROLE}`."
-- **`README.md`** — "role assignment" warning added: rule contracts must not be granted `RULES_MANAGEMENT_ROLE` or admin privileges.
+- **`src/deployment/RuleEngine.sol`**
+  - Override `grantRole`: revert if `account` is currently in `_rules` (applies to any role grant).
+- **`src/deployment/RuleEngineOwnable.sol`**
+  - Override `transferOwnership`: revert if `newOwner` is currently in rules set.
+- **`src/deployment/RuleEngineOwnable2Step.sol`**
+  - Override `transferOwnership`: revert if `newOwner` is currently in rules set.
+- **`src/RuleEngineOwnableShared.sol`**
+  - Add shared `_checkOwnershipTransferTarget` guard to reduce duplication across ownable variants.
+- **`src/modules/library/RulesManagementModuleInvariantStorage.sol`**
+  - Add `RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges()` error.
+- Existing NatSpec/README warnings retained as operational guidance.
 
-No reentrancy guard was added (would add gas overhead to every transfer; not warranted given the trust model).
+No reentrancy guard was added; transfer-path fan-out remains architecture by design.
 
 ### Verification
 
-Code check confirmed:
-- `RulesManagementModule.sol` line 48: `setRules` — role-grant warning present. ✓
-- `RulesManagementModule.sol` line 76: `addRule` — role-grant warning present. ✓
-- `RulesManagementModule.sol` lines 173 and 193: both `_transferred` overloads — must-not-hold-role warning present. ✓
-- `README.md` line 264: role assignment warning block present. ✓
+Code and tests confirm:
+- role grants to rule accounts revert in RBAC variant;
+- ownership transfer to rule accounts reverts in both ownable variants;
+- NatSpec/README warnings remain present.
 
-**Status: Implemented (warnings only — no reentrancy guard by design).**
+**Status: Implemented in `v3.0.0-rc3` (on-chain guardrails + documentation).**
 
 ---
 
diff --git a/doc/security/audits/tools/slither-report-feedback.md b/doc/security/audits/tools/slither-report-feedback.md
index 6c2f217..f10c7f5 100644
--- a/doc/security/audits/tools/slither-report-feedback.md
+++ b/doc/security/audits/tools/slither-report-feedback.md
@@ -1,80 +1,32 @@
 # Slither Report — Assessment Feedback
 
-**Tool:** [Slither](https://github.com/crytic/slither)
-**Report file:** `slither-report.md`
-**Codebase version:** v3.0.0-rc2
-**Assessment date:** 2026-03-18
-
-> Slither was run with `--show-ignored-findings` suppressed; this checklist reflects only non-ignored findings.
-
----
+**Tool:** [Slither](https://github.com/crytic/slither)  
+**Report file:** `doc/security/audits/tools/slither-report.md`  
+**Assessment date:** 2026-05-05
 
 ## Summary
 
-| ID | Detector | Impact | Confidence | Assessment |
-|----|----------|--------|------------|------------|
-| 0–9 | `calls-loop` | Low | Medium | Accepted by design — see below |
-| 10–11 | `unindexed-event-address` | Informational | High | Accepted — interface-breaking to fix |
-
----
-
-## calls-loop (ID-0 to ID-9) — Low / Medium confidence
-
-### What Slither reports
-
-Ten instances of external calls inside loops, covering every call path through the rule-dispatch layer:
-
-| ID | Function | Called from |
-|----|----------|-------------|
-| 0 | `_messageForTransferRestriction` — `canReturnTransferRestrictionCode` | `messageForTransferRestriction` |
-| 1 | `_detectTransferRestrictionFrom` | `detectTransferRestrictionFrom` |
-| 2 | `_messageForTransferRestriction` — `messageForTransferRestriction` | `messageForTransferRestriction` |
-| 3 | `_transferred(spender, from, to, value)` | `transferred(address,address,address,uint256)` |
-| 4 | `_detectTransferRestrictionFrom` | `canTransferFrom` → `detectTransferRestrictionFrom` |
-| 5 | `_detectTransferRestriction` | `detectTransferRestriction` |
-| 6 | `_transferred(from, to, value)` | `created` |
-| 7 | `_detectTransferRestriction` | `canTransfer` → `detectTransferRestriction` |
-| 8 | `_transferred(from, to, value)` | `transferred(address,address,uint256)` |
-| 9 | `_transferred(from, to, value)` | `destroyed` |
-
-### Assessment
-
-**Accepted by design. No action required.**
-
-The 10 results are all expressions of the same fundamental architecture: the RuleEngine fans out each transfer event to every registered rule contract by iterating `_rules` and making an external call per rule. This is the entire purpose of the contract — there is no way to implement a pluggable rule engine without external calls in a loop.
-
-The typical concern behind this detector is reentrancy risk or gas griefing from a malicious external callee. Both are addressed:
-
-- **Reentrancy:** Rule contracts are trusted components added by a privileged operator. Granting management roles to rule contracts is explicitly warned against in NatSpec (see also Nethermind AuditAgent finding 5 remediation). A reentrancy guard on every transfer would add significant gas overhead for no benefit given the trust model.
-- **Gas griefing / DoS:** Operators are responsible for keeping the rule set sized for the target chain gas limits. This is documented in NatSpec on `addRule`, `setRules`, and `_transferred`, and warned about in the README (see also Nethermind AuditAgent finding 3 remediation).
-
-These findings are expected and the pattern is inherent to the design. No code change is needed.
-
----
-
-## unindexed-event-address (ID-10 to ID-11) — Informational / High confidence
-
-### What Slither reports
-
-- `IERC3643Compliance.TokenBound(address token)` — `token` is not indexed.
-- `IERC3643Compliance.TokenUnbound(address token)` — `token` is not indexed.
-
-### Assessment
-
-**Valid observation. Not fixed — interface-breaking change.**
-
-Adding `indexed` to the `token` parameter would allow off-chain tooling to filter `TokenBound` / `TokenUnbound` events by token address efficiently using a Bloom filter (topic-based filtering). Without `indexed`, a listener must fetch and decode all events of that type and filter client-side.
+| IDs | Detector | Tool Impact | Assessment | Decision |
+|-----|----------|-------------|------------|----------|
+| 0-9 | `calls-loop` | Low | Inherent to pluggable rule-engine dispatch architecture | Accepted by design |
+| 10 | `dead-code` (`RuleEngineOwnable2Step._msgData`) | Informational | False positive in context; required override in ERC2771/context inheritance chain | Accepted / no action |
+| 11 | `naming-convention` (CMTAT dependency enum) | Informational | External dependency style issue, not project code risk | Ignored |
+| 12-13 | `unindexed-event-address` | Informational | Valid optimization note, but ABI-breaking to change now | Deferred |
 
-However, adding `indexed` changes the event's ABI signature (the topic hash), which is a breaking change for any off-chain application already listening for these events.
+## Detailed triage
 
-Given that:
-- These events are emitted infrequently (only during administrative `bindToken` / `unbindToken` calls), so the filtering cost is negligible in practice.
-- Changing the event signature breaks existing integrations.
+### IDs 0-9: `calls-loop`
+The RuleEngine intentionally iterates `_rules` and performs external rule calls for transfer checks and transfer hooks. This is core product behavior.  
+Risk is controlled through trusted-rule governance and documented operational limits on rule count. No direct security defect is introduced by this detector output.
 
-**Decision: accepted as-is.** If the interface is ever revised for another reason, the `indexed` keyword should be added at the same time.
+### ID 10: `dead-code` on `RuleEngineOwnable2Step._msgData`
+This override is part of required multiple-inheritance context resolution (`RuleEngineOwnableShared` + `Context`) for ERC2771-compatible message handling. Static analysis can mark it as unused even though it is part of the contract’s context surface and override chain. Keep as-is.
 
----
+### ID 11: `naming-convention` in `lib/CMTAT/.../draft-IERC1404.sol`
+Finding targets vendored dependency naming style. This is not a vulnerability and should not be patched locally unless forking upstream conventions intentionally.
 
-## Overall conclusion
+### IDs 12-13: `unindexed-event-address`
+`TokenBound(address)` / `TokenUnbound(address)` could add `indexed` for cheaper filtering, but doing so changes event signature and breaks existing consumers. Given low event frequency and backward-compatibility requirements, defer to a planned major interface revision.
 
-Both finding categories are **accepted by design** and require no code changes for v3.0.0-rc2. The `calls-loop` pattern is inherent to the RuleEngine architecture; the `unindexed-event-address` finding is noted and deferred to a future interface revision.
+## Conclusion
+No actionable security fixes are required from this Slither run. Findings are architectural by-design, dependency style-only, or compatibility tradeoffs.
diff --git a/doc/security/audits/tools/slither-report.md b/doc/security/audits/tools/slither-report.md
index 75c678b..842bbfa 100644
--- a/doc/security/audits/tools/slither-report.md
+++ b/doc/security/audits/tools/slither-report.md
@@ -1,102 +1,122 @@
 **THIS CHECKLIST IS NOT COMPLETE**. Use `--show-ignored-findings` to show all the results.
 Summary
  - [calls-loop](#calls-loop) (10 results) (Low)
+ - [dead-code](#dead-code) (1 results) (Informational)
+ - [naming-convention](#naming-convention) (1 results) (Informational)
  - [unindexed-event-address](#unindexed-event-address) (2 results) (Informational)
 ## calls-loop
 Impact: Low
 Confidence: Medium
  - [ ] ID-0
-[RuleEngineBase._messageForTransferRestriction(uint8)](src/RuleEngineBase.sol#L176-L184) has external calls inside a loop: [IRule(rule(i)).canReturnTransferRestrictionCode(restrictionCode)](src/RuleEngineBase.sol#L179)
+[RulesManagementModule._transferred(address,address,address,uint256)](src/modules/RulesManagementModule.sol#L220-L225) has external calls inside a loop: [IRule(_rules.at(i)).transferred(spender,from,to,value)](src/modules/RulesManagementModule.sol#L223)
 	Calls stack containing the loop:
-		RuleEngineBase.messageForTransferRestriction(uint8)
+		RuleEngineBase.transferred(address,address,address,uint256)
 
-src/RuleEngineBase.sol#L176-L184
+src/modules/RulesManagementModule.sol#L220-L225
 
 
  - [ ] ID-1
-[RuleEngineBase._detectTransferRestrictionFrom(address,address,address,uint256)](src/RuleEngineBase.sol#L154-L168) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender,from,to,value)](src/RuleEngineBase.sol#L162)
+[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L201-L206) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L204)
 	Calls stack containing the loop:
-		RuleEngineBase.detectTransferRestrictionFrom(address,address,address,uint256)
+		RuleEngineBase.destroyed(address,uint256)
 
-src/RuleEngineBase.sol#L154-L168
+src/modules/RulesManagementModule.sol#L201-L206
 
 
  - [ ] ID-2
-[RuleEngineBase._messageForTransferRestriction(uint8)](src/RuleEngineBase.sol#L176-L184) has external calls inside a loop: [IRule(rule(i)).messageForTransferRestriction(restrictionCode)](src/RuleEngineBase.sol#L180)
+[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L201-L206) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L204)
 	Calls stack containing the loop:
-		RuleEngineBase.messageForTransferRestriction(uint8)
+		RuleEngineBase.transferred(address,address,uint256)
 
-src/RuleEngineBase.sol#L176-L184
+src/modules/RulesManagementModule.sol#L201-L206
 
 
  - [ ] ID-3
-[RulesManagementModule._transferred(address,address,address,uint256)](src/modules/RulesManagementModule.sol#L192-L197) has external calls inside a loop: [IRule(_rules.at(i)).transferred(spender,from,to,value)](src/modules/RulesManagementModule.sol#L195)
+[RuleEngineBase._messageForTransferRestriction(uint8)](src/RuleEngineBase.sol#L181-L189) has external calls inside a loop: [IRule(rule(i)).messageForTransferRestriction(restrictionCode)](src/RuleEngineBase.sol#L185)
 	Calls stack containing the loop:
-		RuleEngineBase.transferred(address,address,address,uint256)
+		RuleEngineBase.messageForTransferRestriction(uint8)
 
-src/modules/RulesManagementModule.sol#L192-L197
+src/RuleEngineBase.sol#L181-L189
 
 
  - [ ] ID-4
-[RuleEngineBase._detectTransferRestrictionFrom(address,address,address,uint256)](src/RuleEngineBase.sol#L154-L168) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender,from,to,value)](src/RuleEngineBase.sol#L162)
+[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L201-L206) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L204)
 	Calls stack containing the loop:
-		RuleEngineBase.canTransferFrom(address,address,address,uint256)
-		RuleEngineBase.detectTransferRestrictionFrom(address,address,address,uint256)
+		RuleEngineBase.created(address,uint256)
 
-src/RuleEngineBase.sol#L154-L168
+src/modules/RulesManagementModule.sol#L201-L206
 
 
  - [ ] ID-5
-[RuleEngineBase._detectTransferRestriction(address,address,uint256)](src/RuleEngineBase.sol#L143-L152) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestriction(from,to,value)](src/RuleEngineBase.sol#L146)
+[RuleEngineBase._detectTransferRestrictionFrom(address,address,address,uint256)](src/RuleEngineBase.sol#L159-L173) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender,from,to,value)](src/RuleEngineBase.sol#L167)
 	Calls stack containing the loop:
-		RuleEngineBase.detectTransferRestriction(address,address,uint256)
+		RuleEngineBase.detectTransferRestrictionFrom(address,address,address,uint256)
 
