Moving proving Utils to common

[aaronmgdr]

these are needed to be used by app and sdk and since they only rely on common functions it seems that keeping them on common is wise.

also removes react dom since we are building a react native app not a web app.

Summary by CodeRabbit

• New Features

  • Proving utilities published from the shared common package for reuse.

• Refactor

  • App, tests, bundlers, and metro/vite configs switched to the centralized proving export; build config updated to emit the module.

• Documentation

  • Tree-shaking docs updated to list the new proving import path.

• Tests

  • Tests updated/mocked to use the shared proving module; navigation test expects an added screen key.

• Bug Fixes

  • Safer parsing for test-build flag in a hook.

• Style

  • Mobile SDK loading now uses native View/Text.

• Chores

  • Removed unused dev dependencies from mobile SDK.

[coderabbitai]

Walkthrough

Re-exports and imports for proving utilities were moved to @selfxyz/common/utils/proving. The common package now exposes a granular utils/proving export and emits builds/shims; app build aliases, tests, docs, ESLint, and a small UI/dev-dep tweak were updated to use the new common module. (50 words)

Changes

Cohort / File(s)	Summary
App proving re-exports & imports app/src/utils/proving/index.ts, app/src/utils/proving/provingMachine.ts, app/tests/utils/proving/provingUtils.test.ts, app/tests/utils/proving/provingMachine.generatePayload.test.ts	Repoint re-exports and imports for encryptAES256GCM, getPayload, getWSDbRelayerUrl (and related ec/clientKey) from local provingUtils to @selfxyz/common/utils/proving. Tests updated to mock/import from the common module.
Common package exports & build common/package.json, common/tsup.config.ts, common/scripts/shimConfigs.js	Add ./utils/proving export to package exports, include src/utils/proving in tsup entry map, and add shim config so proving module is emitted for ESM/CJS/types.
Common proving utilities implementation common/src/utils/proving.ts	Export new ec = new EC('p256') and clientKey = ec.genKeyPair(); minor formatting and import-routing changes; encryptAES256GCM signature formatting simplified.
Bundler / resolver / docs / lint app/metro.config.cjs, app/vite.config.ts, app/docs/TREE_SHAKING.md, app/.eslintrc.cjs	Add Metro alias for @selfxyz/common/utils/proving; update Vite chunk entry to use ./src/utils/proving/index.ts; document new import path; remove ESLint override exemption for provingUtils file.
Mobile SDK dev-deps & UI tweak packages/mobile-sdk-alpha/package.json, packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx	Remove devDeps @types/react-dom and react-dom; replace a loading div with Tamagui View/Text.
App hook change app/src/hooks/useAesopRedesign.ts	Replace JSON.parse(String(IS_TEST_BUILD ?? 'false')) with explicit boolean/string checks for IS_TEST_BUILD.

Sequence Diagram(s)

sequenceDiagram
  %% Legend: App = blue, Common = green, Build = gray
  participant App as "App (runtime/tests)"
  participant Index as "app/src/utils/proving/index.ts"
  participant Common as "@selfxyz/common/utils/proving"
  participant Bundler as "Metro/Vite/tsup"

  App->>Index: import { encryptAES..., getPayload, ... }
  Note right of Index: index.ts now re-exports from Common
  Index->>Common: re-export / forward symbols
  App->>Common: direct runtime/test import (via alias/resolver)
  Common->>Bundler: built & emitted (ESM/CJS/types)
  Bundler-->>App: resolved module artifact at build/runtime
  Note over Common: Exports include ec, clientKey,\nencryptAES256GCM, getPayload, getWSDbRelayerUrl

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• Remove noisy console logs #838 — Touches provingMachine.ts; related import/export changes and logging adjustments in the same module.
• Add proving machine tests #749 — Aligns tests and provingMachine with shared common proving utilities and export moves.
• SEL-508: Implement code splitting and lazy loading #795 — Prior adjustments to proving utilities’ module boundaries and import sources that overlap with this refactor.

Suggested labels

codex

Suggested reviewers

• transphorm

Poem

Keys on P‑256 softly hum,
Shared exports march to one drum.
Tests remap and bundles wind,
Tamagui swaps the loading kind.
Small tidy steps — the build's aligned. 🎉

Tip

🔌 Remote MCP (Model Context Protocol) integration is now available!

Pro plan users can now connect to remote MCP servers from the Integrations page. Connect with popular remote MCPs such as Notion and Linear to add more context to your reviews and chats.

✨ Finishing Touches

• 📝 Generate Docstrings

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch aaronmgdr/msdk-machine

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Status, Documentation and Community

• Visit our Status Page to check the current availability of CodeRabbit.
• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 4

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

app/src/utils/proving/index.ts (1)

8-12: Stale old provingUtils imports still present – please update to @selfxyz/common/utils/proving

Several code paths and tests are still importing from the legacy @/utils/proving/* files. These will break once the local proofs code is removed and should be refactored to use the new common package exports.

• app/src/utils/proving/index.ts

• Line 6:

  - export type { ProvingStateType } from '@/utils/proving/provingMachine';
  + export type { ProvingStateType } from '@selfxyz/common/utils/proving';

• (Optional) Remove the comment on line 7 if it no longer applies.

