immutable · fang377 · Jul 22, 2025 · Jul 22, 2025 · Jul 22, 2025 · Jul 24, 2025
@@ -7,6 +7,9 @@ import { checkIsWalletConnected, connectSite, requestPermissions } from './conne
 import { WrappedBrowserProvider, WalletAction, WalletProviderName } from '../types';
 import { CheckoutErrorType } from '../errors';
 import { createProvider } from '../provider';
+import { RemoteConfigFetcher } from '../config/remoteConfigFetcher';
+
+jest.mock('../config/remoteConfigFetcher');
 
 let windowSpy: any;
 
@@ -26,6 +29,13 @@ describe('connect', () => {
       addEventListener: jest.fn(),
       removeEventListener: jest.fn(),
     }));
+
+    // Mock RemoteConfigFetcher to prevent test failures
+    (RemoteConfigFetcher as unknown as jest.Mock).mockReturnValue({
+      getConfig: jest.fn().mockResolvedValue({
+        segmentPublishableKey: 'test-key',
+      }),
+    });
   });
 
   afterEach(() => {

@@ -22,9 +22,17 @@ export type AssessmentResult = {
   };
 };
 
+// New type for v2 request items
+type SanctionsCheckV2RequestItem = {
+  address?: string;
+  amount?: string;
+  token_addr?: string;
+};
+
 export const fetchRiskAssessment = async (
   addresses: string[],
   config: CheckoutConfiguration,
+  tokenData?: Array<{ address: string; tokenAddr?: string; amount?: string }>,
 ): Promise<AssessmentResult> => {
   const result = Object.fromEntries(
     addresses.map((address) => [address.toLowerCase(), { sanctioned: false }]),
@@ -41,11 +49,25 @@ export const fetchRiskAssessment = async (
   try {
     const riskLevels = riskConfig?.levels.map((l) => l.toLowerCase()) ?? [];
 
+    // Prepare v2 request payload
+    const requestPayload: SanctionsCheckV2RequestItem[] = addresses.map((address) => {
+      const item: SanctionsCheckV2RequestItem = { address };
+
+      // Add token and amount data if available
+      if (tokenData) {
+        const tokenInfo = tokenData.find((t) => t.address.toLowerCase() === address.toLowerCase());
+        if (tokenInfo) {
+          if (tokenInfo.tokenAddr) item.token_addr = tokenInfo.tokenAddr;
+          if (tokenInfo.amount) item.amount = tokenInfo.amount;
+        }
+      }
+
+      return item;
+    });
+
     const response = await axios.post<RiskAssessment[]>(
-      `${IMMUTABLE_API_BASE_URL[config.environment]}/v1/sanctions/check`,
-      {
-        addresses,
-      },
+      `${IMMUTABLE_API_BASE_URL[config.environment]}/v2/sanctions/check`,
+      requestPayload,
     );
 
     for (const assessment of response.data) {

@@ -226,12 +226,16 @@ export class Checkout {
   }
 
   /**
-   * Fetches the risk assessment for the given addresses.
+   * Fetches risk assessment for the given addresses.
    * @param {string[]} addresses - The addresses to assess.
+   * @param {Array<{address: string; tokenAddr?: string; amount?: string}>} [tokenData] - Optional token and amount data for each address.
    * @returns {Promise<AssessmentResult>} - A promise that resolves to the risk assessment result.
    */
-  public async getRiskAssessment(addresses: string[]): Promise<AssessmentResult> {
-    return await fetchRiskAssessment(addresses, this.config);
+  public async getRiskAssessment(
+    addresses: string[],
+    tokenData?: Array<{ address: string; tokenAddr?: string; amount?: string }>,
+  ): Promise<AssessmentResult> {
+    return await fetchRiskAssessment(addresses, this.config, tokenData);
   }
 