-src/RuleEngineBase.sol#L143-L152
+src/RuleEngineBase.sol#L159-L173
 
 
  - [ ] ID-6
-[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L173-L178) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L176)
+[RuleEngineBase._messageForTransferRestriction(uint8)](src/RuleEngineBase.sol#L181-L189) has external calls inside a loop: [IRule(rule(i)).canReturnTransferRestrictionCode(restrictionCode)](src/RuleEngineBase.sol#L184)
 	Calls stack containing the loop:
-		RuleEngineBase.created(address,uint256)
+		RuleEngineBase.messageForTransferRestriction(uint8)
 
-src/modules/RulesManagementModule.sol#L173-L178
+src/RuleEngineBase.sol#L181-L189
 
 
  - [ ] ID-7
-[RuleEngineBase._detectTransferRestriction(address,address,uint256)](src/RuleEngineBase.sol#L143-L152) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestriction(from,to,value)](src/RuleEngineBase.sol#L146)
+[RuleEngineBase._detectTransferRestriction(address,address,uint256)](src/RuleEngineBase.sol#L148-L157) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestriction(from,to,value)](src/RuleEngineBase.sol#L151)
 	Calls stack containing the loop:
-		RuleEngineBase.canTransfer(address,address,uint256)
 		RuleEngineBase.detectTransferRestriction(address,address,uint256)
 
-src/RuleEngineBase.sol#L143-L152
+src/RuleEngineBase.sol#L148-L157
 
 
  - [ ] ID-8
-[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L173-L178) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L176)
+[RuleEngineBase._detectTransferRestriction(address,address,uint256)](src/RuleEngineBase.sol#L148-L157) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestriction(from,to,value)](src/RuleEngineBase.sol#L151)
 	Calls stack containing the loop:
-		RuleEngineBase.transferred(address,address,uint256)
+		RuleEngineBase.canTransfer(address,address,uint256)
+		RuleEngineBase.detectTransferRestriction(address,address,uint256)
 
-src/modules/RulesManagementModule.sol#L173-L178
+src/RuleEngineBase.sol#L148-L157
 
 
  - [ ] ID-9
-[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L173-L178) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L176)
+[RuleEngineBase._detectTransferRestrictionFrom(address,address,address,uint256)](src/RuleEngineBase.sol#L159-L173) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender,from,to,value)](src/RuleEngineBase.sol#L167)
 	Calls stack containing the loop:
-		RuleEngineBase.destroyed(address,uint256)
+		RuleEngineBase.canTransferFrom(address,address,address,uint256)
+		RuleEngineBase.detectTransferRestrictionFrom(address,address,address,uint256)
+
+src/RuleEngineBase.sol#L159-L173
+
+
+## dead-code
+Impact: Informational
+Confidence: Medium
+ - [ ] ID-10
+[RuleEngineOwnable2Step._msgData()](src/deployment/RuleEngineOwnable2Step.sol#L56-L58) is never used and should be removed
+
+src/deployment/RuleEngineOwnable2Step.sol#L56-L58
 
-src/modules/RulesManagementModule.sol#L173-L178
+
+## naming-convention
+Impact: Informational
+Confidence: High
+ - [ ] ID-11
+Enum [IERC1404Extend.REJECTED_CODE_BASE](lib/CMTAT/contracts/interfaces/tokenization/draft-IERC1404.sol#L49-L57) is not in CapWords
+
+lib/CMTAT/contracts/interfaces/tokenization/draft-IERC1404.sol#L49-L57
 
 
 ## unindexed-event-address
 Impact: Informational
 Confidence: High
- - [ ] ID-10
+ - [ ] ID-12
 Event [IERC3643Compliance.TokenBound(address)](src/interfaces/IERC3643Compliance.sol#L14) has address parameters but no indexed parameters
 
 src/interfaces/IERC3643Compliance.sol#L14
 
 
- - [ ] ID-11
+ - [ ] ID-13
 Event [IERC3643Compliance.TokenUnbound(address)](src/interfaces/IERC3643Compliance.sol#L20) has address parameters but no indexed parameters
 
