Fix/sdk

[Nesopie]

Summary by CodeRabbit

• New Features

  • Introduced dynamic verification configuration with on-chain contract lookups and storage interface.
  • Added new error handling for configuration mismatches.
  • Added support for extracting and formatting revealed attestation data.
  • New utility functions for data unpacking and hashing.
  • Introduced new ABIs for contract interactions.
  • Added a default configuration store implementation.
  • Introduced interface for configuration storage management.

• Refactor

  • Major overhaul of the verification flow to use dynamic configuration and contract-based validation.
  • Consolidated and streamlined error handling in verification.
  • Removed hardcoded contract addresses and legacy ABI files.
  • Updated exports to reflect refined API surface.

• Chores

  • Updated package build scripts and module entry points for improved compatibility.
  • Enhanced TypeScript and bundler configurations for modern module support.
  • Improved .gitignore and project references for better development workflow.
  • Adjusted JSON imports and bundler configurations in QR code package.

• Bug Fixes

  • Improved type safety and export structure in several modules.

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Walkthrough

This update introduces a major refactor of the verification logic within the core SDK, shifting from static, hardcoded contract interactions to a dynamic, configuration-driven approach. It adds new utility modules, type definitions, and error handling, while restructuring package exports and build configurations to support dual module formats and improved type safety. Several obsolete ABIs and constants are removed, and new contract interfaces are integrated.

Changes

Files / Groups	Change Summary
common/package.json sdk/core/package.json sdk/qrcode/package.json	Updated "types" field paths, added/modified exports for dual module support, restructured build scripts and dependencies.
sdk/core/index.ts sdk/core/src/index.ts	Updated imports/exports, removed getUserIdentifier, changed SelfApp to type-only export, added new types and config store export, adjusted import extensions.
sdk/core/src/SelfBackendVerifier.ts	Refactored verification logic to use dynamic config storage and on-chain contract lookups; updated constructor and method signatures; removed static setters; consolidated error handling.
sdk/core/src/errors.ts	Added new ConfigMismatch enum and ConfigMismatchError class for detailed config error reporting.
sdk/core/src/types/types.ts	Added type aliases for VerificationConfig, GenericDiscloseOutput, and AttestationId.
sdk/core/src/store/interface.ts	Introduced IConfigStorage interface for async config management.
sdk/core/src/store/DefaultConfigStore.ts	Added DefaultConfigStore class implementing IConfigStorage.
sdk/core/src/utils/constants.ts	Added constants for attestation data indices and revealed data field mappings.
sdk/core/src/utils/hash.ts	Added calculateUserIdentifierHash utility function.
sdk/core/src/utils/id.ts	Added formatRevealedDataPacked function and output type for parsing packed reveal data.
sdk/core/src/utils/proof.ts	Added utilities for extracting revealed data bytes from public signals.
sdk/core/src/utils/utils.ts	Replaced parsing utilities with unpackReveal and unpackForbiddenCountriesList functions.
sdk/core/src/abi/IdentityVerificationHubImpl.json sdk/core/src/abi/Registry.json sdk/core/src/abi/Verifier.json	Added new/partial ABIs for dynamic contract interaction.
sdk/core/src/abi/IdentityRegistryImplV1.ts sdk/core/src/abi/VerifyAll.ts sdk/core/src/constants/contractAddresses.ts	Removed obsolete contract ABIs and hardcoded contract address constants.
sdk/core/scripts/copyAbi.sh sdk/core/.gitignore	Minor changes: added trailing newlines and new ignore patterns.
sdk/core/tsconfig.json sdk/qrcode/tsconfig.json	Updated output directories, module targets, and added project references.
sdk/qrcode/components/SelfQRcode.tsx	Updated JSON imports to use explicit type annotations.
sdk/qrcode/tsup.config.ts	Added new build configuration for tsup bundler.

Sequence Diagram(s)

sequenceDiagram
    participant App
    participant SelfBackendVerifier
    participant ConfigStorage
    participant IdentityVerificationHub
    participant Registry
    participant Verifier

    App->>SelfBackendVerifier: verify(attestationId, proof, userContextData)
    SelfBackendVerifier->>ConfigStorage: getConfig(attestationId)
    SelfBackendVerifier->>IdentityVerificationHub: registry(attestationId)
    SelfBackendVerifier->>Registry: checkIdentityCommitmentRoot(root)
    SelfBackendVerifier->>IdentityVerificationHub: discloseVerifier(attestationId)
    SelfBackendVerifier->>Verifier: verifyProof(proof, pubSignals)
    SelfBackendVerifier-->>App: Verification result object

Loading

Possibly related PRs

• feat: add getConfigId function in SelfVerificationRoot #650: Adds getConfigId to the SelfVerificationRoot contract and modifies how configId is included in user context data, related to verification configuration management and user context handling.