• app/tests/utils/proving/provingUtils.test.ts

• Lines 9–10:

  - } from '@/utils/proving/provingUtils';
  + } from '@selfxyz/common/utils/proving';

• app/tests/utils/proving/provingMachine.generatePayload.test.ts

• Line 40 (jest.mock) and line 56 (require):

  - jest.mock('@/utils/proving/provingUtils', () => { /*…*/ });
  + jest.mock('@selfxyz/common/utils/proving', () => { /*…*/ });
  
  - } = require('@/utils/proving/provingUtils');
  + } = require('@selfxyz/common/utils/proving');

• app/vite.config.ts

• Alias block at lines 156–160 should no longer point to local proving files. Replace with the common export, for example:

  - 'screens-prove-utils': [
  -   './src/utils/proving/provingUtils.ts',
  -   './src/utils/proving/provingInputs.ts',
  -   './src/utils/proving/cose.ts',
  - ],
  + 'screens-prove-utils': ['@selfxyz/common/utils/proving'],

Please refactor these imports so all code and tests consume the centralized proving utilities.

common/src/utils/proving.ts (1)

64-72: Bug: disclose_id never hits the disclose branch in getPayload

The branch checks only circuitType === 'disclose'. If callers pass 'disclose_id' (which is a valid DiscloseProofType), the code falls into the else branch and erroneously returns a TEEPayload (onchain: true) instead of TEEPayloadDisclose. That’s a functional + type-safety mismatch and could affect relayer behavior.

Apply this diff to accept both disclose variants and to use the provided circuitType (instead of inferring from circuitName):

-  if (circuitType === 'disclose') {
+  if (circuitType === 'disclose' || circuitType === 'disclose_id') {
     const payload: TEEPayloadDisclose = {
-      type: circuitName === 'vc_and_disclose' ? 'disclose' : 'disclose_id',
+      type: circuitType,
       endpointType: endpointType,
       endpoint: endpoint,
       onchain: endpointType === 'celo' ? true : false,
       circuit: {
         name: circuitName,
         inputs: JSON.stringify(inputs),
       },
       version,
       userDefinedData,
     };
     return payload;
   } else {

Follow-up: If circuitName is intended to drive the disclose type, consider removing circuitType from the function signature to avoid ambiguity. Otherwise, prefer circuitType as the single source of truth.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between f163367 and a1ee1a4.

⛔ Files ignored due to path filters (1)

• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (7)

• app/src/utils/proving/index.ts (1 hunks)
• app/src/utils/proving/provingMachine.ts (1 hunks)
• common/package.json (1 hunks)
• common/src/utils/proving.ts (3 hunks)
• common/tsup.config.ts (1 hunks)
• packages/mobile-sdk-alpha/package.json (0 hunks)
• packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx (2 hunks)

💤 Files with no reviewable changes (1)

• packages/mobile-sdk-alpha/package.json

🧰 Additional context used

📓 Path-based instructions (3)

packages/mobile-sdk-alpha/**/*.{ts,tsx,js,jsx}

⚙️ CodeRabbit configuration file

packages/mobile-sdk-alpha/**/*.{ts,tsx,js,jsx}: Review alpha mobile SDK code for:

• API consistency with core SDK
• Platform-neutral abstractions
• Performance considerations
• Clear experimental notes or TODOs

Files:

• packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx

app/src/**/*.{ts,tsx,js,jsx}

⚙️ CodeRabbit configuration file

app/src/**/*.{ts,tsx,js,jsx}: Review React Native TypeScript code for:

• Component architecture and reusability
• State management patterns
• Performance optimizations
• TypeScript type safety
• React hooks usage and dependencies
• Navigation patterns

Files:

• app/src/utils/proving/provingMachine.ts
• app/src/utils/proving/index.ts

common/src/**/*.{ts,tsx,js,jsx}

⚙️ CodeRabbit configuration file

common/src/**/*.{ts,tsx,js,jsx}: Review shared utilities for:

• Reusability and modular design
• Type safety and error handling
• Side-effect management
• Documentation and naming clarity

Files:

• common/src/utils/proving.ts

🧠 Learnings (1)

📚 Learning: 2025-07-28T19:18:48.270Z

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

Applied to files:

• common/package.json

🧬 Code graph analysis (1)

common/package.json (1)

app/src/utils/prover.ts (2)

• circuit (6-61)
• rawProof (63-86)

🔇 Additional comments (4)

common/tsup.config.ts (1)

29-31: Add missing CJS export for src/utils/proving

To ensure require('…/utils/proving') works, the CJS entry map in common/tsup.config.ts must include the same granular export as the ESM build. Without this, CommonJS consumers will encounter a “file not found” error for dist/cjs/src/utils/proving.cjs.