 src/interfaces/IERC3643Compliance.sol#L20
diff --git a/doc/security/audits/tools/v3.0.0-rc2/aderyn-report-feedback.md b/doc/security/audits/tools/v3.0.0-rc2/aderyn-report-feedback.md
new file mode 100644
index 0000000..7211d8d
--- /dev/null
+++ b/doc/security/audits/tools/v3.0.0-rc2/aderyn-report-feedback.md
@@ -0,0 +1,160 @@
+# Aderyn Report — Assessment Feedback
+
+**Tool:** [Aderyn](https://github.com/Cyfrin/aderyn)
+**Report file:** `aderyn-report.md`
+**Codebase version:** v3.0.0-rc2 (14 files, 425 nSLOC)
+**Assessment date:** 2026-03-18
+
+> Aderyn was run with `aderyn -x mocks`. Findings cover production source only (`src/`).
+
+---
+
+## Summary
+
+| ID | Finding | Severity | Assessment |
+|----|---------|----------|------------|
+| L-1 | Centralization Risk | Low | Accepted by design |
+| L-2 | Unspecific Solidity Pragma | Low | Accepted by design |
+| L-3 | PUSH0 Opcode | Low | Not applicable — EVM target is Prague |
+| L-4 | Empty Block | Low | Accepted by design (access-control hook pattern) |
+| L-5 | Loop Contains `require`/`revert` | Low | Accepted by design (atomic batch validation) |
+| L-6 | Costly Operations Inside Loop | Low | Accepted — unavoidable `SSTORE` in `setRules` |
+| L-7 | Unchecked Return | Low | Accepted — return value is irrelevant in constructor |
+
+No High findings.
+
+---
+
+## L-1: Centralization Risk
+
+### What Aderyn reports
+
+6 instances: `AccessControl` + role-gated hooks in `RuleEngine`, and `Ownable` + owner-gated hooks in `RuleEngineOwnable`.
+
+### Assessment
+
+**Accepted by design. No action required.**
+
+The RuleEngine is an administrative compliance contract for tokenized securities. Privileged access control is an intentional and necessary feature:
+
+- `RuleEngine` uses RBAC (`AccessControl`) with distinct `RULES_MANAGEMENT_ROLE` and `COMPLIANCE_MANAGER_ROLE`, allowing fine-grained delegation to different operators.
+- `RuleEngineOwnable` uses ERC-173 `Ownable` for simpler single-owner deployments, as recommended by the ERC-3643 specification.
+
+Both variants are provided precisely to give deployers a choice of trust model. Centralization at the operator level is expected and required for a compliance tool managing transfer restrictions on regulated assets.
+
+---
+
+## L-2: Unspecific Solidity Pragma
+
+### What Aderyn reports
+
+12 instances of `pragma solidity ^0.8.20;` across all source files.
+
+### Assessment
+
+**Accepted by design. No action required.**
+
+The floating `^0.8.20` pragma is intentional. The RuleEngine is designed to be used as a library/dependency by integrators who may compile with different Solidity versions ≥ 0.8.20. Locking to a specific patch version would unnecessarily restrict integrators.
+
+The project itself always compiles with a pinned version: Solidity `0.8.34` as specified in `foundry.toml` and `hardhat.config.js`. The pragma floor of `0.8.20` captures the minimum required language features (custom errors, EnumerableSet improvements, etc.).
+
+---
+
+## L-3: PUSH0 Opcode
+
+### What Aderyn reports
+
+14 instances: `pragma solidity ^0.8.20` may generate `PUSH0` opcodes (introduced in Shanghai), which are unsupported on some chains.
+
+### Assessment
+
+**Not applicable. No action required.**
+
+The project explicitly targets the **Prague EVM** (`evm_version = "prague"` in both `foundry.toml` and `hardhat.config.js`). `PUSH0` was introduced in the Shanghai upgrade (EIP-3855); it is supported by all EVM versions from Shanghai onwards, including Cancun and Prague. Any chain that supports Prague also supports `PUSH0`.
+
+If the project were ever deployed to a pre-Shanghai chain, this would require attention — but that is not a supported target.
+
+---
+
+## L-4: Empty Block
+
+### What Aderyn reports
+
+4 instances: `_onlyComplianceManager()` and `_onlyRulesManager()` in both `RuleEngine` and `RuleEngineOwnable` have empty function bodies.
+
+### Assessment
+
+**Accepted by design. No action required.**
+
+These functions implement the **access-control hook pattern** used throughout the codebase (documented in `CLAUDE.md`). The access control check is enforced entirely by the modifier on the function declaration line — e.g.:
+
+```solidity
+function _onlyRulesManager() internal virtual override onlyOwner {}
+```
+
+The modifier (`onlyOwner` / `onlyRole(...)`) executes before the empty body. The body is intentionally empty because the entire semantics are carried by the modifier. This pattern is necessary to allow abstract modules to define virtual hooks that concrete contracts override with different access control mechanisms.
+
+Removing or rewriting these functions would break the hook pattern.
+
+---
+
+## L-5: Loop Contains `require`/`revert`
+
+### What Aderyn reports
+
+1 instance: `setRules` loop at `RulesManagementModule.sol` line 57 — `_checkRule` inside the loop can revert.
+
+### Assessment
+
+**Accepted by design. No action required.**
+
+`setRules` is an **atomic batch replacement** operation: it clears the existing rule set and registers a new one in a single transaction. If any rule in the input array is invalid (zero address, duplicate, or fails ERC-165 check), the entire operation must revert to prevent partial registration, which would leave the engine in an inconsistent compliance state.
+
+The "forgive on fail" pattern suggested by Aderyn (skip invalid entries and return them post-loop) is inappropriate here: silently skipping an invalid rule would give the operator a false impression that all rules were registered when in fact some were not, potentially creating a compliance gap.
+
+The revert-on-invalid behavior is intentional and correct.
+
+---
+
+## L-6: Costly Operations Inside Loop
+
+### What Aderyn reports
+
+1 instance: `setRules` loop at `RulesManagementModule.sol` line 57 — `_rules.add()` performs an `SSTORE`.
+
+### Assessment
+
+**Accepted — unavoidable. No action required.**
+
+The purpose of `setRules` is to persist each rule to storage atomically. `EnumerableSet.add()` must write to storage by definition — there is no way to register rules without `SSTORE`. The suggestion to use a local variable to defer the storage write does not apply here because the goal of the loop body IS the storage write.
+
+The gas cost is bounded by the number of rules being registered, which is under operator control and bounded by practical constraints (see NatSpec and README warnings on rule-count limits).
+
+---
+
+## L-7: Unchecked Return
+
+### What Aderyn reports
+
+1 instance: `_grantRole(DEFAULT_ADMIN_ROLE, admin)` in `RuleEngine` constructor (line 35) — the `bool` return value is ignored.
+
+### Assessment
+
+**Accepted — return value is irrelevant in this context. No action required.**
+
+`AccessControl._grantRole()` (OpenZeppelin v5) returns `true` if the role was newly granted, `false` if the account already held the role. In the constructor, `admin` cannot already hold `DEFAULT_ADMIN_ROLE` (the contract was just deployed; no roles have been assigned yet), so the call always returns `true`.
+
+Even if somehow `false` were returned, it would not represent an error — `_grantRole` does not revert on a no-op. Checking and branching on this value in a constructor would add meaningless code.
+
+This pattern (ignoring the return of `_grantRole` in a constructor) is standard across all OpenZeppelin-based contracts.
+
+---
+
+## Overall conclusion
+
+All 7 Aderyn findings are **accepted**:
+
+- **L-1, L-2, L-3**: Reflect intentional design choices (privileged compliance model, library-friendly pragma, Prague EVM target).
+- **L-4, L-5, L-6, L-7**: Are false-positive patterns generated by Aderyn that do not apply to this codebase's architecture.
+
+No code changes are required for v3.0.0-rc2 based on this report.
diff --git a/doc/security/audits/tools/v3.0.0-rc2/aderyn-report.md b/doc/security/audits/tools/v3.0.0-rc2/aderyn-report.md
new file mode 100644
index 0000000..d408f9d
--- /dev/null
+++ b/doc/security/audits/tools/v3.0.0-rc2/aderyn-report.md
@@ -0,0 +1,371 @@
+# Aderyn Analysis Report
+
+This report was generated by [Aderyn](https://github.com/Cyfrin/aderyn), a static analysis tool built by [Cyfrin](https://cyfrin.io), a blockchain security company. This report is not a substitute for manual audit or security review. It should not be relied upon for any purpose other than to assist in the identification of potential security vulnerabilities.
+# Table of Contents
+
+- [Summary](#summary)
+  - [Files Summary](#files-summary)
+  - [Files Details](#files-details)
+  - [Issue Summary](#issue-summary)
+- [Low Issues](#low-issues)
+  - [L-1: Centralization Risk](#l-1-centralization-risk)
+  - [L-2: Unspecific Solidity Pragma](#l-2-unspecific-solidity-pragma)
+  - [L-3: PUSH0 Opcode](#l-3-push0-opcode)
+  - [L-4: Empty Block](#l-4-empty-block)
+  - [L-5: Loop Contains `require`/`revert`](#l-5-loop-contains-requirerevert)
+  - [L-6: Costly operations inside loop](#l-6-costly-operations-inside-loop)
+  - [L-7: Unchecked Return](#l-7-unchecked-return)
+
+
+# Summary
+
+## Files Summary
+
+| Key | Value |
+| --- | --- |
+| .sol Files | 14 |
+| Total nSLOC | 425 |
+
+
+## Files Details
+
+| Filepath | nSLOC |
+| --- | --- |
+| src/RuleEngineBase.sol | 127 |
+| src/deployment/RuleEngine.sol | 47 |
+| src/deployment/RuleEngineOwnable.sol | 39 |
+| src/interfaces/IERC3643Compliance.sol | 13 |
+| src/interfaces/IRule.sol | 5 |
+| src/interfaces/IRulesManagementModule.sol | 12 |
+| src/modules/ERC2771ModuleStandalone.sol | 6 |
+| src/modules/ERC3643ComplianceModule.sol | 58 |
+| src/modules/RulesManagementModule.sol | 83 |
+| src/modules/VersionModule.sol | 8 |
+| src/modules/library/ComplianceInterfaceId.sol | 5 |
+| src/modules/library/RuleEngineInvariantStorage.sol | 5 |
+| src/modules/library/RuleInterfaceId.sol | 4 |
+| src/modules/library/RulesManagementModuleInvariantStorage.sol | 13 |
+| **Total** | **425** |
+
+
+## Issue Summary
+
+| Category | No. of Issues |
+| --- | --- |
+| High | 0 |
+| Low | 7 |
+
+
+# Low Issues
+
+## L-1: Centralization Risk
+
+Contracts have owners with privileged rights to perform admin tasks and need to be trusted to not perform malicious updates or drain funds.
+
+<details><summary>6 Found Instances</summary>
+
+
+- Found in src/deployment/RuleEngine.sol [Line: 21](src/deployment/RuleEngine.sol#L21)
+
+	```solidity
+	contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControl {
+	```
+
+- Found in src/deployment/RuleEngine.sol [Line: 63](src/deployment/RuleEngine.sol#L63)
+
+	```solidity
+	    function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}
+	```
+
+- Found in src/deployment/RuleEngine.sol [Line: 64](src/deployment/RuleEngine.sol#L64)
+
+	```solidity
+	    function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 21](src/deployment/RuleEngineOwnable.sol#L21)
+
+	```solidity
+	contract RuleEngineOwnable is ERC2771ModuleStandalone, RuleEngineBase, Ownable {
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 44](src/deployment/RuleEngineOwnable.sol#L44)
+
+	```solidity
+	    function _onlyRulesManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 49](src/deployment/RuleEngineOwnable.sol#L49)
+
+	```solidity
+	    function _onlyComplianceManager() internal virtual override onlyOwner {}
+	```
+
+</details>
+
+
+
+## L-2: Unspecific Solidity Pragma
+
+Consider using a specific version of Solidity in your contracts instead of a wide version. For example, instead of `pragma solidity ^0.8.0;`, use `pragma solidity 0.8.0;`
+
+<details><summary>12 Found Instances</summary>
+
+
+- Found in src/RuleEngineBase.sol [Line: 3](src/RuleEngineBase.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/deployment/RuleEngine.sol [Line: 3](src/deployment/RuleEngine.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 3](src/deployment/RuleEngineOwnable.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/interfaces/IERC3643Compliance.sol [Line: 3](src/interfaces/IERC3643Compliance.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/interfaces/IRule.sol [Line: 3](src/interfaces/IRule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/interfaces/IRulesManagementModule.sol [Line: 3](src/interfaces/IRulesManagementModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/ERC2771ModuleStandalone.sol [Line: 3](src/modules/ERC2771ModuleStandalone.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/ERC3643ComplianceModule.sol [Line: 3](src/modules/ERC3643ComplianceModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/RulesManagementModule.sol [Line: 3](src/modules/RulesManagementModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/VersionModule.sol [Line: 3](src/modules/VersionModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/RuleEngineInvariantStorage.sol [Line: 3](src/modules/library/RuleEngineInvariantStorage.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/RulesManagementModuleInvariantStorage.sol [Line: 3](src/modules/library/RulesManagementModuleInvariantStorage.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+</details>
+
+
+
+## L-3: PUSH0 Opcode
+
+Solc compiler version 0.8.20 switches the default target EVM version to Shanghai, which means that the generated bytecode will include PUSH0 opcodes. Be sure to select the appropriate EVM version in case you intend to deploy on a chain other than mainnet like L2 chains that may not support PUSH0, otherwise deployment of your contracts will fail.
+
+<details><summary>14 Found Instances</summary>
+
+
+- Found in src/RuleEngineBase.sol [Line: 3](src/RuleEngineBase.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/deployment/RuleEngine.sol [Line: 3](src/deployment/RuleEngine.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 3](src/deployment/RuleEngineOwnable.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/interfaces/IERC3643Compliance.sol [Line: 3](src/interfaces/IERC3643Compliance.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/interfaces/IRule.sol [Line: 3](src/interfaces/IRule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/interfaces/IRulesManagementModule.sol [Line: 3](src/interfaces/IRulesManagementModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/ERC2771ModuleStandalone.sol [Line: 3](src/modules/ERC2771ModuleStandalone.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/ERC3643ComplianceModule.sol [Line: 3](src/modules/ERC3643ComplianceModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/RulesManagementModule.sol [Line: 3](src/modules/RulesManagementModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/VersionModule.sol [Line: 3](src/modules/VersionModule.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/ComplianceInterfaceId.sol [Line: 3](src/modules/library/ComplianceInterfaceId.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/RuleEngineInvariantStorage.sol [Line: 3](src/modules/library/RuleEngineInvariantStorage.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/RuleInterfaceId.sol [Line: 3](src/modules/library/RuleInterfaceId.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+- Found in src/modules/library/RulesManagementModuleInvariantStorage.sol [Line: 3](src/modules/library/RulesManagementModuleInvariantStorage.sol#L3)
+
+	```solidity
+	pragma solidity ^0.8.20;
+	```
+
+</details>
+
+
+
+## L-4: Empty Block
+
+Consider removing empty blocks.
+
+<details><summary>4 Found Instances</summary>
+
+
+- Found in src/deployment/RuleEngine.sol [Line: 63](src/deployment/RuleEngine.sol#L63)
+
+	```solidity
+	    function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}
+	```
+
+- Found in src/deployment/RuleEngine.sol [Line: 64](src/deployment/RuleEngine.sol#L64)
+
+	```solidity
+	    function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 44](src/deployment/RuleEngineOwnable.sol#L44)
+
+	```solidity
+	    function _onlyRulesManager() internal virtual override onlyOwner {}
+	```
+
+- Found in src/deployment/RuleEngineOwnable.sol [Line: 49](src/deployment/RuleEngineOwnable.sol#L49)
+
+	```solidity
+	    function _onlyComplianceManager() internal virtual override onlyOwner {}
+	```
+
+</details>
+
+
+
+## L-5: Loop Contains `require`/`revert`
+
+Avoid `require` / `revert` statements in a loop because a single bad item can cause the whole transaction to fail. It's better to forgive on fail and return failed elements post processing of the loop
+
+<details><summary>1 Found Instances</summary>
+
+
+- Found in src/modules/RulesManagementModule.sol [Line: 52](src/modules/RulesManagementModule.sol#L52)
+
+	```solidity
+	        for (uint256 i = 0; i < rules_.length; ++i) {
+	```
+
+</details>
+
+
+
+## L-6: Costly operations inside loop
+
+Invoking `SSTORE` operations in loops may waste gas. Use a local variable to hold the loop computation result.
+
+<details><summary>1 Found Instances</summary>
+
+
+- Found in src/modules/RulesManagementModule.sol [Line: 52](src/modules/RulesManagementModule.sol#L52)
+
+	```solidity
+	        for (uint256 i = 0; i < rules_.length; ++i) {
+	```
+
+</details>
+
+
+
+## L-7: Unchecked Return
+
+Function returns a value but it is ignored. Consider checking the return value.
+
+<details><summary>1 Found Instances</summary>
+
+
+- Found in src/deployment/RuleEngine.sol [Line: 35](src/deployment/RuleEngine.sol#L35)
+
+	```solidity
+	        _grantRole(DEFAULT_ADMIN_ROLE, admin);
+	```
+
+</details>
+
+
+
diff --git a/doc/security/audits/tools/v3.0.0-rc2/slither-report-feedback.md b/doc/security/audits/tools/v3.0.0-rc2/slither-report-feedback.md
new file mode 100644
index 0000000..6c2f217
--- /dev/null
+++ b/doc/security/audits/tools/v3.0.0-rc2/slither-report-feedback.md
@@ -0,0 +1,80 @@
+# Slither Report — Assessment Feedback
+
+**Tool:** [Slither](https://github.com/crytic/slither)
+**Report file:** `slither-report.md`
+**Codebase version:** v3.0.0-rc2
+**Assessment date:** 2026-03-18
+
+> Slither was run with `--show-ignored-findings` suppressed; this checklist reflects only non-ignored findings.
+
+---
+
+## Summary
+
+| ID | Detector | Impact | Confidence | Assessment |
+|----|----------|--------|------------|------------|
+| 0–9 | `calls-loop` | Low | Medium | Accepted by design — see below |
+| 10–11 | `unindexed-event-address` | Informational | High | Accepted — interface-breaking to fix |
+
+---
+
+## calls-loop (ID-0 to ID-9) — Low / Medium confidence
+
+### What Slither reports
+
+Ten instances of external calls inside loops, covering every call path through the rule-dispatch layer:
+
+| ID | Function | Called from |
+|----|----------|-------------|
+| 0 | `_messageForTransferRestriction` — `canReturnTransferRestrictionCode` | `messageForTransferRestriction` |
+| 1 | `_detectTransferRestrictionFrom` | `detectTransferRestrictionFrom` |
+| 2 | `_messageForTransferRestriction` — `messageForTransferRestriction` | `messageForTransferRestriction` |
+| 3 | `_transferred(spender, from, to, value)` | `transferred(address,address,address,uint256)` |
+| 4 | `_detectTransferRestrictionFrom` | `canTransferFrom` → `detectTransferRestrictionFrom` |
+| 5 | `_detectTransferRestriction` | `detectTransferRestriction` |
+| 6 | `_transferred(from, to, value)` | `created` |
+| 7 | `_detectTransferRestriction` | `canTransfer` → `detectTransferRestriction` |
+| 8 | `_transferred(from, to, value)` | `transferred(address,address,uint256)` |
+| 9 | `_transferred(from, to, value)` | `destroyed` |
+
+### Assessment
+
+**Accepted by design. No action required.**
+
+The 10 results are all expressions of the same fundamental architecture: the RuleEngine fans out each transfer event to every registered rule contract by iterating `_rules` and making an external call per rule. This is the entire purpose of the contract — there is no way to implement a pluggable rule engine without external calls in a loop.
+
+The typical concern behind this detector is reentrancy risk or gas griefing from a malicious external callee. Both are addressed:
+
+- **Reentrancy:** Rule contracts are trusted components added by a privileged operator. Granting management roles to rule contracts is explicitly warned against in NatSpec (see also Nethermind AuditAgent finding 5 remediation). A reentrancy guard on every transfer would add significant gas overhead for no benefit given the trust model.
+- **Gas griefing / DoS:** Operators are responsible for keeping the rule set sized for the target chain gas limits. This is documented in NatSpec on `addRule`, `setRules`, and `_transferred`, and warned about in the README (see also Nethermind AuditAgent finding 3 remediation).
+
+These findings are expected and the pattern is inherent to the design. No code change is needed.
+
+---
+
+## unindexed-event-address (ID-10 to ID-11) — Informational / High confidence
+
+### What Slither reports
+
+- `IERC3643Compliance.TokenBound(address token)` — `token` is not indexed.
+- `IERC3643Compliance.TokenUnbound(address token)` — `token` is not indexed.
+
+### Assessment
+
+**Valid observation. Not fixed — interface-breaking change.**
+
+Adding `indexed` to the `token` parameter would allow off-chain tooling to filter `TokenBound` / `TokenUnbound` events by token address efficiently using a Bloom filter (topic-based filtering). Without `indexed`, a listener must fetch and decode all events of that type and filter client-side.
+
+However, adding `indexed` changes the event's ABI signature (the topic hash), which is a breaking change for any off-chain application already listening for these events.
+
+Given that:
+- These events are emitted infrequently (only during administrative `bindToken` / `unbindToken` calls), so the filtering cost is negligible in practice.
+- Changing the event signature breaks existing integrations.
+
+**Decision: accepted as-is.** If the interface is ever revised for another reason, the `indexed` keyword should be added at the same time.
+
+---
+
+## Overall conclusion
+
+Both finding categories are **accepted by design** and require no code changes for v3.0.0-rc2. The `calls-loop` pattern is inherent to the RuleEngine architecture; the `unindexed-event-address` finding is noted and deferred to a future interface revision.
diff --git a/doc/security/audits/tools/v3.0.0-rc2/slither-report.md b/doc/security/audits/tools/v3.0.0-rc2/slither-report.md
new file mode 100644
index 0000000..75c678b
--- /dev/null
+++ b/doc/security/audits/tools/v3.0.0-rc2/slither-report.md
@@ -0,0 +1,104 @@
+**THIS CHECKLIST IS NOT COMPLETE**. Use `--show-ignored-findings` to show all the results.
+Summary
+ - [calls-loop](#calls-loop) (10 results) (Low)
+ - [unindexed-event-address](#unindexed-event-address) (2 results) (Informational)
+## calls-loop
+Impact: Low
+Confidence: Medium
+ - [ ] ID-0
+[RuleEngineBase._messageForTransferRestriction(uint8)](src/RuleEngineBase.sol#L176-L184) has external calls inside a loop: [IRule(rule(i)).canReturnTransferRestrictionCode(restrictionCode)](src/RuleEngineBase.sol#L179)
+	Calls stack containing the loop:
+		RuleEngineBase.messageForTransferRestriction(uint8)
+
+src/RuleEngineBase.sol#L176-L184
+
+
+ - [ ] ID-1
+[RuleEngineBase._detectTransferRestrictionFrom(address,address,address,uint256)](src/RuleEngineBase.sol#L154-L168) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender,from,to,value)](src/RuleEngineBase.sol#L162)
+	Calls stack containing the loop:
+		RuleEngineBase.detectTransferRestrictionFrom(address,address,address,uint256)
+
+src/RuleEngineBase.sol#L154-L168
+
+
+ - [ ] ID-2
+[RuleEngineBase._messageForTransferRestriction(uint8)](src/RuleEngineBase.sol#L176-L184) has external calls inside a loop: [IRule(rule(i)).messageForTransferRestriction(restrictionCode)](src/RuleEngineBase.sol#L180)
+	Calls stack containing the loop:
+		RuleEngineBase.messageForTransferRestriction(uint8)
+
+src/RuleEngineBase.sol#L176-L184
+
+
+ - [ ] ID-3
+[RulesManagementModule._transferred(address,address,address,uint256)](src/modules/RulesManagementModule.sol#L192-L197) has external calls inside a loop: [IRule(_rules.at(i)).transferred(spender,from,to,value)](src/modules/RulesManagementModule.sol#L195)
+	Calls stack containing the loop:
+		RuleEngineBase.transferred(address,address,address,uint256)
+
+src/modules/RulesManagementModule.sol#L192-L197
+
+
+ - [ ] ID-4
+[RuleEngineBase._detectTransferRestrictionFrom(address,address,address,uint256)](src/RuleEngineBase.sol#L154-L168) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestrictionFrom(spender,from,to,value)](src/RuleEngineBase.sol#L162)
+	Calls stack containing the loop:
+		RuleEngineBase.canTransferFrom(address,address,address,uint256)
+		RuleEngineBase.detectTransferRestrictionFrom(address,address,address,uint256)
+
+src/RuleEngineBase.sol#L154-L168
+
+
+ - [ ] ID-5
+[RuleEngineBase._detectTransferRestriction(address,address,uint256)](src/RuleEngineBase.sol#L143-L152) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestriction(from,to,value)](src/RuleEngineBase.sol#L146)
+	Calls stack containing the loop:
+		RuleEngineBase.detectTransferRestriction(address,address,uint256)
+
+src/RuleEngineBase.sol#L143-L152
+
+
+ - [ ] ID-6
+[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L173-L178) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L176)
+	Calls stack containing the loop:
+		RuleEngineBase.created(address,uint256)
+
+src/modules/RulesManagementModule.sol#L173-L178
+
+
+ - [ ] ID-7
+[RuleEngineBase._detectTransferRestriction(address,address,uint256)](src/RuleEngineBase.sol#L143-L152) has external calls inside a loop: [restriction = IRule(rule(i)).detectTransferRestriction(from,to,value)](src/RuleEngineBase.sol#L146)
+	Calls stack containing the loop:
+		RuleEngineBase.canTransfer(address,address,uint256)
+		RuleEngineBase.detectTransferRestriction(address,address,uint256)
+
+src/RuleEngineBase.sol#L143-L152
+
+
+ - [ ] ID-8
+[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L173-L178) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L176)
+	Calls stack containing the loop:
+		RuleEngineBase.transferred(address,address,uint256)
+
+src/modules/RulesManagementModule.sol#L173-L178
+
+
+ - [ ] ID-9
+[RulesManagementModule._transferred(address,address,uint256)](src/modules/RulesManagementModule.sol#L173-L178) has external calls inside a loop: [IRule(_rules.at(i)).transferred(from,to,value)](src/modules/RulesManagementModule.sol#L176)
+	Calls stack containing the loop:
+		RuleEngineBase.destroyed(address,uint256)
+
+src/modules/RulesManagementModule.sol#L173-L178
+
+
+## unindexed-event-address
+Impact: Informational
+Confidence: High
+ - [ ] ID-10
+Event [IERC3643Compliance.TokenBound(address)](src/interfaces/IERC3643Compliance.sol#L14) has address parameters but no indexed parameters
+
+src/interfaces/IERC3643Compliance.sol#L14
+
+
+ - [ ] ID-11
+Event [IERC3643Compliance.TokenUnbound(address)](src/interfaces/IERC3643Compliance.sol#L20) has address parameters but no indexed parameters
+
+src/interfaces/IERC3643Compliance.sol#L20
+
+
diff --git a/doc/specification/README.pdf b/doc/specification/README.pdf
deleted file mode 100644
index 7ea2e38..0000000
Binary files a/doc/specification/README.pdf and /dev/null differ
diff --git a/doc/specification/RuleEngine_specificationv3.0.0-rc0.odg b/doc/specification/RuleEngine_specificationv3.0.0-rc0.odg
index c164da2..b6f6e3f 100644
Binary files a/doc/specification/RuleEngine_specificationv3.0.0-rc0.odg and b/doc/specification/RuleEngine_specificationv3.0.0-rc0.odg differ
diff --git a/doc/specification/cover_page.pdf b/doc/specification/cover_page.pdf
deleted file mode 100644
index 45822f4..0000000
Binary files a/doc/specification/cover_page.pdf and /dev/null differ
diff --git a/doc/specification/previous_specification/RuleEngine_specificationv3.0.0-rc2.pdf b/doc/specification/previous_specification/RuleEngine_specificationv3.0.0-rc2.pdf
new file mode 100644
index 0000000..1a69e38
Binary files /dev/null and b/doc/specification/previous_specification/RuleEngine_specificationv3.0.0-rc2.pdf differ
diff --git a/src/RuleEngineBase.sol b/src/RuleEngineBase.sol
index 5d99d1c..4e86787 100644
--- a/src/RuleEngineBase.sol
+++ b/src/RuleEngineBase.sol
@@ -21,6 +21,7 @@ import {RulesManagementModule} from "./modules/RulesManagementModule.sol";
 /* ==== Interface and other library === */
 import {IRule} from "./interfaces/IRule.sol";
 import {ComplianceInterfaceId} from "./modules/library/ComplianceInterfaceId.sol";
+import {ERC1404InterfaceId} from "./modules/library/ERC1404InterfaceId.sol";
 import {RuleEngineInvariantStorage} from "./modules/library/RuleEngineInvariantStorage.sol";
 import {RuleInterfaceId} from "./modules/library/RuleInterfaceId.sol";
 
