Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Populate subject metadata #2069

Merged
merged 7 commits into from
Jan 5, 2024
Merged

Populate subject metadata #2069

merged 7 commits into from
Jan 5, 2024

Conversation

FrederikBolding
Copy link
Member

@FrederikBolding FrederikBolding commented Jan 5, 2024
edited
Loading

Populate subject metadata in the SnapController, allowing us to reduce code duplication in clients of the following snippet: https://github.com/MetaMask/metamask-extension/blob/develop/app/scripts/metamask-controller.js#L2367-L2373

This change is also required for preinstalled snaps to work.

@socket-security Socket Security
Copy link

Updated dependencies detected. Learn more about Socket for GitHub ↗︎

Packages Version New capabilities Transitives Size Publisher
@metamask/permission-controller 7.0.0...7.1.0 None +0/-0 418 kB

@socket-security Socket Security
Copy link

socket-security bot commented Jan 5, 2024
edited
Loading

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: @metamask/[email protected]

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore [email protected] bar@* or ignore all packages with @SocketSecurity ignore-all

@FrederikBolding FrederikBolding force-pushed the fb/populate-subject-metadata branch from a9a66a4 to cbefc8a Compare January 5, 2024 14:49
@FrederikBolding FrederikBolding marked this pull request as ready for review January 5, 2024 14:49
@FrederikBolding FrederikBolding requested a review from a team as a code owner January 5, 2024 14:49
@FrederikBolding
Copy link
Member Author

@SocketSecurity ignore @metamask/[email protected]

This package has been published, I promise Socket.

@codecov Codecov
Copy link

codecov bot commented Jan 5, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (7a0d60d) 96.28% compared to head (397ccbb) 96.28%.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #2069   +/-   ##
=======================================
  Coverage   96.28%   96.28%           
=======================================
  Files         270      270           
  Lines        6300     6303    +3     
  Branches     1017     1018    +1     
=======================================
+ Hits         6066     6069    +3     
  Misses        234      234

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

hmalik88
hmalik88 reviewed Jan 5, 2024
View reviewed changes
packages/snaps-controllers/src/snaps/SnapController.ts
@@ -2345,12 +2347,23 @@ export class SnapController extends BaseController<
}
}

const stringifiedIcon = svgIcon?.toString();

// TODO: Consider removing this as it is unused now
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why not do it now?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm wasn't sure if there is another use-case for the :snapAdded event. I was gonna post in Slack to have a short discussion on it and go from there

@FrederikBolding FrederikBolding merged commit 172ec8b into main Jan 5, 2024
141 checks passed
@FrederikBolding FrederikBolding deleted the fb/populate-subject-metadata branch January 5, 2024 16:45
@FrederikBolding FrederikBolding mentioned this pull request Jan 5, 2024
Merged
FrederikBolding added a commit that referenced this pull request Jan 8, 2024
@FrederikBolding
BREAKING: Remove :snapAdded event (#2073)
e4cca8d 
Following #2069 we can now remove the `snapAdded` event as it doesn't
have a use-case anymore.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hmalik88 hmalik88 hmalik88 left review comments

@david0xd david0xd david0xd approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@FrederikBolding @david0xd @hmalik88