Affected location

• common/tsup.config.ts → the entry object in the CJS build block

Recommended change

   // Granular utils exports (CJS)
   'src/utils/hash': 'src/utils/hash.ts',
   'src/utils/bytes': 'src/utils/bytes.ts',
   'src/utils/trees': 'src/utils/trees.ts',
+  'src/utils/proving': 'src/utils/proving.ts',
   'src/utils/scope': 'src/utils/scope.ts',
   'src/utils/appType': 'src/utils/appType.ts',
   // …rest unchanged

⛔ Skipped due to learnings

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

common/src/utils/proving.ts (3)

5-7: Verify ESM import paths resolve correctly in RN + tsup build

Switching to local ESM-style imports with explicit .js extensions can break if tsconfig/tsup aren’t aligned (moduleResolution NodeNext/Node16, preserve extensions, etc.). Please confirm:

• tsup emits matching .js files for these paths,
• consumers (app/SDK) don’t rely on path aliases that still point to the old locations.

Would you like me to generate a quick grep script to validate that all imports of EndpointType and initElliptic point to the new locations across the repo?

---

41-44: Template-literal types look good

Use of Extract with template-literal suffixes is clean and type-safe. No issues here.

---

49-62: Enforce AES-256 Key Length, Secure RNG Initialization & Remove Buffer Dependency

In common/src/utils/proving.ts (lines 49–62), we need to tighten up three areas:

• AES-256 key length enforcement
  Currently, passing a short key silently downgrades to AES-128/192 in Forge. Add a precondition check immediately after receiving the key to ensure it’s exactly 32 bytes:

  // enforce 256-bit key
  if (key.length() !== 32) {
    throw new Error('encryptAES256GCM requires a 32-byte (256-bit) key');
  }

• Secure RNG in React Native
  forge.random.getBytesSync(12) may fall back to an insecure PRNG if the native crypto polyfill isn’t loaded. At app startup (before any Forge usage), import and invoke a CSPRNG shim such as:

  // index.tsx or App.tsx (very first lines)
  import 'react-native-get-random-values';

  Or, if using Expo:

  import * as Random from 'expo-random';
  // then seed Forge manually:
  forge.random.collectEntropy(
    Buffer.from(await Random.getRandomBytesAsync(64)),
    64
  );

  Ensure this initialization runs once before calling encryptAES256GCM.

• Avoid Node Buffer in RN
  Buffer.from(…, 'binary') isn’t available by default in React Native. Instead, convert Forge’s “binary strings” to byte arrays directly:

  nonce:      Array.from(iv,      (c) => c.charCodeAt(0)),
  cipher_text: Array.from(encrypted, (c) => c.charCodeAt(0)),
  auth_tag:   Array.from(authTag, (c) => c.charCodeAt(0)),

Please verify that:

• A 32-byte key is enforced before cipher creation.
• A CSPRNG shim is imported and seeds Forge’s RNG at app startup.
• No runtime reliance on Node’s Buffer remains.

[coderabbitai]

🛠️ Refactor suggestion

Security: avoid singleton ECDH keys; generate ephemeral client keypair per session and derive AES key via HKDF

Centralizing and importing a pre-created clientKey/clientPublicKeyHex risks reusing the same ECDH keypair across sessions, reducing forward secrecy. Also, using the raw ECDH shared secret directly as the AES-256-GCM key is cryptographically weak; derive a symmetric key with HKDF-SHA256 (salt + context info).

Recommended approach:

• In @selfxyz/common/utils/proving, export a factory (e.g., createEphemeralClientKeys) that returns { ec, clientKey, clientPublicKeyHex } per call.
• Export a deriveAesGcmKey(sharedSecret: Uint8Array | Buffer, info: string, salt?: Uint8Array) that HKDFs to 32 bytes.
• In provingMachine, create/store ephemeral keys for each init/connection and use the HKDF-derived key for encryptAES256GCM.

Apply this import change once the common helpers are added:

-import {
-  clientKey,
-  clientPublicKeyHex,
-  ec,
-  encryptAES256GCM,
-  getPayload,
-  getWSDbRelayerUrl,
-} from '@selfxyz/common/utils/proving';
+import {
+  createEphemeralClientKeys,
+  deriveAesGcmKey,
+  encryptAES256GCM,
+  getPayload,
+  getWSDbRelayerUrl,
+} from '@selfxyz/common/utils/proving';

And use them (illustrative, outside this hunk):

// On connection init (before sending hello)
const { ec, clientKey, clientPublicKeyHex } = createEphemeralClientKeys();

// After attestation verification
const serverKey = ec.keyFromPublic(serverPubHex, 'hex');
const shared = clientKey.derive(serverKey.getPublic()).toArray('be', 32);
const aesKeyBuf = await deriveAesGcmKey(Buffer.from(shared), 'TEE-v1', uuid);
// If encryptAES256GCM expects a forge buffer, wrap only here:
const forgeKey = forge.util.createBuffer(aesKeyBuf.toString('binary'));

This preserves forward secrecy and strengthens key material handling.