@@ -191,7 +192,7 @@ abstract contract RuleEngineBase is
      * @dev Override to add ERC-165 interface check for the full IRule hierarchy.
      */
     function _checkRule(address rule_) internal view virtual override {
-        super._checkRule(rule_);
+        RulesManagementModule._checkRule(rule_);
         if (!ERC165Checker.supportsInterface(rule_, RuleInterfaceId.IRULE_INTERFACE_ID)) {
             revert RuleEngine_RuleInvalidInterface();
         }
@@ -203,6 +204,7 @@ abstract contract RuleEngineBase is
      */
     function _supportsRuleEngineBaseInterface(bytes4 interfaceId) internal pure returns (bool) {
         return interfaceId == RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID
+            || interfaceId == ERC1404InterfaceId.IERC1404_INTERFACE_ID
             || interfaceId == ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID
             || interfaceId == ComplianceInterfaceId.ERC3643_COMPLIANCE_INTERFACE_ID
             || interfaceId == ComplianceInterfaceId.IERC7551_COMPLIANCE_INTERFACE_ID;
diff --git a/src/RuleEngineOwnableShared.sol b/src/RuleEngineOwnableShared.sol
index 4193758..e4d2ab5 100644
--- a/src/RuleEngineOwnableShared.sol
+++ b/src/RuleEngineOwnableShared.sol
@@ -4,20 +4,21 @@ pragma solidity ^0.8.20;
 
 /* ==== OpenZeppelin === */
 import {Context} from "@openzeppelin/contracts/utils/Context.sol";
+import {ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
 import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
 /* ==== Modules === */
 import {ERC2771ModuleStandalone, ERC2771Context} from "./modules/ERC2771ModuleStandalone.sol";
 /* ==== Base contract === */
 import {RuleEngineBase} from "./RuleEngineBase.sol";
+import {OwnableInterfaceId} from "./modules/library/OwnableInterfaceId.sol";
+import {IRule} from "./interfaces/IRule.sol";
 
 /**
  * @title Shared Ownable deployment logic for RuleEngine variants
  * @dev Kept abstract to let child contracts choose the ownership mechanism
  * (`Ownable` or `Ownable2Step`) while reusing constructor, ERC-165 and ERC-2771 code.
  */
-abstract contract RuleEngineOwnableShared is ERC2771ModuleStandalone, RuleEngineBase {
-    bytes4 private constant ERC173_INTERFACE_ID = 0x7f5828d0;
-
+abstract contract RuleEngineOwnableShared is ERC2771ModuleStandalone, RuleEngineBase, ERC165 {
     constructor(address forwarderIrrevocable, address tokenContract) ERC2771ModuleStandalone(forwarderIrrevocable) {
         if (tokenContract != address(0)) {
             _bindToken(tokenContract);
@@ -25,10 +26,18 @@ abstract contract RuleEngineOwnableShared is ERC2771ModuleStandalone, RuleEngine
     }
 
     /* ============ ERC-165 ============ */
-    function supportsInterface(bytes4 interfaceId) public view virtual returns (bool) {
-        return _supportsRuleEngineBaseInterface(interfaceId)
-            || interfaceId == ERC173_INTERFACE_ID
-            || interfaceId == type(IERC165).interfaceId;
+    function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {
+        return _supportsRuleEngineBaseInterface(interfaceId) || interfaceId == OwnableInterfaceId.IERC173_INTERFACE_ID
+            || ERC165.supportsInterface(interfaceId);
+    }
+
+    /**
+     * @dev Shared guard for ownership transfer targets in ownable variants.
+     */
+    function _checkOwnershipTransferTarget(address newOwner) internal view virtual {
+        if (containsRule(IRule(newOwner))) {
+            revert RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges();
+        }
     }
 
     /*//////////////////////////////////////////////////////////////
diff --git a/src/deployment/RuleEngine.sol b/src/deployment/RuleEngine.sol
index e9a501b..44f8c54 100644
--- a/src/deployment/RuleEngine.sol
+++ b/src/deployment/RuleEngine.sol
@@ -8,6 +8,7 @@ import {IAccessControl} from "@openzeppelin/contracts/access/IAccessControl.sol"
 import {AccessControl} from "@openzeppelin/contracts/access/AccessControl.sol";
 import {AccessControlEnumerable} from "@openzeppelin/contracts/access/extensions/AccessControlEnumerable.sol";
 import {IERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
+import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
 /* ==== Modules === */
 import {ERC2771ModuleStandalone, ERC2771Context} from "../modules/ERC2771ModuleStandalone.sol";
 /* ==== Base contract === */
@@ -17,6 +18,8 @@ import {RuleEngineBase} from "../RuleEngineBase.sol";
  * @title Implementation of a ruleEngine as defined by the CMTAT
  */
 contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControlEnumerable {
+    using EnumerableSet for EnumerableSet.AddressSet;
+
     /**
      * @param admin Address of the contract (Access Control)
      * @param forwarderIrrevocable Address of the forwarder, required for the gasless support
@@ -34,6 +37,17 @@ contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControlEnu
     }
 
     /* ============ ACCESS CONTROL ============ */
+    /**
+     * @notice Grants `role` to `account`.
+     * @dev Prevents granting any role to accounts already configured as rules.
+     */
+    function grantRole(bytes32 role, address account) public virtual override(AccessControl, IAccessControl) {
+        if (_rules.contains(account)) {
+            revert RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges();
+        }
+        AccessControl.grantRole(role, account);
+    }
+
     /**
      * @notice Returns `true` if `account` has been granted `role`.
      * @dev The Default Admin has all roles
@@ -68,6 +82,7 @@ contract RuleEngine is ERC2771ModuleStandalone, RuleEngineBase, AccessControlEnu
     //////////////////////////////////////////////////////////////*/
     function _onlyComplianceManager() internal virtual override onlyRole(COMPLIANCE_MANAGER_ROLE) {}
     function _onlyRulesManager() internal virtual override onlyRole(RULES_MANAGEMENT_ROLE) {}
+    function _onlyRulesLimitManager() internal virtual override onlyRole(DEFAULT_ADMIN_ROLE) {}
 
     /**
      * @dev This surcharge is not necessary if you do not use the MetaTxModule
diff --git a/src/deployment/RuleEngineOwnable.sol b/src/deployment/RuleEngineOwnable.sol
index 7753874..391c066 100644
--- a/src/deployment/RuleEngineOwnable.sol
+++ b/src/deployment/RuleEngineOwnable.sol
@@ -25,12 +25,22 @@ contract RuleEngineOwnable is RuleEngineOwnableShared, Ownable {
      * @dev Access control check using Ownable pattern
      */
     function _onlyRulesManager() internal virtual override onlyOwner {}
+    function _onlyRulesLimitManager() internal virtual override onlyOwner {}
 
     /**
      * @dev Access control check using Ownable pattern
      */
     function _onlyComplianceManager() internal virtual override onlyOwner {}
 
+    /**
+     * @notice Transfers ownership of the contract to a new account (`newOwner`).
+     * @dev Reverts when `newOwner` is already configured as a rule.
+     */
+    function transferOwnership(address newOwner) public virtual override onlyOwner {
+        RuleEngineOwnableShared._checkOwnershipTransferTarget(newOwner);
+        Ownable.transferOwnership(newOwner);
+    }
+
     /**
      * @dev This surcharge is not necessary if you do not use the MetaTxModule
      */
@@ -51,5 +61,4 @@ contract RuleEngineOwnable is RuleEngineOwnableShared, Ownable {
     function _contextSuffixLength() internal view virtual override(RuleEngineOwnableShared, Context) returns (uint256) {
         return RuleEngineOwnableShared._contextSuffixLength();
     }
-
 }
diff --git a/src/deployment/RuleEngineOwnable2Step.sol b/src/deployment/RuleEngineOwnable2Step.sol
index 2b7240a..39c4e15 100644
--- a/src/deployment/RuleEngineOwnable2Step.sol
+++ b/src/deployment/RuleEngineOwnable2Step.sol
@@ -7,6 +7,7 @@ import {Ownable2Step} from "@openzeppelin/contracts/access/Ownable2Step.sol";
 import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
 import {Context} from "@openzeppelin/contracts/utils/Context.sol";
 import {RuleEngineOwnableShared} from "../RuleEngineOwnableShared.sol";
+import {Ownable2StepInterfaceId} from "../modules/library/Ownable2StepInterfaceId.sol";
 