Poem

A hop and a leap, new contracts to seek,
With hashes and configs, our logic’s unique!
No more old addresses, no static old ways,
Now rabbits fetch configs in dynamic arrays.
With types and new stores, our code’s feeling bright—
Let’s verify safely, from morning till night!
🐇✨

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Explain this complex logic.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai explain this code block.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and explain its main purpose.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 8

🔭 Outside diff range comments (1)

sdk/qrcode/tsup.config.ts (1)

1-16: Ensure JSON import assertions are supported

You’re importing JSON with assertions in your code, but tsup doesn’t enable JSON loaders by default. Builds will fail unless you configure loaders. For example, add:

 export const tsup: Options = {
+  loader: { '.json': 'json' },
+  sourcemap: true,
   splitting: true,
   clean: true,
   dts: true,
   format: ['cjs', 'esm'],
   skipNodeModulesBundle: true,
   entryPoints: ['index.ts', 'animations/**/*', 'components/**/*', 'utils/**/*'],
   watch: env === 'development',
   target: 'es2020',
   outDir: 'dist',
 };

🧹 Nitpick comments (11)

sdk/core/scripts/fix-imports.js (1)

16-19: Consider making the regex more robust.

The current regex works for basic cases but could be improved to handle edge cases more reliably.

Consider this more robust regex pattern:

-      const modifiedContent = content.replace(
-        /from ['"](\.\/[^'"]+)['"]/g,
-        'from "$1.js"'
-      );
+      const modifiedContent = content.replace(
+        /from\s+(['"])(\.\/[^'"]*(?<!\.js))\1/g,
+        'from $1$2.js$1'
+      );

This improvement:

• Handles whitespace between from and the quote
• Uses negative lookbehind to avoid double .js extensions
• Preserves the original quote style (single vs double)

sdk/core/src/types/types.ts (1)

12-14: Clarify the purpose of duplicate type aliases.

Both VerificationConfig and GenericDiscloseStruct are aliased to the same type SelfStructs.VerificationConfigV2Struct. This could cause confusion about their intended usage.

Consider either:

1. Using a single alias if they serve the same purpose
2. Adding comments to clarify their different use cases
3. Removing one if it's redundant

+// Configuration for identity verification
 export type VerificationConfig = SelfStructs.VerificationConfigV2Struct;

+// Generic structure for data disclosure (legacy alias?)
 export type GenericDiscloseStruct = SelfStructs.VerificationConfigV2Struct;

sdk/core/src/store/interface.ts (1)

3-23: Well-designed interface with minor documentation typo.

The interface design is clean and appropriate for configuration storage abstraction. The async methods and JSDoc documentation are well-structured.

Fix the typo in the documentation:

-   * @param id - An identifiier associated with the verification config
+   * @param id - An identifier associated with the verification config

-   * @param id - An identifiier associated with the verification config
+   * @param id - An identifier associated with the verification config

sdk/core/src/store/DefaultConfigStore.ts (1)

4-14: Limited implementation ignores ID parameter.

This implementation ignores the id parameter in both getConfig and setConfig, making it essentially a single-configuration store rather than a multi-configuration storage system as the interface suggests.

Consider documenting this limitation or implementing a proper multi-configuration store:

 export class DefaultConfigStore implements IConfigStorage {
-  constructor(private config: VerificationConfig) {}
+  private configs: Map<string, VerificationConfig> = new Map();
+
+  constructor(defaultConfig?: VerificationConfig) {
+    if (defaultConfig) {
+      this.configs.set('default', defaultConfig);
+    }
+  }

-  async getConfig(_id: string): Promise<VerificationConfig> {
-    return this.config;
+  async getConfig(id: string): Promise<VerificationConfig> {
+    const config = this.configs.get(id);
+    if (!config) {
+      throw new Error(`Configuration not found for id: ${id}`);
+    }
+    return config;
   }

-  async setConfig(_id: string, config: VerificationConfig): Promise<boolean> {
-    this.config = config;
+  async setConfig(id: string, config: VerificationConfig): Promise<boolean> {
+    this.configs.set(id, config);
     return true;
   }

sdk/core/src/utils/proof.ts (2)

4-13: Replace magic numbers with named constants for better maintainability.