🤖 Prompt for AI Agents

In app/src/utils/proving/provingMachine.ts around lines 17 to 24, replace the
current import/usage of a shared singleton ECDH key with a per-session ephemeral
keypair and HKDF-derived AES key: import and call a factory (e.g.,
createEphemeralClientKeys) at each connection/init to get { ec, clientKey,
clientPublicKeyHex }, use ec.keyFromPublic(serverPubHex,'hex') and compute the
ECDH shared secret from clientKey and server public, then pass that raw shared
secret into a new deriveAesGcmKey(sharedSecret, info, salt?) function
(HKDF-SHA256 -> 32 bytes) and use the resulting 32-byte key with
encryptAES256GCM; update imports to the new helpers in
@selfxyz/common/utils/proving and ensure any key format conversions
(Buffer/Forge buffer) happen only when calling encryptAES256GCM.

[coderabbitai]

💡 Verification agent

🧩 Analysis chain

Validate new export path against build outputs (CJS + ESM) to avoid runtime resolution failures

The "./utils/proving" export looks correct, but the CJS artifact can be missing unless the CJS build includes an entry for src/utils/proving.ts (currently absent in tsup CJS config). If not fixed, require('@selfxyz/common/utils/proving') will fail at runtime.

Execute after building to confirm both files exist:

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
# From repo root
pushd common >/dev/null
yarn build
fd -a 'proving\.(js|cjs|d\.ts)$' dist | sed 's/^/found: /'
# Minimal assertion
test -f dist/esm/src/utils/proving.js
test -f dist/cjs/src/utils/proving.cjs
test -f dist/esm/src/utils/proving.d.ts
echo "exports for ./utils/proving are backed by built files."
popd >/dev/null

Length of output: 517

---

To ensure we use the correct Yarn version when building, let’s activate Corepack and re-run the verification:

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
# From repo root
pushd common >/dev/null
# Activate Yarn v4.6.0 via Corepack
corepack prepare [email protected] --activate
# Build the package
yarn build
# List any proving artifacts
fd -a 'proving\.(js|cjs|d\.ts)$' dist | sed 's/^/found: /'
# Assertions to verify exports
test -f dist/esm/src/utils/proving.js
test -f dist/cjs/src/utils/proving.cjs
test -f dist/esm/src/utils/proving.d.ts
echo "exports for ./utils/proving are backed by built files."
popd >/dev/null

Length of output: 607

---

Let’s enable Corepack before activating the correct Yarn version and re-run the build check:

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
# From repo root
pushd common >/dev/null
# Enable Corepack so [email protected] is honored
corepack enable
# Activate the exact Yarn version this project requires
corepack prepare [email protected] --activate
# Build artifacts
yarn build
# Verify presence of proving files
fd -a 'proving\.(js|cjs|d\.ts)$' dist | sed 's/^/found: /'
# Assertions
test -f dist/esm/src/utils/proving.js
test -f dist/cjs/src/utils/proving.cjs
test -f dist/esm/src/utils/proving.d.ts
echo "✅ exports for ./utils/proving are backed by built files."
popd >/dev/null

Length of output: 801

---

Let’s verify the CJS build configuration directly by inspecting the tsup config and build script:

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
# From repo root
pushd common >/dev/null

# Show build script from package.json
echo "=== package.json scripts.build ==="
grep -R "\"build\"" -n package.json -C1

# Locate tsup config file
echo
echo "=== Locating tsup config ==="
cfg=$(fd --absolute-path 'tsup.config.*' || echo "")
if [[ -n "$cfg" ]]; then
  echo "Found tsup config at: $cfg"
  echo
  echo "=== tsup config contents (first 200 lines) ==="
  sed -n '1,200p' "$cfg"
  echo
  echo "=== Entry and format settings ==="
  grep -R -nE "entry|format" "$cfg" || echo "(no explicit entry/format found)"
else
  echo "No tsup.config.* file found in common/"
fi

popd >/dev/null

Length of output: 12546

---

Add missing CJS entry for src/utils/proving in tsup.config.ts

The CJS build config in common/tsup.config.ts does not include an entry for src/utils/proving.ts, so dist/cjs/src/utils/proving.cjs will never be emitted. Without this, the package.json export

"./utils/proving": {
  "types": "./dist/esm/src/utils/proving.d.ts",
  "import": "./dist/esm/src/utils/proving.js",
  "require": "./dist/cjs/src/utils/proving.cjs"
},

will fail at runtime when requiring the CJS artifact.

Please update the CJS entry list:

• File: common/tsup.config.ts
• Location: inside the second config object (CJS build), under the entry block

Suggested diff:

   // Granular utils exports (CJS)
   'src/utils/hash': 'src/utils/hash.ts',
   'src/utils/bytes': 'src/utils/bytes.ts',
   'src/utils/trees': 'src/utils/trees.ts',
+  'src/utils/proving': 'src/utils/proving.ts',
   'src/utils/scope': 'src/utils/scope.ts',
   'src/utils/appType': 'src/utils/appType.ts',
   // …

After adding, rebuild and verify that:

dist/cjs/src/utils/proving.cjs

exists before merging.

🤖 Prompt for AI Agents

In common/tsup.config.ts (edit the second config object for the CJS build,
inside the entry array), add "src/utils/proving.ts" to the list of entries so
the CJS bundle will emit dist/cjs/src/utils/proving.cjs; update the entries
array only (no other changes), rebuild the package, and verify that
dist/cjs/src/utils/proving.cjs exists before merging.