 /**
  * @title Implementation of a ruleEngine with ERC-173 Ownable2Step access control
@@ -27,12 +28,28 @@ contract RuleEngineOwnable2Step is RuleEngineOwnableShared, Ownable2Step {
      * @dev Access control check using Ownable pattern
      */
     function _onlyRulesManager() internal virtual override onlyOwner {}
+    function _onlyRulesLimitManager() internal virtual override onlyOwner {}
 
     /**
      * @dev Access control check using Ownable pattern
      */
     function _onlyComplianceManager() internal virtual override onlyOwner {}
 
+    /**
+     * @notice Starts ownership transfer to `newOwner`.
+     * @dev Reverts when `newOwner` is already configured as a rule.
+     */
+    function transferOwnership(address newOwner) public virtual override onlyOwner {
+        RuleEngineOwnableShared._checkOwnershipTransferTarget(newOwner);
+        Ownable2Step.transferOwnership(newOwner);
+    }
+
+    /* ============ ERC-165 ============ */
+    function supportsInterface(bytes4 interfaceId) public view virtual override(RuleEngineOwnableShared) returns (bool) {
+        return interfaceId == Ownable2StepInterfaceId.IOWNABLE2STEP_INTERFACE_ID
+            || RuleEngineOwnableShared.supportsInterface(interfaceId);
+    }
+
     /**
      * @dev This surcharge is not necessary if you do not use the MetaTxModule
      */
diff --git a/src/interfaces/IRulesManagementModule.sol b/src/interfaces/IRulesManagementModule.sol
index 81dfced..17c1242 100644
--- a/src/interfaces/IRulesManagementModule.sol
+++ b/src/interfaces/IRulesManagementModule.sol
@@ -6,6 +6,18 @@ pragma solidity ^0.8.20;
 import {IRule} from "./IRule.sol";
 
 interface IRulesManagementModule {
+    /**
+     * @notice Returns the maximum number of rules allowed in the engine.
+     */
+    function maxRules() external view returns (uint256);
+
+    /**
+     * @notice Updates the maximum number of rules allowed in the engine.
+     * @dev Access control is implementation specific (admin/owner).
+     * @param maxRules_ New maximum number of rules.
+     */
+    function setMaxRules(uint256 maxRules_) external;
+
     /**
      * @notice Defines the  rules for the rule engine.
      * @dev Sets the list of rule contract addresses for s.
diff --git a/src/mocks/IERC1404Subset.sol b/src/mocks/IERC1404Subset.sol
new file mode 100644
index 0000000..990f8aa
--- /dev/null
+++ b/src/mocks/IERC1404Subset.sol
@@ -0,0 +1,11 @@
+// SPDX-License-Identifier: MPL-2.0
+
+pragma solidity ^0.8.20;
+
+/**
+ * @dev Test-only subset matching IERC1404 for interfaceId checks.
+ */
+interface IERC1404Subset {
+    function detectTransferRestriction(address from, address to, uint256 value) external view returns (uint8);
+    function messageForTransferRestriction(uint8 restrictionCode) external view returns (string memory);
+}
diff --git a/src/mocks/IERC173Subset.sol b/src/mocks/IERC173Subset.sol
new file mode 100644
index 0000000..aca9d79
--- /dev/null
+++ b/src/mocks/IERC173Subset.sol
@@ -0,0 +1,11 @@
+// SPDX-License-Identifier: MPL-2.0
+
+pragma solidity ^0.8.20;
+
+/**
+ * @dev Test-only subset matching ERC-173 for interfaceId checks.
+ */
+interface IERC173Subset {
+    function owner() external view returns (address);
+    function transferOwnership(address newOwner) external;
+}
diff --git a/src/mocks/IOwnable2StepSubset.sol b/src/mocks/IOwnable2StepSubset.sol
new file mode 100644
index 0000000..fe5b99f
--- /dev/null
+++ b/src/mocks/IOwnable2StepSubset.sol
@@ -0,0 +1,11 @@
+// SPDX-License-Identifier: MPL-2.0
+
+pragma solidity ^0.8.20;
+
+/**
+ * @dev Test-only subset for Ownable2Step-specific ERC-165 checks.
+ */
+interface IOwnable2StepSubset {
+    function pendingOwner() external view returns (address);
+    function acceptOwnership() external;
+}
diff --git a/src/mocks/RuleEngineExposed.sol b/src/mocks/RuleEngineExposed.sol
index 948dd0f..80d5da9 100644
--- a/src/mocks/RuleEngineExposed.sol
+++ b/src/mocks/RuleEngineExposed.sol
@@ -3,6 +3,7 @@ pragma solidity ^0.8.20;
 
 import {RuleEngine} from "../deployment/RuleEngine.sol";
 import {RuleEngineOwnable} from "../deployment/RuleEngineOwnable.sol";
+import {RuleEngineOwnable2Step} from "../deployment/RuleEngineOwnable2Step.sol";
 
 /**
  * @title RuleEngineExposed
@@ -27,3 +28,15 @@ contract RuleEngineOwnableExposed is RuleEngineOwnable {
         return _msgData();
     }
 }
+
+/**
+ * @title RuleEngineOwnable2StepExposed
+ * @dev Exposes internal functions for testing coverage
+ */
+contract RuleEngineOwnable2StepExposed is RuleEngineOwnable2Step {
+    constructor(address owner_, address forwarder, address token) RuleEngineOwnable2Step(owner_, forwarder, token) {}
+
+    function exposedMsgData() external view returns (bytes memory) {
+        return _msgData();
+    }
+}
diff --git a/src/mocks/rules/operation/RuleConditionalTransferLight.sol b/src/mocks/rules/operation/RuleConditionalTransferLight.sol
index dc864fa..0d9beb1 100644
--- a/src/mocks/rules/operation/RuleConditionalTransferLight.sol
+++ b/src/mocks/rules/operation/RuleConditionalTransferLight.sol
@@ -33,7 +33,7 @@ contract RuleConditionalTransferLight is AccessControl, RuleConditionalTransferL
 
     function supportsInterface(bytes4 interfaceId) public view virtual override(AccessControl, IERC165) returns (bool) {
         return interfaceId == RULE_ENGINE_INTERFACE_ID || interfaceId == ERC1404EXTEND_INTERFACE_ID
-            || interfaceId == RuleInterfaceId.IRULE_INTERFACE_ID || super.supportsInterface(interfaceId);
+            || interfaceId == RuleInterfaceId.IRULE_INTERFACE_ID || AccessControl.supportsInterface(interfaceId);
     }
 
     /**
diff --git a/src/mocks/rules/operation/RuleOperationRevert.sol b/src/mocks/rules/operation/RuleOperationRevert.sol
index a8c3cbb..1bc7fc7 100644
--- a/src/mocks/rules/operation/RuleOperationRevert.sol
+++ b/src/mocks/rules/operation/RuleOperationRevert.sol
@@ -23,7 +23,7 @@ contract RuleOperationRevert is AccessControl, IRule, RuleCommonInvariantStorage
 
     function supportsInterface(bytes4 interfaceId) public view virtual override(AccessControl, IERC165) returns (bool) {
         return interfaceId == RULE_ENGINE_INTERFACE_ID || interfaceId == ERC1404EXTEND_INTERFACE_ID
-            || interfaceId == RuleInterfaceId.IRULE_INTERFACE_ID || super.supportsInterface(interfaceId);
+            || interfaceId == RuleInterfaceId.IRULE_INTERFACE_ID || AccessControl.supportsInterface(interfaceId);
     }
 
     /**
diff --git a/src/mocks/rules/operation/abstract/RuleConditionalTransferLightInvariantStorage.sol b/src/mocks/rules/operation/abstract/RuleConditionalTransferLightInvariantStorage.sol
index fb3eb3a..b6cf6dd 100644
--- a/src/mocks/rules/operation/abstract/RuleConditionalTransferLightInvariantStorage.sol
+++ b/src/mocks/rules/operation/abstract/RuleConditionalTransferLightInvariantStorage.sol
@@ -1,8 +1,6 @@
 // SPDX-License-Identifier: MPL-2.0
 
 pragma solidity ^0.8.20;
-// forge-lint: disable-next-line(unaliased-plain-import)
-import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
 
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../validation/abstract/RuleCommonInvariantStorage.sol";
diff --git a/src/mocks/rules/validation/RuleWhitelist.sol b/src/mocks/rules/validation/RuleWhitelist.sol
index f728072..21aa75d 100644
--- a/src/mocks/rules/validation/RuleWhitelist.sol
+++ b/src/mocks/rules/validation/RuleWhitelist.sol
@@ -21,7 +21,7 @@ contract RuleWhitelist is RuleAddressList, RuleWhitelistCommon {
 
     function supportsInterface(bytes4 interfaceId) public view virtual override(AccessControl, IERC165) returns (bool) {
         return interfaceId == RULE_ENGINE_INTERFACE_ID || interfaceId == ERC1404EXTEND_INTERFACE_ID
-            || interfaceId == RuleInterfaceId.IRULE_INTERFACE_ID || super.supportsInterface(interfaceId);
+            || interfaceId == RuleInterfaceId.IRULE_INTERFACE_ID || AccessControl.supportsInterface(interfaceId);
     }
 
     /**
diff --git a/src/modules/ERC3643ComplianceModule.sol b/src/modules/ERC3643ComplianceModule.sol
index a7e2185..8a48bcc 100644
--- a/src/modules/ERC3643ComplianceModule.sol
+++ b/src/modules/ERC3643ComplianceModule.sol
@@ -46,8 +46,11 @@ abstract contract ERC3643ComplianceModule is Context, IERC3643Compliance {
      * @dev Operator warning: "multi-tenant" means one RuleEngine is shared by
      * multiple token contracts. In that setup, bind only tokens that are equally
      * trusted and governed together.
+     * @dev T-REX compatibility: allows token self-binding when caller equals
+     * `token`, because TREX `Token.setCompliance` invokes `compliance.bindToken(address(this))`.
      */
-    function bindToken(address token) public virtual override onlyComplianceManager {
+    function bindToken(address token) public virtual override {
+        _authorizeComplianceBindingChange(token);
         _bindToken(token);
     }
 
@@ -56,8 +59,11 @@ abstract contract ERC3643ComplianceModule is Context, IERC3643Compliance {
      * @dev Operator warning: unbinding is an administrative operation and does not
      * erase any state already stored by external rule contracts in a previously
      * shared ("multi-tenant") setup.
+     * @dev T-REX compatibility: allows token self-unbinding when caller equals
+     * `token`, because TREX token contracts may call `compliance.unbindToken(address(this))`.
      */
-    function unbindToken(address token) public virtual override onlyComplianceManager {
+    function unbindToken(address token) public virtual override {
+        _authorizeComplianceBindingChange(token);
         _unbindToken(token);
     }
 
@@ -102,11 +108,21 @@ abstract contract ERC3643ComplianceModule is Context, IERC3643Compliance {
         emit TokenBound(token);
     }
 
-    function _checkBoundToken() internal view virtual{
+    function _checkBoundToken() internal view virtual {
         if (!_boundTokens.contains(_msgSender())) {
             revert RuleEngine_ERC3643Compliance_UnauthorizedCaller();
         }
     }
 
+    /**
+     * @dev Authorizes bind/unbind operations.
+     * Allows compliance manager, or token self-calls for T-REX compatibility.
+     */
+    function _authorizeComplianceBindingChange(address token) internal virtual {
+        if (_msgSender() != token) {
+            _onlyComplianceManager();
+        }
+    }
+
     function _onlyComplianceManager() internal virtual;
 }
diff --git a/src/modules/RulesManagementModule.sol b/src/modules/RulesManagementModule.sol
index 72ed6fa..4f56938 100644
--- a/src/modules/RulesManagementModule.sol
+++ b/src/modules/RulesManagementModule.sol
@@ -18,12 +18,19 @@ abstract contract RulesManagementModule is RulesManagementModuleInvariantStorage
         _;
     }
 
+    modifier onlyRulesLimitManager() {
+        _onlyRulesLimitManager();
+        _;
+    }
+
     /* ==== Type declaration === */
     using EnumerableSet for EnumerableSet.AddressSet;
 
     /* ==== State Variables === */
     /// @dev Array of rules
     EnumerableSet.AddressSet internal _rules;
+    /// @dev Maximum number of rules allowed in the engine.
+    uint256 internal _maxRules = 10;
 
     /*//////////////////////////////////////////////////////////////
                             PUBLIC/EXTERNAL FUNCTIONS
@@ -37,8 +44,6 @@ abstract contract RulesManagementModule is RulesManagementModuleInvariantStorage
      * Reverts if `rules_` is empty. Use {clearRules} to remove all rules explicitly.
      * To transition from one non-empty set to another without an enforcement gap,
      * call this function directly with the new set.
-     * No on-chain maximum number of rules is enforced. Operators are responsible
-     * for keeping the rule set size compatible with the target chain gas limits.
      * Security convention: rule contracts should be treated as trusted business logic,
      * but should not also be granted {RULES_MANAGEMENT_ROLE}.
      */
@@ -46,6 +51,9 @@ abstract contract RulesManagementModule is RulesManagementModuleInvariantStorage
         if (rules_.length == 0) {
             revert RuleEngine_RulesManagementModule_ArrayIsEmpty();
         }
+        if (rules_.length > _maxRules) {
+            revert RuleEngine_RulesManagementModule_MaxRulesExceeded(_maxRules);
+        }
         if (_rules.length() > 0) {
             _clearRules();
         }
@@ -66,16 +74,36 @@ abstract contract RulesManagementModule is RulesManagementModuleInvariantStorage
 
