diff --git a/contract_manager/scripts/generate_evm_lazer_update_trusted_signer_proposal.ts b/contract_manager/scripts/generate_evm_lazer_update_trusted_signer_proposal.ts
new file mode 100644
index 0000000000..045741e71c
--- /dev/null
+++ b/contract_manager/scripts/generate_evm_lazer_update_trusted_signer_proposal.ts
@@ -0,0 +1,70 @@
+import yargs from "yargs";
+import { hideBin } from "yargs/helpers";
+import { DefaultStore } from "../src/node/utils/store";
+import { loadHotWallet } from "../src/node/utils/governance";
+
+const parser = yargs(hideBin(process.argv))
+  .usage("Usage: $0 --config <path/to/config.json>")
+  .options({
+    "ops-key-path": {
+      type: "string",
+      demandOption: true,
+      desc: "Path to the ops key file",
+    },
+    contract: {
+      type: "string",
+      demandOption: true,
+      desc: "Contract to update the trusted signer on. (e.g mumbai_0xff1a0f4744e8582DF1aE09D5611b887B6a12925C)",
+    },
+    "trusted-signer": {
+      type: "string",
+      demandOption: true,
+      desc: "Address of the trusted signer",
+    },
+    "expires-at": {
+      type: "number",
+      demandOption: true,
+      desc: "Expiration timestamp for the trusted signer",
+    },
+    vault: {
+      type: "string",
+      default: "mainnet-beta_FVQyHcooAtThJ83XFrNnv74BcinbRH3bRmfFamAHBfuj",
+      desc: "Vault ID",
+    },
+  });
+
+async function main() {
+  const argv = await parser.argv;
+
+  if (argv["expires-at"] < Date.now() / 1000) {
+    throw new Error("Expiration timestamp must be in the future");
+  }
+  if (argv["trusted-signer"] === "") {
+    throw new Error("Trusted signer address cannot be empty");
+  }
+  const vault = DefaultStore.vaults[argv.vault];
+  if (!vault) {
+    throw new Error(`Vault with ID '${argv.vault}' does not exist.`);
+  }
+
+  const contract = DefaultStore.lazer_contracts[argv.contract];
+  if (!contract) {
+    throw new Error(`Contract with ID '${argv.contract}' does not exist.`);
+  }
+  const updatePayloads: Buffer[] = [];
+  console.log(`Generating payload for contract ${contract.getId()}`);
+  const payload = await contract.generateUpdateTrustedSignerPayload(
+    argv["trusted-signer"],
+    argv["expires-at"],
+  );
+  updatePayloads.push(payload);
+
+  console.log("Using vault at for proposal", vault.getId());
+  const wallet = await loadHotWallet(argv["ops-key-path"]);
+  console.log("Using wallet ", wallet.publicKey.toBase58());
+  await vault.connect(wallet);
+  const proposal = await vault.proposeWormholeMessage(updatePayloads);
+  console.log("Proposal address", proposal.address.toBase58());
+}
+
+main();