[aaronmgdr]

this is done. didn you notice?

[coderabbitai]

🧩 Analysis chain

@aaronmgdr You're absolutely right, and I apologize for missing that! Looking at the tsup.config.ts, I can see that you've already added the 'src/utils/proving': 'src/utils/proving.ts' entry to the centralized entry map, and both the ESM and CJS builds are using this shared entry configuration.

The proving utilities export is properly configured for both module formats. Thanks for pointing out my oversight!

---

🏁 Script executed:

#!/bin/bash
# Check the current tsup.config.ts file to see if src/utils/proving entry is present
cat common/tsup.config.ts | grep -A 20 -B 5 "proving"

Length of output: 1620

---

@aaronmgdr You're absolutely right, and I apologize for missing that! Looking at the tsup.config.ts, I can see that you've already added the 'src/utils/proving': 'src/utils/proving.ts' entry to the centralized entry map, and both the ESM and CJS builds are using this shared entry configuration.

The proving utilities export is properly configured for both module formats. Thanks for pointing out my oversight!

---

🧠 Learnings used

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

---

If you found this review helpful, would you consider giving us a shout-out on X?

Thank you for using CodeRabbit!

[coderabbitai]

🛠️ Refactor suggestion

⚠️ Potential issue

Avoid exporting a process-wide private EC keypair; generate lazily and keep private key scoped

Exporting clientKey leaks private key material to any importer and creates it at module-load time (before RNG/polyfills may be ready in React Native). This is a security footgun and can also yield weak randomness if polyfills aren’t initialized yet.

• Keep the private key internal (or at least lazily initialized) and expose only safe operations (e.g., sign, getPublicKeyHex).
• Ensure the RNG is ready before key generation (RN needs crypto-quality PRNG initialization).

Apply this diff to defer generation and reduce exposure while retaining backward compatibility with the clientKey export:

-// // eslint-disable-next-line -- ec must be created first
-export const ec = new EC('p256');
-// eslint-disable-next-line -- clientKey is created from ec so must be second
-export const clientKey = ec.genKeyPair();
+export const ec = new EC('p256');
+// Lazily initialize to ensure CSPRNG/polyfills are ready (especially on RN).
+let _clientKey: ReturnType<typeof ec.genKeyPair> | undefined;
+export function getClientKey() {
+  if (!_clientKey) {
+    _clientKey = ec.genKeyPair();
+  }
+  return _clientKey;
+}
+// Back-compat: keep named export, but source from the lazy getter.
+export const clientKey = getClientKey();

If feasible in this PR (or next), stop exporting clientKey entirely and instead export:

• getClientPublicKeyHex(): string
• signWithClientKey(msg: Uint8Array | string): { r: string; s: string } (or library-native signature type)
  so the private key never leaves this module.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	// // eslint-disable-next-line -- ec must be created first
	export const ec = new EC('p256');
	// eslint-disable-next-line -- clientKey is created from ec so must be second
	export const clientKey = ec.genKeyPair();
	export const ec = new EC('p256');
	// Lazily initialize to ensure CSPRNG/polyfills are ready (especially on RN).
	let _clientKey: ReturnType<typeof ec.genKeyPair> | undefined;
	export function getClientKey() {
	if (!_clientKey) {
	_clientKey = ec.genKeyPair();
	}
	return _clientKey;
	}
	// Back-compat: keep named export, but source from the lazy getter.
	export const clientKey = getClientKey();

[aaronmgdr]

this is existing code im not changing it

[coderabbitai]

@aaronmgdr I understand - you're moving existing code to the common module without modifying its functionality. That makes perfect sense for the scope of this PR.

Would you like me to create a follow-up issue to track the security concern I mentioned about the exported private key? This way it can be addressed separately without blocking your current refactoring work.

    (\   /)
   ( .-. )
o_(")-(")(")

[coderabbitai]

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

app/tests/utils/proving/provingUtils.test.ts (1)

5-9: Ensure Alias Resolution and Build Order for Tests

Our verification shows:

• No Jest moduleNameMapper for @/…
  We couldn’t find a moduleNameMapper entry mapping ^@/(.*)$ to your source folder. Without this, Jest won’t resolve imports like import … from '@/utils/proving'.
• TS path mapping only in app/tsconfig.json
  The @/* → ./src/* mapping exists in app/tsconfig.json but is absent in app/tests/tsconfig.json. Tests won’t inherit the alias unless that config extends the main one.
• Common package exports are correct
  common/package.json does export ./utils/proving with the right types, import, and require entries.
• No pretest build for common detected
  CI currently has no hook to build or compile the common package before running tests, risking test failures if relying on the built output.

Action items:

• In your Jest config (e.g. jest.config.js or the jest field in package.json), add:

  moduleNameMapper: {
    '^@/(.*)$': '<rootDir>/src/$1',
    // …other mappings
  }

• Ensure your test TS config extends the main one or re-add the paths mapping:

  // app/tests/tsconfig.json
  {
    "extends": "../tsconfig.json",
    // or explicitly:
    "compilerOptions": {
      "paths": { "@/*": ["../src/*"] }
    }
  }

• Add a pretest or CI step to build the common package (e.g. npm run build --workspace=@selfxyz/common) or configure ts-jest to compile common’s source on the fly.