The hardcoded values (93, 31, 94) should be extracted to named constants to improve code readability and maintainability.

+const REVEALED_DATA_CONSTANTS = {
+  ATTESTATION_1_TOTAL_BYTES: 93,
+  ATTESTATION_2_TOTAL_BYTES: 94,
+  BYTES_PER_CHUNK: 31,
+} as const;
+
 export function getRevealedDataPublicSignalsLength(attestationId: AttestationId): number {
   switch (attestationId) {
     case 1:
-      return 93 / 31;
+      return REVEALED_DATA_CONSTANTS.ATTESTATION_1_TOTAL_BYTES / REVEALED_DATA_CONSTANTS.BYTES_PER_CHUNK;
     case 2:
-      return Math.ceil(94 / 31);
+      return Math.ceil(REVEALED_DATA_CONSTANTS.ATTESTATION_2_TOTAL_BYTES / REVEALED_DATA_CONSTANTS.BYTES_PER_CHUNK);
     default:
       throw new Error(`Invalid attestation ID: ${attestationId}`);
   }
 }

---

34-42: Remove commented-out code.

If this code is not needed, it should be removed to keep the codebase clean. If it might be needed in the future, consider documenting the reason or creating a TODO comment.

-// export async function getUserIdentifier(
-//   publicSignals: PublicSignals,
-//   user_identifier_type: UserIdType = 'uuid'
-// ): Promise<string> {
-//   return castToUserIdentifier(
-//     BigInt(publicSignals[CIRCUIT_CONSTANTS.VC_AND_DISCLOSE_USER_IDENTIFIER_INDEX]),
-//     user_identifier_type
-//   );
-// }

sdk/core/src/errors.ts (1)

13-28: Robust error class implementation.

The ConfigMismatchError class properly extends Error with correct prototype chaining and supports aggregating multiple configuration issues into a single error. The message formatting is clear and informative.

Consider adding a toString() method for better logging and debugging:

+ toString(): string {
+   return `${this.name}: ${this.message}`;
+ }

sdk/core/src/utils/utils.ts (2)

1-22: Solid implementation with room for improvement.

The unpackReveal function correctly handles packed data decoding using BigInt operations. The logic properly supports both string and array inputs and different ID types.

Consider these improvements for better maintainability:

+ // Byte counts for different ID types: [field1, field2, field3, field4?]
  const bytesCount = id_type === 'passport' ? [31, 31, 31] : [31, 31, 31, 27];
  const bytesArray = packedArray.flatMap((element: string, index: number) => {
    const bytes = bytesCount[index] || 31; // Use 31 as default if index is out of range
+   // Convert string to BigInt for bit operations
    const elementBigInt = BigInt(element);
-   const byteMask = BigInt(255); // 0xFF
+   const BYTE_MASK = BigInt(0xFF); // Mask for extracting single bytes
    const bytesOfElement = [...Array(bytes)].map((_, byteIndex) => {
+     // Extract byte at position byteIndex using bit shifting
-     return (elementBigInt >> (BigInt(byteIndex) * BigInt(8))) & byteMask;
+     return (elementBigInt >> (BigInt(byteIndex) * BigInt(8))) & BYTE_MASK;
    });
    return bytesOfElement;
  });

---

24-34: Efficient country code extraction.

The function correctly uses unpackReveal and groups decoded characters into 3-character country codes with proper length validation.

Add input validation for better error handling:

export function unpackForbiddenCountriesList(forbiddenCountriesList_packed: string[]) {
+ if (!Array.isArray(forbiddenCountriesList_packed)) {
+   throw new Error('forbiddenCountriesList_packed must be an array');
+ }
  const trimmed = unpackReveal(forbiddenCountriesList_packed, 'id');

sdk/core/src/utils/constants.ts (1)

32-75: Comprehensive revealed data index mappings.

The revealedDataIndices provides detailed start/end index pairs for all revealed data fields with proper type construction using template literals. The different layouts for attestation IDs 1 and 2 are well-defined.