     /**
      * @inheritdoc IRulesManagementModule
-     * @dev No on-chain maximum number of rules is enforced. Adding too many rules
-     * can increase transfer-time gas usage because rule checks are linear in rule count.
+     * @dev Reverts when the configured maximum number of rules is already reached.
      * Security convention: do not grant {RULES_MANAGEMENT_ROLE} to rule contracts.
      */
     function addRule(IRule rule_) public virtual override(IRulesManagementModule) onlyRulesManager {
+        if (_rules.length() >= _maxRules) {
+            revert RuleEngine_RulesManagementModule_MaxRulesExceeded(_maxRules);
+        }
         _checkRule(address(rule_));
         require(_rules.add(address(rule_)), RuleEngine_RulesManagementModule_OperationNotSuccessful());
         emit AddRule(rule_);
     }
 
+    /**
+     * @inheritdoc IRulesManagementModule
+     */
+    function maxRules() public view virtual override(IRulesManagementModule) returns (uint256) {
+        return _maxRules;
+    }
+
+    /**
+     * @inheritdoc IRulesManagementModule
+     */
+    function setMaxRules(uint256 maxRules_) public virtual override(IRulesManagementModule) onlyRulesLimitManager {
+        if (maxRules_ == 0) {
+            revert RuleEngine_RulesManagementModule_MaxRulesZeroNotAllowed();
+        }
+        _maxRules = maxRules_;
+        emit SetMaxRules(maxRules_);
+    }
+
     /**
      * @inheritdoc IRulesManagementModule
      */
@@ -197,4 +225,5 @@ abstract contract RulesManagementModule is RulesManagementModuleInvariantStorage
     }
 
     function _onlyRulesManager() internal virtual;
+    function _onlyRulesLimitManager() internal virtual;
 }
diff --git a/src/modules/library/ERC1404InterfaceId.sol b/src/modules/library/ERC1404InterfaceId.sol
new file mode 100644
index 0000000..b4bd60e
--- /dev/null
+++ b/src/modules/library/ERC1404InterfaceId.sol
@@ -0,0 +1,11 @@
+// SPDX-License-Identifier: MPL-2.0
+
+pragma solidity ^0.8.20;
+
+/**
+ * @title ERC1404InterfaceId
+ * @dev ERC-165 interface IDs for ERC-1404 interfaces.
+ */
+library ERC1404InterfaceId {
+    bytes4 public constant IERC1404_INTERFACE_ID = 0xab84a5c8;
+}
diff --git a/src/modules/library/Ownable2StepInterfaceId.sol b/src/modules/library/Ownable2StepInterfaceId.sol
new file mode 100644
index 0000000..a04a4c7
--- /dev/null
+++ b/src/modules/library/Ownable2StepInterfaceId.sol
@@ -0,0 +1,12 @@
+// SPDX-License-Identifier: MPL-2.0
+
+pragma solidity ^0.8.20;
+
+/**
+ * @title Ownable2StepInterfaceId
+ * @dev ERC-165 interface ID for Ownable2Step-specific functions only.
+ */
+library Ownable2StepInterfaceId {
+    // bytes4(keccak256("acceptOwnership()")) ^ bytes4(keccak256("pendingOwner()"))
+    bytes4 public constant IOWNABLE2STEP_INTERFACE_ID = 0x9ab669ef;
+}
diff --git a/src/modules/library/OwnableInterfaceId.sol b/src/modules/library/OwnableInterfaceId.sol
new file mode 100644
index 0000000..af9bb7d
--- /dev/null
+++ b/src/modules/library/OwnableInterfaceId.sol
@@ -0,0 +1,11 @@
+// SPDX-License-Identifier: MPL-2.0
+
+pragma solidity ^0.8.20;
+
+/**
+ * @title OwnableInterfaceId
+ * @dev ERC-165 interface IDs used by ownable RuleEngine variants.
+ */
+library OwnableInterfaceId {
+    bytes4 public constant IERC173_INTERFACE_ID = 0x7f5828d0;
+}
diff --git a/src/modules/library/RulesManagementModuleInvariantStorage.sol b/src/modules/library/RulesManagementModuleInvariantStorage.sol
index 6358bf0..377a031 100644
--- a/src/modules/library/RulesManagementModuleInvariantStorage.sol
+++ b/src/modules/library/RulesManagementModuleInvariantStorage.sol
@@ -5,12 +5,17 @@ pragma solidity ^0.8.20;
 import {IRule} from "../../interfaces/IRule.sol";
 
 abstract contract RulesManagementModuleInvariantStorage {
+    //uint256 public constant DEFAULT_MAX_RULES = 10;
+
     /* ==== Errors === */
     error RuleEngine_RulesManagementModule_RuleAddressZeroNotAllowed();
     error RuleEngine_RulesManagementModule_RuleAlreadyExists();
     error RuleEngine_RulesManagementModule_RuleDoNotMatch();
     error RuleEngine_RulesManagementModule_ArrayIsEmpty();
     error RuleEngine_RulesManagementModule_OperationNotSuccessful();
+    error RuleEngine_RulesManagementModule_MaxRulesExceeded(uint256 maxRules);
+    error RuleEngine_RulesManagementModule_MaxRulesZeroNotAllowed();
+    error RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges();
 
     /* ============ Events ============ */
     /**
@@ -30,6 +35,12 @@ abstract contract RulesManagementModuleInvariantStorage {
      */
     event ClearRules();
 
+    /**
+     * @notice Emitted when the maximum allowed number of rules is updated.
+     * @param maxRules The new rule cap.
+     */
+    event SetMaxRules(uint256 maxRules);
+
     /* ==== Constant === */
     /// @notice Role to manage the ruleEngine
     // Will not be present in the final bytecode if not used
diff --git a/test/HelperContractOwnable2Step.sol b/test/HelperContractOwnable2Step.sol
index 0ed3205..ace2ff8 100644
--- a/test/HelperContractOwnable2Step.sol
+++ b/test/HelperContractOwnable2Step.sol
@@ -17,5 +17,5 @@ abstract contract HelperContractOwnable2Step {
     RuleEngineOwnable2Step public ruleEngineMock;
     RuleConditionalTransferLight public ruleConditionalTransferLight;
 
-    string internal constant ERC2771ForwarderDomain = "ERC2771ForwarderDomain";
+    string internal constant ERC2771_FORWARDER_DOMAIN = "ERC2771ForwarderDomain";
 }
diff --git a/test/RuleEngine/AccessControl/RuleEngineAccessControl.sol b/test/RuleEngine/AccessControl/RuleEngineAccessControl.sol
index 22ec64a..2521e97 100644
--- a/test/RuleEngine/AccessControl/RuleEngineAccessControl.sol
+++ b/test/RuleEngine/AccessControl/RuleEngineAccessControl.sol
@@ -5,7 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
 /**
  * @title Tests on the Access Control
  */
@@ -95,4 +94,40 @@ contract RuleEngineTest is Test, HelperContract {
         vm.expectRevert(ERC3643ComplianceModule.RuleEngine_ERC3643Compliance_UnauthorizedCaller.selector);
         ruleEngineMock.transferred(address(0), ADDRESS1, ADDRESS2, 10);
     }
+
+    function testCannotAttackerSetMaxRules() public {
+        vm.prank(ATTACKER);
+        vm.expectRevert(abi.encodeWithSelector(AccessControlUnauthorizedAccount.selector, ATTACKER, bytes32(0)));
+        ruleEngineMock.setMaxRules(12);
+    }
+
+    function testRulesManagerCannotSetMaxRulesWithoutAdminRole() public {
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.grantRole(RULES_MANAGEMENT_ROLE, WHITELIST_OPERATOR_ADDRESS);
+
+        vm.prank(WHITELIST_OPERATOR_ADDRESS);
+        vm.expectRevert(
+            abi.encodeWithSelector(AccessControlUnauthorizedAccount.selector, WHITELIST_OPERATOR_ADDRESS, bytes32(0))
+        );
+        ruleEngineMock.setMaxRules(12);
+    }
+
+    function testCannotGrantRulesManagementRoleToRuleAccount() public {
+        vm.expectRevert(RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges.selector);
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.grantRole(RULES_MANAGEMENT_ROLE, address(ruleWhitelist));
+    }
+
+    function testCannotGrantDefaultAdminRoleToRuleAccount() public {
+        vm.expectRevert(RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges.selector);
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.grantRole(bytes32(0), address(ruleWhitelist));
+    }
+
+    function testCannotGrantArbitraryRoleToRuleAccount() public {
+        assertTrue(ruleEngineMock.containsRule(ruleWhitelist));
+        vm.expectRevert(RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges.selector);
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.grantRole(keccak256("ARBITRARY_ROLE"), address(ruleWhitelist));
+    }
 }
diff --git a/test/RuleEngine/ERC3643Compliance.t.sol b/test/RuleEngine/ERC3643Compliance.t.sol
index 7f22385..b936a43 100644
--- a/test/RuleEngine/ERC3643Compliance.t.sol
+++ b/test/RuleEngine/ERC3643Compliance.t.sol
@@ -162,6 +162,38 @@ contract RuleEngineTest is Test, HelperContract {
         ruleEngine.bindToken(address(0x1));
     }
 
+    function testTokenCanBindItself() public {
+        vm.prank(address(token1));
+        ruleEngine.bindToken(address(token1));
+
+        assertTrue(ruleEngine.isTokenBound(address(token1)));
+    }
+
+    function testBoundTokenCanUnbindItself() public {
+        vm.prank(address(token1));
+        ruleEngine.bindToken(address(token1));
+
+        vm.prank(address(token1));
+        ruleEngine.unbindToken(address(token1));
+
+        assertFalse(ruleEngine.isTokenBound(address(token1)));
+    }
+
+    function testTokenCannotBindAnotherToken() public {
+        vm.expectRevert();
+        vm.prank(address(token1));
+        ruleEngine.bindToken(address(token2));
+    }
+
+    function testTokenCannotUnbindAnotherToken() public {
+        vm.prank(operator);
+        ruleEngine.bindToken(address(token2));
+
+        vm.expectRevert();
+        vm.prank(address(token1));
+        ruleEngine.unbindToken(address(token2));
+    }
+
     function testCannotCreatedIfNotBound() public {
         vm.expectRevert(ERC3643ComplianceModule.RuleEngine_ERC3643Compliance_UnauthorizedCaller.selector);
         ruleEngine.created(user1, 100);
diff --git a/test/RuleEngine/RuleEngineCoverage.t.sol b/test/RuleEngine/RuleEngineCoverage.t.sol
index 5f9e9e2..3328f5f 100644
--- a/test/RuleEngine/RuleEngineCoverage.t.sol
+++ b/test/RuleEngine/RuleEngineCoverage.t.sol
@@ -8,7 +8,9 @@ import "../HelperContract.sol";
 import {RuleEngineExposed} from "src/mocks/RuleEngineExposed.sol";
 import {RuleInvalidMock} from "src/mocks/RuleInvalidMock.sol";
 import {ICompliance} from "src/mocks/ICompliance.sol";
+import {IERC1404Subset} from "src/mocks/IERC1404Subset.sol";
 import {IERC7551ComplianceSubset} from "src/mocks/IERC7551ComplianceSubset.sol";
+import {ERC1404InterfaceId} from "src/modules/library/ERC1404InterfaceId.sol";
 
 /**
  * @title Coverage tests for RuleEngine (supportsInterface, _msgData, ERC-165 rule check)
@@ -39,6 +41,11 @@ contract RuleEngineCoverageTest is Test, HelperContract {
         assertTrue(ruleEngineMock.supportsInterface(ERC1404_EXTEND_ID));
     }
 
+    function testSupportsERC1404Interface() public view {
+        assertTrue(ruleEngineMock.supportsInterface(ERC1404InterfaceId.IERC1404_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC1404Subset).interfaceId));
+    }
+
     function testSupportsERC3643ComplianceInterface() public view {
         assertTrue(ruleEngineMock.supportsInterface(type(ICompliance).interfaceId));
     }
diff --git a/test/RuleEngine/RuleEngineDeployment.t.sol b/test/RuleEngine/RuleEngineDeployment.t.sol
index 841adc0..14ebbe0 100644
--- a/test/RuleEngine/RuleEngineDeployment.t.sol
+++ b/test/RuleEngine/RuleEngineDeployment.t.sol
@@ -12,6 +12,8 @@ import {ERC1404ExtendInterfaceId} from "CMTAT/library/ERC1404ExtendInterfaceId.s
 import {RuleEngineInterfaceId} from "CMTAT/library/RuleEngineInterfaceId.sol";
 import {ICompliance} from "src/mocks/ICompliance.sol";
 import {IERC7551ComplianceSubset} from "src/mocks/IERC7551ComplianceSubset.sol";
+import {IERC1404Subset} from "src/mocks/IERC1404Subset.sol";
+import {ERC1404InterfaceId} from "src/modules/library/ERC1404InterfaceId.sol";
 