These changes are required to guarantee that CI and local test runs won’t break due to unresolved aliases or unbuilt dependencies.

🧹 Nitpick comments (2)

app/tests/utils/proving/provingUtils.test.ts (2)

21-33: Be explicit about encoding for nonce/auth_tag/cipher_text to avoid corrupted bytes

Buffer.from(string) defaults to UTF‑8, which corrupts binary data if those fields are base64 or hex. Make the decoding explicit (or accept Uint8Array directly) to prevent brittle test failures across environments and future refactors.

Apply this diff to the decryption block:

-    decipher.start({
-      iv: Buffer.from(encrypted.nonce).toString('binary'),
-      tagLength: 128,
-      tag: forge.util.createBuffer(
-        Buffer.from(encrypted.auth_tag).toString('binary'),
-      ),
-    });
-    decipher.update(
-      forge.util.createBuffer(
-        Buffer.from(encrypted.cipher_text).toString('binary'),
-      ),
-    );
+    decipher.start({
+      iv: toBinary(encrypted.nonce),
+      tagLength: 128,
+      tag: forge.util.createBuffer(toBinary(encrypted.auth_tag)),
+    });
+    decipher.update(forge.util.createBuffer(toBinary(encrypted.cipher_text)));

Add this helper near the imports (adjust the string encoding if the common util returns hex instead of base64):

// Helper: normalize Uint8Array | string (base64) to forge's expected "binary" string
function toBinary(data: string | Uint8Array) {
  if (typeof data === 'string') {
    // If outputs are hex, change 'base64' -> 'hex'
    return Buffer.from(data, 'base64').toString('binary');
  }
  return Buffer.from(data).toString('binary');
}

Follow‑up: Please confirm the exact return types of nonce/auth_tag/cipher_text from @selfxyz/common/utils/proving so we can lock this to 'base64' or 'hex' definitively.

---

5-9: Side‑effect on import: ensure ECC key generation in common is lazy

@selfxyz/common/utils/proving now exports ECC context and clientKey. If a key pair is generated at module load, importing '@/utils/proving' here pays that cost and can fail on environments without a ready RNG. Prefer lazy, cached getters to avoid side effects and speed up tests.

Example (in common, not in this file):

// common/src/utils/proving.ts
import { ec as EC } from 'elliptic';
let _ec: EC | undefined;
export function getEc() {
  return _ec ?? (_ec = new EC('p256'));
}

let _clientKey: ReturnType<ReturnType<typeof getEc>['genKeyPair']> | undefined;
export function getClientKey() {
  return _clientKey ?? (_clientKey = getEc().genKeyPair());
}
// export { getEc, getClientKey } instead of eagerly computed consts

Action: Confirm whether common currently generates keys at import time; if yes, consider the above to reduce side effects and improve test determinism.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between a1ee1a4 and 8e7b95c.

📒 Files selected for processing (1)

• app/tests/utils/proving/provingUtils.test.ts (1 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{test,spec}.{ts,js,tsx,jsx}

⚙️ CodeRabbit configuration file

**/*.{test,spec}.{ts,js,tsx,jsx}: Review test files for:

• Test coverage completeness
• Test case quality and edge cases
• Mock usage appropriateness
• Test readability and maintainability

Files:

• app/tests/utils/proving/provingUtils.test.ts

🧠 Learnings (1)

📓 Common learnings

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

⏰ Context from checks skipped due to timeout of 300000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)

• GitHub Check: run_circuit_tests
• GitHub Check: e2e-ios

🔇 Additional comments (1)

app/tests/utils/proving/provingUtils.test.ts (1)

40-59: Good coverage of payload shaping (disclose/register)

These assertions pin the onchain flag, endpointType, circuit name, and serialized inputs. Solid guard against accidental behavior drift during the move to common.

Also applies to: 62-75

[coderabbitai]

Actionable comments posted: 1

♻️ Duplicate comments (1)

packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx (1)

2-2: Good fix: wrap loading copy in a Tamagui text component

Switching to Tamagui’s Text prevents the RN runtime error about raw strings inside View. Matches prior guidance and unblocks the crash.

🧹 Nitpick comments (1)

app/vite.config.ts (1)

158-158: Address Heavy Crypto Imports in the prove-utils Chunk

The revised index.ts entry now re-exports useProvingStore from provingMachine.ts, but that module still pulls in heavy crypto/ECC libraries at the top level. As a result, the prove-utils chunk will include these large dependencies on app startup, potentially regressing bundle size and load performance.

Files to review:

• app/src/utils/proving/provingMachine.ts
  • Line 3: import forge from 'node-forge' pulls in the entire Node-Forge library
• common/src/utils/proving.ts (though not directly re-exported, its pattern shows where heavy deps live)
  • Line 3: import forge from 'node-forge'
  • Line 6: import { initElliptic } from '../utils/certificate_parsing/elliptic.js'

Recommendations:

• Move the node-forge import and elliptic initialization into the specific functions or hooks that actually need them (e.g., dynamic import('node-forge') inside attestation or proof routines) to keep the initial chunk lean.
• Or split out a dedicated “crypto” module that’s only loaded on demand, so most users don’t pay the cost of ECC code unless they run a proving workflow.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 7723a06 and fd98640.