Consider adding JSDoc comments to document the different data layouts:

+ /**
+  * Index mappings for revealed data fields by attestation ID.
+  * Different attestation IDs have different data layouts and field positions.
+  */
export const revealedDataIndices: Record<AttestationId, Record<`${RevealedDataFields}Start` | `${RevealedDataFields}End`, number>> = {
+  /** Attestation ID 1: Passport-based layout */
    // ... existing fields
+  /** Attestation ID 2: ID card-based layout */  
    // ... existing fields

sdk/core/app/contracts/common.ts (1)

1-131: Consider removing file duplication.

This file is identical to sdk/core/src/typechain-types/common.ts. Consider having one location import from the other to avoid maintaining duplicate code.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between a9f6207 and dbc3255.

⛔ Files ignored due to path filters (1)

• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (41)

• common/package.json (1 hunks)
• sdk/core/app/contracts/IdentityVerificationHubImpl.ts (1 hunks)
• sdk/core/app/contracts/common.ts (1 hunks)
• sdk/core/app/contracts/factories/IdentityVerificationHubImpl__factory.ts (1 hunks)
• sdk/core/app/contracts/factories/index.ts (1 hunks)
• sdk/core/app/contracts/index.ts (1 hunks)
• sdk/core/index.ts (1 hunks)
• sdk/core/package.json (3 hunks)
• sdk/core/scripts/copyAbi.sh (1 hunks)
• sdk/core/scripts/fix-imports.js (1 hunks)
• sdk/core/src/SelfBackendVerifier.ts (1 hunks)
• sdk/core/src/abi/IdentityRegistryImplV1.ts (0 hunks)
• sdk/core/src/abi/IdentityVerificationHubImpl.json (1 hunks)
• sdk/core/src/abi/Registry.json (1 hunks)
• sdk/core/src/abi/Verifier.json (1 hunks)
• sdk/core/src/abi/VerifyAll.ts (0 hunks)
• sdk/core/src/constants/contractAddresses.ts (0 hunks)
• sdk/core/src/errors.ts (1 hunks)
• sdk/core/src/index.ts (1 hunks)
• sdk/core/src/store/DefaultConfigStore.ts (1 hunks)
• sdk/core/src/store/interface.ts (1 hunks)
• sdk/core/src/typechain-types/IdentityVerificationHubImpl.ts (1 hunks)
• sdk/core/src/typechain-types/Registry.ts (1 hunks)
• sdk/core/src/typechain-types/Verifier.ts (1 hunks)
• sdk/core/src/typechain-types/common.ts (1 hunks)
• sdk/core/src/typechain-types/factories/IdentityVerificationHubImpl__factory.ts (1 hunks)
• sdk/core/src/typechain-types/factories/Registry__factory.ts (1 hunks)
• sdk/core/src/typechain-types/factories/Verifier__factory.ts (1 hunks)
• sdk/core/src/typechain-types/factories/index.ts (1 hunks)
• sdk/core/src/typechain-types/index.ts (1 hunks)
• sdk/core/src/types/types.ts (1 hunks)
• sdk/core/src/utils/constants.ts (1 hunks)
• sdk/core/src/utils/hash.ts (1 hunks)
• sdk/core/src/utils/id.ts (1 hunks)
• sdk/core/src/utils/proof.ts (1 hunks)
• sdk/core/src/utils/utils.ts (1 hunks)
• sdk/core/tsconfig.json (2 hunks)
• sdk/qrcode/components/SelfQRcode.tsx (1 hunks)
• sdk/qrcode/package.json (2 hunks)
• sdk/qrcode/tsconfig.json (2 hunks)
• sdk/qrcode/tsup.config.ts (1 hunks)

💤 Files with no reviewable changes (3)

• sdk/core/src/constants/contractAddresses.ts
• sdk/core/src/abi/IdentityRegistryImplV1.ts
• sdk/core/src/abi/VerifyAll.ts

🧰 Additional context used

🪛 Biome (1.9.4)

sdk/core/src/typechain-types/factories/Registry__factory.ts

[error] 30-38: Avoid classes that contain only static members.

Prefer using simple functions instead of classes with only static members.

(lint/complexity/noStaticOnlyClass)

sdk/core/app/contracts/factories/IdentityVerificationHubImpl__factory.ts

[error] 821-836: Avoid classes that contain only static members.

Prefer using simple functions instead of classes with only static members.

(lint/complexity/noStaticOnlyClass)

sdk/core/src/typechain-types/factories/Verifier__factory.ts

[error] 45-53: Avoid classes that contain only static members.

Prefer using simple functions instead of classes with only static members.

(lint/complexity/noStaticOnlyClass)

sdk/core/src/typechain-types/Registry.ts

[error] 94-94: Don't use '{}' as a type.