 /**
  * @title General functions of the RuleEngine
@@ -62,6 +64,8 @@ contract RuleEngineTest is Test, HelperContract {
         assertTrue(ruleEngineMock.supportsInterface(type(IAccessControl).interfaceId));
         assertTrue(ruleEngineMock.supportsInterface(type(IAccessControlEnumerable).interfaceId));
         assertTrue(ruleEngineMock.supportsInterface(RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(ERC1404InterfaceId.IERC1404_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC1404Subset).interfaceId));
         assertTrue(ruleEngineMock.supportsInterface(ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID));
         assertTrue(ruleEngineMock.supportsInterface(type(ICompliance).interfaceId));
         assertTrue(ruleEngineMock.supportsInterface(type(IERC7551ComplianceSubset).interfaceId));
diff --git a/test/RuleEngine/RulesManagementModuleTest/CMTATIntegrationBase.sol b/test/RuleEngine/RulesManagementModuleTest/CMTATIntegrationBase.sol
index a9c0ae8..072da8c 100644
--- a/test/RuleEngine/RulesManagementModuleTest/CMTATIntegrationBase.sol
+++ b/test/RuleEngine/RulesManagementModuleTest/CMTATIntegrationBase.sol
@@ -6,8 +6,6 @@ import {CMTATStandalone} from "CMTAT/deployment/CMTATStandalone.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
-
 /**
  * @title Base integration test for RuleEngine with CMTAT
  */
diff --git a/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperation.t.sol b/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperation.t.sol
index 2d61617..72f76bf 100644
--- a/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperation.t.sol
+++ b/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperation.t.sol
@@ -5,8 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
-
 /**
  * @title General functions of the RuleEngine
  */
@@ -218,6 +216,98 @@ contract RulesManagementModuleInvariantStorageTest is Test, HelperContract {
         assertEq(resUint256, 2);
     }
 
+    function testDefaultMaxRulesIsTen() public view {
+        assertEq(ruleEngineMock.maxRules(), 10);
+    }
+
+    function testCannotAddRuleAboveMaxRules() public {
+        for (uint256 i = 0; i < 9; ++i) {
+            vm.prank(WHITELIST_OPERATOR_ADDRESS);
+            RuleConditionalTransferLight rule =
+                new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
+            vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+            ruleEngineMock.addRule(rule);
+        }
+
+        vm.prank(WHITELIST_OPERATOR_ADDRESS);
+        RuleConditionalTransferLight extraRule =
+            new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
+        vm.expectRevert(
+            abi.encodeWithSelector(
+                RuleEngine_RulesManagementModule_MaxRulesExceeded.selector, ruleEngineMock.maxRules()
+            )
+        );
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.addRule(extraRule);
+    }
+
+    function testCannotSetRulesAboveMaxRules() public {
+        IRule[] memory manyRules = new IRule[](11);
+        for (uint256 i = 0; i < 11; ++i) {
+            vm.prank(WHITELIST_OPERATOR_ADDRESS);
+            RuleConditionalTransferLight rule =
+                new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
+            manyRules[i] = IRule(rule);
+        }
+
+        vm.expectRevert(
+            abi.encodeWithSelector(
+                RuleEngine_RulesManagementModule_MaxRulesExceeded.selector, ruleEngineMock.maxRules()
+            )
+        );
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.setRules(manyRules);
+    }
+
+    function testCanSetRulesAtMaxRulesBoundary() public {
+        IRule[] memory atMaxRules = new IRule[](10);
+        for (uint256 i = 0; i < 10; ++i) {
+            vm.prank(WHITELIST_OPERATOR_ADDRESS);
+            RuleConditionalTransferLight rule =
+                new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
+            atMaxRules[i] = IRule(rule);
+        }
+
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.setRules(atMaxRules);
+        assertEq(ruleEngineMock.rulesCount(), 10);
+    }
+
+    function testAdminCanUpdateMaxRules() public {
+        vm.expectEmit(false, false, false, true);
+        emit RulesManagementModuleInvariantStorage.SetMaxRules(15);
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.setMaxRules(15);
+        assertEq(ruleEngineMock.maxRules(), 15);
+    }
+
+    function testCannotSetMaxRulesToZero() public {
+        vm.expectRevert(RuleEngine_RulesManagementModule_MaxRulesZeroNotAllowed.selector);
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.setMaxRules(0);
+    }
+
+    function testLoweredMaxRulesDoesNotRemoveExistingRulesButBlocksNewAdds() public {
+        vm.prank(WHITELIST_OPERATOR_ADDRESS);
+        RuleConditionalTransferLight secondRule =
+            new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.addRule(secondRule);
+        assertEq(ruleEngineMock.rulesCount(), 2);
+
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.setMaxRules(1);
+        assertEq(ruleEngineMock.maxRules(), 1);
+        assertEq(ruleEngineMock.rulesCount(), 2);
+
+        vm.prank(WHITELIST_OPERATOR_ADDRESS);
+        RuleConditionalTransferLight thirdRule =
+            new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
+        vm.expectRevert(abi.encodeWithSelector(RuleEngine_RulesManagementModule_MaxRulesExceeded.selector, uint256(1)));
+        vm.prank(RULE_ENGINE_OPERATOR_ADDRESS);
+        ruleEngineMock.addRule(thirdRule);
+    }
+
     function testCannotAddRuleZeroAddress() public {
         // Act
         vm.expectRevert(RuleEngine_RulesManagementModule_RuleAddressZeroNotAllowed.selector);
diff --git a/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperationRevertBase.sol b/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperationRevertBase.sol
index 8aa6d5e..d63de8a 100644
--- a/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperationRevertBase.sol
+++ b/test/RuleEngine/RulesManagementModuleTest/RuleEngineOperationRevertBase.sol
@@ -7,7 +7,6 @@ import "../../HelperContract.sol";
 
 import {RuleOperationRevert} from "src/mocks/rules/operation/RuleOperationRevert.sol";
 
-
 /**
  * @title Base test for RuleEngine operation revert with CMTAT
  */
diff --git a/test/RuleEngine/RulesManagementModuleTest/RuleEngineRestriction.t.sol b/test/RuleEngine/RulesManagementModuleTest/RuleEngineRestriction.t.sol
index 67d9f44..2405f4b 100644
--- a/test/RuleEngine/RulesManagementModuleTest/RuleEngineRestriction.t.sol
+++ b/test/RuleEngine/RulesManagementModuleTest/RuleEngineRestriction.t.sol
@@ -5,8 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
-
 //ADmin, forwarder irrect /RuleEngine
 /**
  * @title General functions of the RuleEngine
diff --git a/test/RuleEngine/ruleEngineValidation/RuleEngineRestriction.sol b/test/RuleEngine/ruleEngineValidation/RuleEngineRestriction.sol
index 324f603..31d0e54 100644
--- a/test/RuleEngine/ruleEngineValidation/RuleEngineRestriction.sol
+++ b/test/RuleEngine/ruleEngineValidation/RuleEngineRestriction.sol
@@ -5,8 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
-
 /**
  * @title tests concerning the restrictions and  for the transfers
  */
diff --git a/test/RuleEngine/ruleEngineValidation/RuleEngineValidation.sol b/test/RuleEngine/ruleEngineValidation/RuleEngineValidation.sol
index 6f2f9f6..38328d7 100644
--- a/test/RuleEngine/ruleEngineValidation/RuleEngineValidation.sol
+++ b/test/RuleEngine/ruleEngineValidation/RuleEngineValidation.sol
@@ -5,7 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
 /**
  * @title General functions of the RuleEngine
  */
diff --git a/test/RuleEngineOwnable/AccessControl/RuleEngineOwnableAccessControl.t.sol b/test/RuleEngineOwnable/AccessControl/RuleEngineOwnableAccessControl.t.sol
index 5d0b96c..fd4685b 100644
--- a/test/RuleEngineOwnable/AccessControl/RuleEngineOwnableAccessControl.t.sol
+++ b/test/RuleEngineOwnable/AccessControl/RuleEngineOwnableAccessControl.t.sol
@@ -77,6 +77,14 @@ contract RuleEngineOwnableAccessControlTest is Test, HelperContractOwnable {
         assertEq(ruleEngineMock.rulesCount(), 0);
     }
 
+    function testOwnerCanSetMaxRules() public {
+        vm.expectEmit(false, false, false, true);
+        emit RulesManagementModuleInvariantStorage.SetMaxRules(12);
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.setMaxRules(12);
+        assertEq(ruleEngineMock.maxRules(), 12);
+    }
+
     function testOwnerCanBindToken() public {
         // Act
         vm.prank(OWNER_ADDRESS);
@@ -143,6 +151,12 @@ contract RuleEngineOwnableAccessControlTest is Test, HelperContractOwnable {
         ruleEngineMock.clearRules();
     }
 
+    function testNonOwnerCannotSetMaxRules() public {
+        vm.expectRevert(abi.encodeWithSelector(Ownable.OwnableUnauthorizedAccount.selector, ATTACKER));
+        vm.prank(ATTACKER);
+        ruleEngineMock.setMaxRules(12);
+    }
+
     function testNonOwnerCannotBindToken() public {
         // Act & Assert
         vm.expectRevert(abi.encodeWithSelector(Ownable.OwnableUnauthorizedAccount.selector, ATTACKER));
@@ -205,6 +219,15 @@ contract RuleEngineOwnableAccessControlTest is Test, HelperContractOwnable {
         ruleEngineMock.transferOwnership(ATTACKER);
     }
 
+    function testOwnerCannotTransferOwnershipToRuleAddress() public {
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.addRule(ruleConditionalTransferLight);
+
+        vm.expectRevert(RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges.selector);
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.transferOwnership(address(ruleConditionalTransferLight));
+    }
+
     /*//////////////////////////////////////////////////////////////
                         RENOUNCE OWNERSHIP
     //////////////////////////////////////////////////////////////*/
diff --git a/test/RuleEngineOwnable/ERC3643Compliance.t.sol b/test/RuleEngineOwnable/ERC3643Compliance.t.sol
index 9856d36..0545a49 100644
--- a/test/RuleEngineOwnable/ERC3643Compliance.t.sol
+++ b/test/RuleEngineOwnable/ERC3643Compliance.t.sol
@@ -155,6 +155,38 @@ contract RuleEngineOwnableERC3643Test is Test, HelperContractOwnable {
         ruleEngineMock.bindToken(address(0x1));
     }
 
+    function testTokenCanBindItself() public {
+        vm.prank(address(token1));
+        ruleEngineMock.bindToken(address(token1));
+
+        assertTrue(ruleEngineMock.isTokenBound(address(token1)));
+    }
+
+    function testBoundTokenCanUnbindItself() public {
+        vm.prank(address(token1));
+        ruleEngineMock.bindToken(address(token1));
+
+        vm.prank(address(token1));
+        ruleEngineMock.unbindToken(address(token1));
+
+        assertFalse(ruleEngineMock.isTokenBound(address(token1)));
+    }
+
+    function testTokenCannotBindAnotherToken() public {
+        vm.expectRevert();
+        vm.prank(address(token1));
+        ruleEngineMock.bindToken(address(token2));
+    }
+
+    function testTokenCannotUnbindAnotherToken() public {
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.bindToken(address(token2));
+
+        vm.expectRevert();
+        vm.prank(address(token1));
+        ruleEngineMock.unbindToken(address(token2));
+    }
+
     function testCannotCreatedIfNotBound() public {
         vm.expectRevert(ERC3643ComplianceModule.RuleEngine_ERC3643Compliance_UnauthorizedCaller.selector);
         ruleEngineMock.created(user1, 100);
diff --git a/test/RuleEngineOwnable/RuleEngineOwnableCoverage.t.sol b/test/RuleEngineOwnable/RuleEngineOwnableCoverage.t.sol
index 52ef58d..cf5d616 100644
--- a/test/RuleEngineOwnable/RuleEngineOwnableCoverage.t.sol
+++ b/test/RuleEngineOwnable/RuleEngineOwnableCoverage.t.sol
@@ -9,7 +9,11 @@ import {RuleEngineOwnableExposed} from "src/mocks/RuleEngineExposed.sol";
 import {RuleInvalidMock} from "src/mocks/RuleInvalidMock.sol";
 import {IAccessControl} from "@openzeppelin/contracts/access/IAccessControl.sol";
 import {ICompliance} from "src/mocks/ICompliance.sol";
+import {IERC173Subset} from "src/mocks/IERC173Subset.sol";
+import {IERC1404Subset} from "src/mocks/IERC1404Subset.sol";
 import {IERC7551ComplianceSubset} from "src/mocks/IERC7551ComplianceSubset.sol";
+import {ERC1404InterfaceId} from "src/modules/library/ERC1404InterfaceId.sol";
+import {OwnableInterfaceId} from "src/modules/library/OwnableInterfaceId.sol";
 
 /**
  * @title Coverage tests for RuleEngineOwnable (_msgData, ERC-165 rule check)
@@ -20,7 +24,6 @@ contract RuleEngineOwnableCoverageTest is Test, HelperContractOwnable {
     // Known interface IDs
     bytes4 constant RULE_ENGINE_ID = 0x20c49ce7;
     bytes4 constant ERC1404_EXTEND_ID = 0x78a8de7d;
-    bytes4 constant ERC173_ID = 0x7f5828d0;
     bytes4 constant ERC165_ID = 0x01ffc9a7;
     bytes4 constant INVALID_ID = 0xffffffff;
 
@@ -41,8 +44,14 @@ contract RuleEngineOwnableCoverageTest is Test, HelperContractOwnable {
         assertTrue(ruleEngineMock.supportsInterface(ERC1404_EXTEND_ID));
     }
 