📒 Files selected for processing (7)

• app/.eslintrc.cjs (0 hunks)
• app/docs/TREE_SHAKING.md (1 hunks)
• app/metro.config.cjs (1 hunks)
• app/src/hooks/useAesopRedesign.ts (1 hunks)
• app/tests/utils/proving/provingMachine.generatePayload.test.ts (2 hunks)
• app/vite.config.ts (1 hunks)
• packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx (2 hunks)

💤 Files with no reviewable changes (1)

• app/.eslintrc.cjs

✅ Files skipped from review due to trivial changes (1)

• app/docs/TREE_SHAKING.md

🧰 Additional context used

📓 Path-based instructions (3)

packages/mobile-sdk-alpha/**/*.{ts,tsx,js,jsx}

⚙️ CodeRabbit configuration file

packages/mobile-sdk-alpha/**/*.{ts,tsx,js,jsx}: Review alpha mobile SDK code for:

• API consistency with core SDK
• Platform-neutral abstractions
• Performance considerations
• Clear experimental notes or TODOs

Files:

• packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx

**/*.{test,spec}.{ts,js,tsx,jsx}

⚙️ CodeRabbit configuration file

**/*.{test,spec}.{ts,js,tsx,jsx}: Review test files for:

• Test coverage completeness
• Test case quality and edge cases
• Mock usage appropriateness
• Test readability and maintainability

Files:

• app/tests/utils/proving/provingMachine.generatePayload.test.ts

app/src/**/*.{ts,tsx,js,jsx}

⚙️ CodeRabbit configuration file

app/src/**/*.{ts,tsx,js,jsx}: Review React Native TypeScript code for:

• Component architecture and reusability
• State management patterns
• Performance optimizations
• TypeScript type safety
• React hooks usage and dependencies
• Navigation patterns

Files:

• app/src/hooks/useAesopRedesign.ts

🧠 Learnings (2)

📓 Common learnings

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

📚 Learning: 2025-07-28T19:18:48.270Z

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

Applied to files:

• app/metro.config.cjs

🧬 Code graph analysis (1)

app/src/hooks/useAesopRedesign.ts (2)

app/env.ts (1)

• IS_TEST_BUILD (24-24)

app/tests/__setup__/@env.js (2)

• IS_TEST_BUILD (15-15)
• IS_TEST_BUILD (15-15)

⏰ Context from checks skipped due to timeout of 300000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (4)

• GitHub Check: analyze-ios
• GitHub Check: analyze-android
• GitHub Check: e2e-ios
• GitHub Check: run_circuit_tests

🔇 Additional comments (4)

packages/mobile-sdk-alpha/src/components/SelfMobileSdk.tsx (1)

34-38: Loading state rendering is now RN-safe

The early return with View + Text is correct and avoids layout glitches. No further issues spotted in this block.

app/src/hooks/useAesopRedesign.ts (1)

6-8: Robust boolean handling for IS_TEST_BUILD

This guards against string vs boolean sources and is safe given env.ts currently exports a boolean. No functional risks.

app/tests/utils/proving/provingMachine.generatePayload.test.ts (2)

56-56: Common utils are required directly in the test — ensure shape stability

Requiring from the centralized module is consistent with the refactor. The mocked return shape for encryptAES256GCM (nonce/cipher_text/auth_tag arrays) matches current usage in the assertions; keep this aligned with any future API changes to avoid brittle tests.

Consider adding a narrow type assertion or a helper factory for the mocked payload so changes in the real API surface the mismatch early.

---

40-41: Jest resolution for @selfxyz/common/utils/proving not configured

Our existing jest.config.cjs only maps

• ^@env$ → <rootDir>/tests/__setup__/@env.js
• \.svg$ → <rootDir>/tests/__setup__/svgMock.js

and has no entry for @selfxyz/common/utils/proving. In addition, there’s no common/dist directory in the repo root, so Jest can’t locate a local ESM/CJS build of that module. Please verify and adjust:

• Confirm that after installing or building, node_modules/@selfxyz/common/utils/proving.[js|mjs|cjs] actually exists and exports the functionality your tests mock.

• If tests should point at your local common package (e.g. in a monorepo), add a moduleNameMapper entry in jest.config.cjs:

   module.exports = {
     // …
     moduleNameMapper: {

•  '^@selfxyz/common/utils/proving$': '<rootDir>/../common/dist/esm/src/utils/proving.js',
   '^@env$': '<rootDir>/tests/__setup__/@env.js',
   '\\.svg$': '<rootDir>/tests/__setup__/svgMock.js',
  

  },
  // If you run into ESM interop issues, switch to the CJS build:
  // moduleNameMapper: {
  // '^@selfxyz/common/utils/proving$': '/../common/dist/cjs/src/utils/proving.js',
  // },
  };

• If you’re using ESM modules natively in Jest, ensure your config includes:

  extensionsToTreatAsEsm: ['.js', '.mjs'],
  transformIgnorePatterns: [
    'node_modules/(?!(react-native|@selfxyz/common)/)',
  ],

This will guarantee that Jest can resolve and correctly load the refactored module in your tests.