Prefer explicitly define the object shape. '{}' means "any non-nullable value".

(lint/complexity/noBannedTypes)

sdk/core/src/typechain-types/factories/IdentityVerificationHubImpl__factory.ts

[error] 976-991: Avoid classes that contain only static members.

Prefer using simple functions instead of classes with only static members.

(lint/complexity/noStaticOnlyClass)

sdk/core/src/typechain-types/Verifier.ts

[error] 113-113: Don't use '{}' as a type.

Prefer explicitly define the object shape. '{}' means "any non-nullable value".

(lint/complexity/noBannedTypes)

sdk/core/app/contracts/IdentityVerificationHubImpl.ts

[error] 471-471: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 475-475: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 481-481: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 495-495: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 511-511: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 521-521: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 527-527: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 543-543: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 549-549: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 555-555: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 561-561: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 570-570: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 576-576: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 601-601: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 606-606: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 613-613: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 628-628: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 648-648: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 659-659: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 667-667: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 676-676: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 681-681: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 688-688: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 695-695: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 705-705: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 712-712: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

sdk/core/src/typechain-types/IdentityVerificationHubImpl.ts

[error] 364-364: An empty interface is equivalent to {}.

Safe fix: Use a type alias instead.

(lint/suspicious/noEmptyInterface)

---

[error] 530-530: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 538-538: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 548-548: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 576-576: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 596-596: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 606-606: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 612-612: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 628-628: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 638-638: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 648-648: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 654-654: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 663-663: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 669-669: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 681-681: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 694-694: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 703-703: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 714-714: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 739-739: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 764-764: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 775-775: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 783-783: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 800-800: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 809-809: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 820-820: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 827-827: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 837-837: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 844-844: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

---

[error] 854-854: void is confusing outside a return type or a type parameter.

Unsafe fix: Use undefined instead.

(lint/suspicious/noConfusingVoidType)

🪛 Gitleaks (8.26.0)

sdk/core/src/typechain-types/IdentityVerificationHubImpl.ts

866-866: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

⏰ Context from checks skipped due to timeout of 90000ms (1)

• GitHub Check: run_circuit_tests

🔇 Additional comments (39)

sdk/core/scripts/copyAbi.sh (1)

38-38: Trivial newline addition
The added newline at the end of the script has no impact on its functionality.

sdk/qrcode/tsconfig.json (1)

26-31: Verify referenced project’s composite settings

Ensure the referenced ../../common project’s tsconfig.json also has "composite": true to support project references. You can run:

#!/bin/bash
grep -R '"composite"' common/tsconfig.json || echo "❌ composite not set in common/tsconfig.json"

sdk/qrcode/components/SelfQRcode.tsx (1)

4-5: Confirm runtime support for JSON import assertions

The new imports:

import CHECK_ANIMATION from '../animations/check_animation.json' with { type: 'json' };
import X_ANIMATION from '../animations/x_animation.json' with { type: 'json' };

require bundler and runtime support for import assertions. Verify that your build (tsup/webpack) and Node runtime handle this syntax correctly.

sdk/core/src/index.ts (1)

1-1: Explicit .js extension for ESM compatibility

Updating the export to include the .js extension aligns with ESM resolution requirements. This change is correct.

sdk/core/tsconfig.json (2)

6-7: LGTM! ESM output configuration looks correct

The changes to use ./dist/esm for both declaration and output directories properly support the ES module build structure mentioned in the AI summary.

---

18-22: Good addition of project references

Adding the reference to the common package supports the new modular structure and shared typings mentioned in the PR summary.

sdk/core/app/contracts/factories/index.ts (1)

1-4: LGTM! Standard autogenerated factory export

The file follows proper conventions for autogenerated TypeScript contract factories with appropriate linting disables and clear export structure.

sdk/core/src/typechain-types/factories/index.ts (1)

4-6: LGTM! Proper ESM factory exports

The exports use .js extensions which is correct for ESM modules, and the three contract factories align with the refactored identity verification system.

sdk/core/src/utils/hash.ts (1)

3-9: Hash implementation looks correct, verify against smart contract expectations

The double-hash implementation (SHA-256 → RIPEMD-160) is correct and follows common blockchain patterns. The padding to 40 characters matches RIPEMD-160's 160-bit output.

Ensure this hash algorithm matches what the IdentityVerificationHubImpl contract expects for user identifier validation.