   /**

@@ -7,7 +7,8 @@ import {
 export const checkSanctionedAddresses = async (
   addresses: string[],
   config: CheckoutConfiguration,
+  tokenData?: Array<{ address: string; tokenAddr?: string; amount?: string }>,
 ): Promise<boolean> => {
-  const result = await fetchRiskAssessment(addresses, config);
+  const result = await fetchRiskAssessment(addresses, config, tokenData);
   return isAddressSanctioned(result, undefined);
 };
@@ -425,7 +425,15 @@ export function AddTokens({
   const sendRequestOnRampEvent = async () => {
     if (
       toAddress
-      && (await checkSanctionedAddresses([toAddress], checkout.config))
+      && (await checkSanctionedAddresses(
+        [toAddress],
+        checkout.config,
+        selectedToken?.address && selectedAmount ? [{
+          address: toAddress,
+          tokenAddr: selectedToken.address,
+          amount: selectedAmount,
+        }] : undefined,
+      ))
     ) {
       viewDispatch({
         payload: {
@@ -502,6 +510,18 @@ export function AddTokens({
       && (await checkSanctionedAddresses(
         [fromAddress, toAddress],
         checkout.config,
+        selectedToken?.address && selectedAmount ? [
+          {
+            address: fromAddress,
+            tokenAddr: selectedToken.address,
+            amount: selectedAmount,
+          },
+          {
+            address: toAddress,
+            tokenAddr: selectedToken.address,
+            amount: selectedAmount,
+          },
+        ] : undefined,
       ))
     ) {
       viewDispatch({

@@ -188,15 +188,29 @@ export function BridgeForm(props: BridgeFormProps) {
         addresses.push(to.walletAddress);
       }
 
-      const assessment = await fetchRiskAssessment(addresses, checkout.config);
+      // Prepare token data for v2 API if available
+      const tokenData = formToken && formAmount ? [
+        {
+          address: from.walletAddress,
+          tokenAddr: formToken.token.address,
+          amount: formAmount,
+        },
+        ...(to.walletAddress.toLowerCase() !== from.walletAddress.toLowerCase() ? [{
+          address: to.walletAddress,
+          tokenAddr: formToken.token.address,
+          amount: formAmount,
+        }] : []),
+      ] : undefined;
+
+      const assessment = await fetchRiskAssessment(addresses, checkout.config, tokenData);
       bridgeDispatch({
         payload: {
           type: BridgeActions.SET_RISK_ASSESSMENT,
           riskAssessment: assessment,
         },
       });
     })();
-  }, [checkout, from, to]);
+  }, [checkout, from, to, formToken, formAmount]);
 
   const canFetchEstimates = (silently: boolean): boolean => {
     if (Number.isNaN(parseFloat(formAmount))) return false;

@@ -231,7 +231,14 @@ export function OnRampMain({
     (async () => {
       const walletAddress = await (await provider.getSigner()).getAddress();
 
-      const assessment = await fetchRiskAssessment([walletAddress], checkout.config);
+      // Prepare token data for v2 API if available
+      const tokenData = tokenAddress && tokenAmount ? [{
+        address: walletAddress,
+        tokenAddr: tokenAddress,
+        amount: tokenAmount,
+      }] : undefined;
+
+      const assessment = await fetchRiskAssessment([walletAddress], checkout.config, tokenData);
 
       if (isAddressSanctioned(assessment)) {
         viewDispatch({

@@ -257,6 +257,8 @@ export function SaleContextProvider(props: {
         return;
       }
 
+      // For sale context, we don't have specific token/amount data at this point
+      // as it's determined during the sale flow, so we pass undefined for tokenData
       const assessment = await fetchRiskAssessment([address], checkout.config);
       setRiskAssessment(assessment);
     })();

@@ -205,7 +205,14 @@ export default function SwapWidget({
         return;
       }
 
-      const assessment = await fetchRiskAssessment([address], checkout.config);
+      // Prepare token data for v2 API if available
+      const tokenData = fromTokenAddress && amount ? [{
+        address,
+        tokenAddr: fromTokenAddress,
+        amount,
+      }] : undefined;
+
+      const assessment = await fetchRiskAssessment([address], checkout.config, tokenData);
       swapDispatch({
         payload: {
           type: SwapActions.SET_RISK_ASSESSMENT,