+    function testSupportsERC1404Interface() public view {
+        assertTrue(ruleEngineMock.supportsInterface(ERC1404InterfaceId.IERC1404_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC1404Subset).interfaceId));
+    }
+
     function testSupportsERC173Interface() public view {
-        assertTrue(ruleEngineMock.supportsInterface(ERC173_ID));
+        assertTrue(ruleEngineMock.supportsInterface(OwnableInterfaceId.IERC173_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC173Subset).interfaceId));
     }
 
     function testSupportsERC3643ComplianceInterface() public view {
diff --git a/test/RuleEngineOwnable/RuleEngineOwnableDeployment.t.sol b/test/RuleEngineOwnable/RuleEngineOwnableDeployment.t.sol
index 939b19a..3ab94c6 100644
--- a/test/RuleEngineOwnable/RuleEngineOwnableDeployment.t.sol
+++ b/test/RuleEngineOwnable/RuleEngineOwnableDeployment.t.sol
@@ -9,7 +9,11 @@ import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
 import {ERC1404ExtendInterfaceId} from "CMTAT/library/ERC1404ExtendInterfaceId.sol";
 import {RuleEngineInterfaceId} from "CMTAT/library/RuleEngineInterfaceId.sol";
 import {ICompliance} from "src/mocks/ICompliance.sol";
+import {IERC173Subset} from "src/mocks/IERC173Subset.sol";
+import {IERC1404Subset} from "src/mocks/IERC1404Subset.sol";
 import {IERC7551ComplianceSubset} from "src/mocks/IERC7551ComplianceSubset.sol";
+import {ERC1404InterfaceId} from "src/modules/library/ERC1404InterfaceId.sol";
+import {OwnableInterfaceId} from "src/modules/library/OwnableInterfaceId.sol";
 
 /**
  * @title Deployment tests for RuleEngineOwnable
@@ -66,7 +70,10 @@ contract RuleEngineOwnableDeploymentTest is Test, HelperContractOwnable {
 
         // Act & Assert
         assertTrue(ruleEngineMock.supportsInterface(type(IERC165).interfaceId));
-        assertTrue(ruleEngineMock.supportsInterface(0x7f5828d0)); // ERC-173
+        assertTrue(ruleEngineMock.supportsInterface(ERC1404InterfaceId.IERC1404_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC1404Subset).interfaceId));
+        assertTrue(ruleEngineMock.supportsInterface(OwnableInterfaceId.IERC173_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC173Subset).interfaceId));
         assertTrue(ruleEngineMock.supportsInterface(RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID));
         assertTrue(ruleEngineMock.supportsInterface(ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID));
         assertTrue(ruleEngineMock.supportsInterface(type(ICompliance).interfaceId));
diff --git a/test/RuleEngineOwnable/RulesManagementModuleTest/RuleEngineOwnableOperation.t.sol b/test/RuleEngineOwnable/RulesManagementModuleTest/RuleEngineOwnableOperation.t.sol
index 6e4bf2f..530c5f6 100644
--- a/test/RuleEngineOwnable/RulesManagementModuleTest/RuleEngineOwnableOperation.t.sol
+++ b/test/RuleEngineOwnable/RulesManagementModuleTest/RuleEngineOwnableOperation.t.sol
@@ -5,8 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContractOwnable.sol";
 
-
-
 /**
  * @title Rules management operations tests for RuleEngineOwnable
  */
diff --git a/test/RuleEngineOwnable2Step/RuleEngineOwnable2Step.t.sol b/test/RuleEngineOwnable2Step/RuleEngineOwnable2Step.t.sol
index 2e096c2..6a5916f 100644
--- a/test/RuleEngineOwnable2Step/RuleEngineOwnable2Step.t.sol
+++ b/test/RuleEngineOwnable2Step/RuleEngineOwnable2Step.t.sol
@@ -8,7 +8,16 @@ import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
 import {ERC1404ExtendInterfaceId} from "CMTAT/library/ERC1404ExtendInterfaceId.sol";
 import {RuleEngineInterfaceId} from "CMTAT/library/RuleEngineInterfaceId.sol";
 import {ICompliance} from "src/mocks/ICompliance.sol";
+import {IERC173Subset} from "src/mocks/IERC173Subset.sol";
+import {IOwnable2StepSubset} from "src/mocks/IOwnable2StepSubset.sol";
+import {IERC1404Subset} from "src/mocks/IERC1404Subset.sol";
 import {IERC7551ComplianceSubset} from "src/mocks/IERC7551ComplianceSubset.sol";
+import {ERC1404InterfaceId} from "src/modules/library/ERC1404InterfaceId.sol";
+import {OwnableInterfaceId} from "src/modules/library/OwnableInterfaceId.sol";
+import {Ownable2StepInterfaceId} from "src/modules/library/Ownable2StepInterfaceId.sol";
+import {ERC3643ComplianceModule} from "src/modules/ERC3643ComplianceModule.sol";
+import {RulesManagementModuleInvariantStorage} from "src/modules/library/RulesManagementModuleInvariantStorage.sol";
+import {RuleEngineOwnable2StepExposed} from "src/mocks/RuleEngineExposed.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../HelperContractOwnable2Step.sol";
 
@@ -16,10 +25,13 @@ import "../HelperContractOwnable2Step.sol";
  * @title Deployment and ownership tests for RuleEngineOwnable2Step
  */
 contract RuleEngineOwnable2StepTest is Test, HelperContractOwnable2Step {
-    bytes4 constant ERC173_ID = 0x7f5828d0;
+    address internal constant TOKEN_1 = address(0x1111);
+    address internal constant TOKEN_2 = address(0x2222);
+    RuleEngineOwnable2StepExposed internal ruleEngineOwnable2StepExposed;
 
     function setUp() public {
         ruleEngineMock = new RuleEngineOwnable2Step(OWNER_ADDRESS, ZERO_ADDRESS, ZERO_ADDRESS);
+        ruleEngineOwnable2StepExposed = new RuleEngineOwnable2StepExposed(OWNER_ADDRESS, ZERO_ADDRESS, ZERO_ADDRESS);
         ruleConditionalTransferLight =
             new RuleConditionalTransferLight(CONDITIONAL_TRANSFER_OPERATOR_ADDRESS, ruleEngineMock);
     }
@@ -35,7 +47,7 @@ contract RuleEngineOwnable2StepTest is Test, HelperContractOwnable2Step {
 
     function testTrustedForwarderSetAtDeployment() public {
         MinimalForwarderMock forwarder = new MinimalForwarderMock();
-        forwarder.initialize(ERC2771ForwarderDomain);
+        forwarder.initialize(ERC2771_FORWARDER_DOMAIN);
 
         RuleEngineOwnable2Step ruleEngineWithForwarder =
             new RuleEngineOwnable2Step(OWNER_ADDRESS, address(forwarder), ZERO_ADDRESS);
@@ -44,7 +56,12 @@ contract RuleEngineOwnable2StepTest is Test, HelperContractOwnable2Step {
 
     function testSupportsOwnableAndComplianceInterfaces() public view {
         assertTrue(ruleEngineMock.supportsInterface(type(IERC165).interfaceId));
-        assertTrue(ruleEngineMock.supportsInterface(ERC173_ID));
+        assertTrue(ruleEngineMock.supportsInterface(ERC1404InterfaceId.IERC1404_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC1404Subset).interfaceId));
+        assertTrue(ruleEngineMock.supportsInterface(OwnableInterfaceId.IERC173_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IERC173Subset).interfaceId));
+        assertTrue(ruleEngineMock.supportsInterface(Ownable2StepInterfaceId.IOWNABLE2STEP_INTERFACE_ID));
+        assertTrue(ruleEngineMock.supportsInterface(type(IOwnable2StepSubset).interfaceId));
         assertTrue(ruleEngineMock.supportsInterface(RuleEngineInterfaceId.RULE_ENGINE_INTERFACE_ID));
         assertTrue(ruleEngineMock.supportsInterface(ERC1404ExtendInterfaceId.ERC1404EXTEND_INTERFACE_ID));
         assertTrue(ruleEngineMock.supportsInterface(type(ICompliance).interfaceId));
@@ -57,12 +74,30 @@ contract RuleEngineOwnable2StepTest is Test, HelperContractOwnable2Step {
         assertEq(ruleEngineMock.rulesCount(), 1);
     }
 
+    function testDefaultMaxRulesIsTen() public view {
+        assertEq(ruleEngineMock.maxRules(), 10);
+    }
+
+    function testOwnerCanSetMaxRules() public {
+        vm.expectEmit(false, false, false, true);
+        emit RulesManagementModuleInvariantStorage.SetMaxRules(12);
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.setMaxRules(12);
+        assertEq(ruleEngineMock.maxRules(), 12);
+    }
+
     function testNonOwnerCannotAddRule() public {
         vm.expectRevert(abi.encodeWithSelector(Ownable.OwnableUnauthorizedAccount.selector, ATTACKER));
         vm.prank(ATTACKER);
         ruleEngineMock.addRule(ruleConditionalTransferLight);
     }
 
+    function testNonOwnerCannotSetMaxRules() public {
+        vm.expectRevert(abi.encodeWithSelector(Ownable.OwnableUnauthorizedAccount.selector, ATTACKER));
+        vm.prank(ATTACKER);
+        ruleEngineMock.setMaxRules(12);
+    }
+
     function testTransferOwnershipSetsPendingOwner() public {
         vm.prank(OWNER_ADDRESS);
         ruleEngineMock.transferOwnership(NEW_OWNER_ADDRESS);
@@ -91,6 +126,18 @@ contract RuleEngineOwnable2StepTest is Test, HelperContractOwnable2Step {
         ruleEngineMock.acceptOwnership();
     }
 
+    function testOwnerCannotTransferOwnershipToRuleAddress() public {
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.addRule(ruleConditionalTransferLight);
+
+        vm.expectRevert(
+            RulesManagementModuleInvariantStorage.RuleEngine_RulesManagementModule_RuleAccountCannotReceivePrivileges
+                .selector
+        );
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.transferOwnership(address(ruleConditionalTransferLight));
+    }
+
     function testOwnerKeepsRightsUntilAcceptOwnership() public {
         vm.prank(OWNER_ADDRESS);
         ruleEngineMock.transferOwnership(NEW_OWNER_ADDRESS);
@@ -112,4 +159,43 @@ contract RuleEngineOwnable2StepTest is Test, HelperContractOwnable2Step {
         vm.prank(OWNER_ADDRESS);
         ruleEngineMock.clearRules();
     }
+
+    function testTokenCanBindItself() public {
+        vm.prank(TOKEN_1);
+        ruleEngineMock.bindToken(TOKEN_1);
+
+        assertTrue(ruleEngineMock.isTokenBound(TOKEN_1));
+    }
+
+    function testBoundTokenCanUnbindItself() public {
+        vm.prank(TOKEN_1);
+        ruleEngineMock.bindToken(TOKEN_1);
+
+        vm.prank(TOKEN_1);
+        ruleEngineMock.unbindToken(TOKEN_1);
+
+        assertFalse(ruleEngineMock.isTokenBound(TOKEN_1));
+    }
+
+    function testTokenCannotBindAnotherToken() public {
+        vm.expectRevert();
+        vm.prank(TOKEN_1);
+        ruleEngineMock.bindToken(TOKEN_2);
+    }
+
+    function testTokenCannotUnbindAnotherToken() public {
+        vm.prank(OWNER_ADDRESS);
+        ruleEngineMock.bindToken(TOKEN_2);
+
+        vm.expectRevert();
+        vm.prank(TOKEN_1);
+        ruleEngineMock.unbindToken(TOKEN_2);
+    }
+
+    function testMsgDataReturnsCalldata() public view {
+        bytes memory data = ruleEngineOwnable2StepExposed.exposedMsgData();
+        assertEq(data.length, 4);
+        // forge-lint: disable-next-line(unsafe-typecast)
+        assertEq(bytes4(data), ruleEngineOwnable2StepExposed.exposedMsgData.selector);
+    }
 }
diff --git a/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControl.t.sol b/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControl.t.sol
index ddde5ad..1e5ba9c 100644
--- a/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControl.t.sol
+++ b/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControl.t.sol
@@ -5,7 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../../HelperContract.sol";
 
-
 /**
  * @title Tests on the Access Control
  */
diff --git a/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControlOZ.t.sol b/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControlOZ.t.sol
index 314e912..771224e 100644
--- a/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControlOZ.t.sol
+++ b/test/RuleWhitelist/AccessControl/RuleWhitelistAccessControlOZ.t.sol
@@ -6,7 +6,6 @@ import {Test} from "forge-std/Test.sol";
 import "../../HelperContract.sol";
 import {AccessControl} from "@openzeppelin/contracts/access/AccessControl.sol";
 
-
 /**
  * @title Tests on the provided functions by OpenZeppelin
  */
diff --git a/test/RuleWhitelist/CMTATIntegrationBase.sol b/test/RuleWhitelist/CMTATIntegrationBase.sol
index fa02913..3ad50cb 100644
--- a/test/RuleWhitelist/CMTATIntegrationBase.sol
+++ b/test/RuleWhitelist/CMTATIntegrationBase.sol
@@ -6,7 +6,6 @@ import {CMTATStandalone} from "CMTAT/deployment/CMTATStandalone.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../HelperContract.sol";
 
-
 /**
  * @title Base integration test with the CMTAT (whitelist)
  */
diff --git a/test/RuleWhitelist/RuleWhitelistAdd.t.sol b/test/RuleWhitelist/RuleWhitelistAdd.t.sol
index 0c080b7..baebe68 100644
--- a/test/RuleWhitelist/RuleWhitelistAdd.t.sol
+++ b/test/RuleWhitelist/RuleWhitelistAdd.t.sol
@@ -5,7 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../HelperContract.sol";
 
-
 /**
  * @title Tests the functions to add addresses to the whitelist
  */
diff --git a/test/RuleWhitelist/RuleWhitelistRemove.t.sol b/test/RuleWhitelist/RuleWhitelistRemove.t.sol
index 228bbef..4ff9b2c 100644
--- a/test/RuleWhitelist/RuleWhitelistRemove.t.sol
+++ b/test/RuleWhitelist/RuleWhitelistRemove.t.sol
@@ -5,7 +5,6 @@ import {Test} from "forge-std/Test.sol";
 // forge-lint: disable-next-line(unaliased-plain-import)
 import "../HelperContract.sol";
 
-
 /**
  * @title Tests the functions to remove addresses from the whitelist
  */