#!/bin/bash
# Description: Search for hash-related functions in smart contracts to verify algorithm compatibility
# Expected: Find references to SHA-256 and RIPEMD-160 or similar hash functions

echo "Searching for hash-related contract code..."
rg -A 5 -B 5 "sha256|ripemd|hash.*user.*identifier" --type solidity
rg -A 5 -B 5 "calculateUserIdentifier|userContextHash" 

sdk/core/app/contracts/index.ts (1)

4-6: LGTM! Well-structured contract exports

The export structure properly separates types from factories and provides both specific and namespace-based import options, following TypeScript best practices.

sdk/core/src/abi/Registry.json (1)

1-30: LGTM! Well-structured ABI artifact.

The ABI artifact follows standard Hardhat format and correctly defines the IIdentityRegistryV1 interface. The checkIdentityCommitmentRoot function signature is appropriate for its purpose, and the empty bytecode fields are correct for an interface.

sdk/core/scripts/fix-imports.js (1)

26-26: LGTM! Proper error handling.

The script correctly handles async operations and provides adequate error reporting for a utility script.

sdk/core/src/abi/Verifier.json (1)

1-36: LGTM! Standard ZK proof verification ABI.

The ABI correctly defines a verifyProof function with standard zero-knowledge proof parameters. The specific pubSignals array size of 21 elements appears to be tailored for the circuit requirements of this identity verification system.

sdk/core/src/typechain-types/index.ts (1)

1-10: LGTM! Well-structured typechain exports.

The index file correctly follows typechain conventions and provides both individual and namespaced exports for contract types and factories. The .js extensions are properly included for ES modules compatibility.

sdk/core/src/types/types.ts (2)

16-16: LGTM! Well-defined AttestationId type.

The AttestationId type as keyof typeof discloseIndices provides type safety for attestation identifiers and ensures they match the available disclosure indices.

---

3-3: Verify the import path for constants.

The import path 'src/utils/constants.js' appears to be absolute from the project root. Ensure this resolves correctly from the current file location.

#!/bin/bash
# Description: Verify the constants file exists and the import path is correct

# Check if the constants file exists at the expected location
fd -t f "constants.ts" --exec echo "Found constants file: {}"

# Check the relative path from types.ts to constants.ts
echo "Current file location: sdk/core/src/types/types.ts"
echo "Expected constants location based on import: sdk/core/src/utils/constants.ts"

# Verify the actual path relationship
find . -name "constants.ts" -path "*/sdk/core/src/utils/*" | head -1

sdk/core/index.ts (2)

1-10: LGTM! Clean import/export refactoring.

The changes properly introduce the new configuration storage abstractions while maintaining consistency with ES module requirements. The .js extension addition and type-only exports follow best practices.

---

20-23: Exports align well with the new architecture.

The new exports for AttestationId, IConfigStorage, and DefaultConfigStore properly expose the configuration storage abstraction to consumers of the SDK.

sdk/core/src/typechain-types/factories/Registry__factory.ts (1)

1-39: Autogenerated contract factory follows standard patterns.

This autogenerated file correctly implements the standard ethers.js contract factory pattern. The static analysis warning about classes with only static members can be safely ignored here - this is the established convention for TypeChain-generated contract factories and provides the expected interface for contract interaction.

sdk/core/src/store/DefaultConfigStore.ts (1)

16-18: Placeholder implementation needs completion.

The getActionId method returns an empty string, which appears to be a placeholder implementation. This could cause issues if the action ID is expected to be meaningful in the verification flow.

Consider implementing proper action ID generation or document that this is intentionally a no-op implementation.

sdk/core/src/typechain-types/factories/Verifier__factory.ts (1)

1-54: Autogenerated ZK proof verifier factory is correctly implemented.

This autogenerated factory correctly implements the standard pattern for ZK proof verification contracts. The ABI properly defines the verifyProof function with elliptic curve proof parameters and public signals. The static analysis warning about static-only classes can be safely ignored as this follows the established TypeChain convention.

sdk/core/app/contracts/factories/IdentityVerificationHubImpl__factory.ts (1)

1-836: Autogenerated contract factory looks properly structured.

This autogenerated TypeScript factory for the IdentityVerificationHubImpl contract follows standard typechain patterns and provides the necessary ABI and connection utilities for type-safe smart contract interaction.

Note: The static analysis warning about static-only classes can be safely ignored for autogenerated contract factories, as this pattern is standard in the ethers.js ecosystem.

sdk/core/src/typechain-types/factories/IdentityVerificationHubImpl__factory.ts (1)

1-991: Autogenerated factory is properly structured with ES module compatibility.

This typechain-generated factory correctly uses ES module imports and follows standard patterns for contract interaction. The ABI appears more comprehensive than the version in /app/contracts/, suggesting this may be a newer or more complete version.

sdk/core/package.json (3)

4-25: Excellent modernization of package configuration for dual module support.

The addition of ES module support with proper conditional exports ensures compatibility across different module systems. The configuration correctly handles both CommonJS and ES modules with appropriate type declarations for each.

---

30-30: Build system upgrade to tsup improves output flexibility.

Switching from tsc to tsup enables dual format output (CJS/ESM) with source maps and declaration files, which aligns well with the new module architecture.

---

53-68: Dependencies properly support the new typechain integration.

The addition of typechain and @typechain/ethers-v6 enables generation of the typed contract interfaces, while tsup supports the modernized build process.

sdk/core/src/utils/id.ts (2)

5-34: Well-structured data extraction and formatting function.

The function properly handles the complex task of extracting various identity fields from packed byte arrays. The string cleaning operations and type conversions are appropriate for processing attestation data.

---

36-48: Comprehensive type definition for disclosed data.

The GenericDiscloseOutput type properly captures all the relevant fields from the identity verification process with appropriate TypeScript types.

sdk/core/src/utils/proof.ts (1)

20-32: Core byte extraction logic is well-implemented.

The bit manipulation operations correctly extract bytes from the packed public signals using proper masking and shifting techniques.

sdk/qrcode/package.json (2)

11-22: Excellent dual module support implementation.

The new exports configuration properly supports both ESM and CommonJS environments, which aligns with modern Node.js best practices.

---

30-30: Verify tsup configuration exists.

The build script references tsup.config.ts which should exist to ensure consistent build behavior.

#!/bin/bash
# Description: Check if tsup configuration file exists
# Expected: tsup.config.ts should exist in the sdk/qrcode directory

fd -t f "tsup.config.ts" sdk/qrcode/

sdk/core/src/errors.ts (1)

1-11: Well-structured error type definitions.

The ConfigMismatch enum provides clear, typed error categorization that will improve debugging and error handling throughout the verification flow.

sdk/core/src/typechain-types/Registry.ts (1)

1-96: Well-structured autogenerated contract interface.

The TypeScript interface provides proper type safety for the Registry contract with ethers.js v6 patterns. The single checkIdentityCommitmentRoot method is correctly typed with appropriate BigNumberish input and boolean return types.

Note: The static analysis warning about {} type on line 94 is a false positive. In autogenerated typechain code, {} is the correct type for an empty filters object when the contract doesn't emit events.

sdk/core/src/utils/constants.ts (1)

1-30: Well-structured constant definitions with proper typing.

The discloseIndices object provides clear mappings for different attestation IDs with proper TypeScript typing using as const. The structure enables type-safe access to various data field indices.

The passportNoSmtRootIndex: 99 for attestation ID 2 seems unusually high compared to other indices. Please verify this is intentional:

#!/bin/bash
# Description: Search for references to passportNoSmtRootIndex to understand its usage
# Expected: Find usage patterns that explain why index 99 is used for attestation 2

rg -A 3 -B 3 "passportNoSmtRootIndex"

sdk/core/src/typechain-types/Verifier.ts (1)

1-114: LGTM! Standard autogenerated contract interface.

The Verifier contract interface is properly structured for zkSNARK proof verification with the expected verifyProof method signature.

sdk/core/app/contracts/IdentityVerificationHubImpl.ts (1)

1-886: LGTM! Comprehensive contract interface for the identity verification hub.

The autogenerated interface properly defines all contract methods, events, and proof structures needed for the identity verification system.

sdk/core/src/typechain-types/common.ts (1)

1-131: LGTM! Standard typechain common types.

The file provides essential type definitions for type-safe contract interactions using ethers.js.

sdk/core/src/typechain-types/IdentityVerificationHubImpl.ts (1)

1-1041: Skip autogenerated file
This TypeScript interface is fully autogenerated by TypeChain (Autogenerated file. Do not edit manually.). Manual review of generated definitions is unnecessary.

sdk/core/src/abi/IdentityVerificationHubImpl.json (1)

1-970: Skip autogenerated ABI artifact
This JSON ABI is generated by the Solidity build toolchain (hh-sol-artifact-1). No manual changes or in-depth review are required.

[coderabbitai]

⚠️ Potential issue

Critical: Identity verification hub address is set to zero address.

The IDENTITY_VERIFICATION_HUB_ADDRESS is hardcoded to 0x0000000000000000000000000000000000000000, which will cause all contract interactions to fail. This needs to be updated to the actual deployed contract address.

🤖 Prompt for AI Agents

In sdk/core/src/SelfBackendVerifier.ts at line 17, the constant
IDENTITY_VERIFICATION_HUB_ADDRESS is incorrectly set to the zero address, which
will cause contract interactions to fail. Replace this placeholder with the
actual deployed contract address for the identity verification hub to ensure
proper functionality.

[coderabbitai]

Actionable comments posted: 3

♻️ Duplicate comments (4)

sdk/core/src/SelfBackendVerifier.ts (4)

17-17: Critical: Identity verification hub address is still set to zero address.

This is the same issue identified in previous reviews. The IDENTITY_VERIFICATION_HUB_ADDRESS remains hardcoded to the zero address, which will cause all contract interactions to fail in production.

---

96-97: Remove duplicate forbidden countries list assignment.

The forbiddenCountriesList variable is assigned the same value twice, which is redundant.

-const forbiddenCountriesList = unpackForbiddenCountriesList(verificationConfig.forbiddenCountriesListPacked.map(String));
const forbiddenCountriesListVerificationConfig = unpackForbiddenCountriesList(verificationConfig.forbiddenCountriesListPacked.map(String));

---

99-100: Fix comparison logic for forbidden countries validation.

The current logic incorrectly compares if verification config countries are in the forbidden list, but it should verify that the user's nationality validation logic is correct.

---

146-146: Fix incorrect method name for verifier lookup.

The method discloseVerifier doesn't exist in the contract interface. Based on previous reviews, it should be vcAndDiscloseCircuitVerifier.

🧹 Nitpick comments (2)

sdk/core/src/SelfBackendVerifier.ts (2)

111-114: Simplify timestamp parsing logic.

The current timestamp parsing is overly complex and error-prone. Consider using a more direct approach.

-const circuitTimestampYy = [2, 0, publicSignals[discloseIndices[attestationId].currentDateIndex], publicSignals[discloseIndices[attestationId].currentDateIndex + 1]];
-const circuitTimestampMm = [publicSignals[discloseIndices[attestationId].currentDateIndex + 2], publicSignals[discloseIndices[attestationId].currentDateIndex + 3]];
-const circuitTimestampDd = [publicSignals[discloseIndices[attestationId].currentDateIndex + 4], publicSignals[discloseIndices[attestationId].currentDateIndex + 5]];
-const circuitTimestamp = new Date(Number(circuitTimestampYy.join('')), Number(circuitTimestampMm.join('')) - 1, Number(circuitTimestampDd.join('')));
+const dateIndex = discloseIndices[attestationId].currentDateIndex;
+const year = 2000 + Number(publicSignals[dateIndex] + publicSignals[dateIndex + 1]);
+const month = Number(publicSignals[dateIndex + 2] + publicSignals[dateIndex + 3]) - 1;
+const day = Number(publicSignals[dateIndex + 4] + publicSignals[dateIndex + 5]);
+const circuitTimestamp = new Date(year, month, day);

---

148-150: Improve error handling for verifier contract lookup.

The generic error message doesn't provide enough context for debugging. Consider preserving the original error information.

-}catch (error) {
-  throw new Error('Verifier contract not found');
-}
+} catch (error) {
+  throw new Error(`Verifier contract not found: ${error instanceof Error ? error.message : 'Unknown error'}`);
+}

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 601b35b and 9dcbc3c.

📒 Files selected for processing (5)

• sdk/core/index.ts (1 hunks)
• sdk/core/src/SelfBackendVerifier.ts (1 hunks)
• sdk/core/src/types/types.ts (1 hunks)
• sdk/core/src/utils/id.ts (1 hunks)
• sdk/core/src/utils/utils.ts (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (4)

• sdk/core/src/utils/utils.ts
• sdk/core/src/utils/id.ts
• sdk/core/index.ts
• sdk/core/src/types/types.ts

⏰ Context from checks skipped due to timeout of 90000ms (1)

• GitHub Check: run_circuit_tests

[coderabbitai]

Note

Generated docstrings for this pull request at #653