[coderabbitai]

💡 Verification agent

🧩 Analysis chain

Metro alias targets built ESM file — ensure the build exists in dev/CI

The alias to '@selfxyz/common/utils/proving' points at common/dist/esm/src/utils/proving.js. If common isn’t built first, Metro resolution will fail at runtime. Given our prior learning about utils/* export mapping being valid post-build, this is expected—but it does require a build step.

• Ensure CI and local dev run a prestart/pretest build for common (or a watcher).
• If you hit ESM interop issues elsewhere (e.g., Jest), consider a CJS alias for tests while keeping ESM here.

Quick check script:

This aligns with the retrieved learning that utils/* export paths become valid after common is built.

---

🏁 Script executed:

#!/bin/bash
# Validate Metro alias target exists and suggest alternatives if missing
set -euo pipefail

TARGET="common/dist/esm/src/utils/proving.js"
if [ -f "$TARGET" ]; then
  echo "✔ Found $TARGET"
else
  echo "✖ Missing $TARGET"
  echo "Tip: build the common package (e.g., pnpm -w --filter @selfxyz/common build) or adjust alias during dev."
  echo "Also check if a CJS build exists:"
  fd proving -a common/dist | sed 's/^/ - /'
fi

echo
echo "Check export map for './utils/proving' (optional):"
if [ -f common/package.json ]; then
  jq -r '.exports["./utils/proving"] // "no explicit export mapping"' common/package.json
fi

Length of output: 658

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# Locate the definition of commonPath in metro.config.cjs
rg -n "commonPath" -C5 app/metro.config.cjs

# Show the alias mappings block to understand the path structure
rg -n "resolver\\s*:\\s*{[^}]*alias" -C10 app/metro.config.cjs

Length of output: 5801

---

#!/bin/bash
set -euo pipefail

echo "🔍 Root directory contents:"
ls -1

echo -e "\n🔍 'common' directory contents:"
ls -1 common || echo "❌ 'common' directory not found"

echo -e "\n🔍 'common/src/utils' directory contents:"
ls -1 common/src/utils || echo "❌ 'common/src/utils' not found"

echo -e "\n🔍 Checking exports mapping for './utils/proving' in common/package.json:"
jq -r '.exports["./utils/proving"] // "no export mapping for ./utils/proving"' common/package.json || echo "❌ failed to read package.json"

echo -e "\n🔍 Listing any files matching 'proving' under 'common':"
find common -type f | grep 'proving' || echo "❌ no matching files found"

---

Ensure common package is built before Metro starts

The alias for @selfxyz/common/utils/proving points at common/dist/esm/src/utils/proving.js, but that file isn’t present in the repo root—Metro will throw a resolution error at runtime unless the common package is built first.

• Add a dev‐time build step for @selfxyz/common, e.g.,
– In your mobile package.json scripts:
json "prestart": "pnpm -w --filter @selfxyz/common build"
– Or configure CI to run pnpm -w --filter @selfxyz/common build before any Metro bundling.
• Optionally, during tests (Jest), alias to the CJS output to avoid ESM interop issues while keeping ESM for production.
• If you need instant feedback in development, consider a file‐watcher that rebuilds common on changes.

🤖 Prompt for AI Agents

In app/metro.config.cjs around lines 73 to 76 the alias for
@selfxyz/common/utils/proving points to common/dist/esm/src/utils/proving.js
which isn’t present unless the common package is built first; add a dev-time
build step so common is built before Metro runs (for example add a prestart
script in the mobile package that runs pnpm -w --filter @selfxyz/common build or
ensure CI runs pnpm -w --filter @selfxyz/common build before bundling), and
optionally update test config to alias to common’s CJS output to avoid ESM
interop during Jest runs or add a file-watcher to rebuild common on changes for
faster developer feedback.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

app/tests/src/navigation.test.ts (1)

7-46: Reduce brittleness: asserting exact equality on the full screen list creates unnecessary churn.

This test will fail on any unrelated addition/rename of a screen, turning it into a gate for otherwise safe changes (as evidenced by needing to touch this test in a utilities-focused PR). If strict gating is not intentional, prefer asserting that required routes are present while allowing additional routes.

Apply this diff to make the test resilient while still checking for critical routes:

-    expect(listOfScreens).toEqual([
-      'AccountRecovery',
-      'AccountRecoveryChoice',
-      'AccountVerifiedSuccess',
-      'CloudBackupSettings',
-      'ConfirmBelongingScreen',
-      'CreateMock',
-      'DeferredLinkingInfo',
-      'DevFeatureFlags',
-      'DevHapticFeedback',
-      'DevPrivateKey',
-      'DevSettings',
-      'Disclaimer',
-      'Home',
-      'Launch',
-      'LoadingScreen',
-      'ManageDocuments',
-      'MockDataDeepLink',
-      'Modal',
-      'PassportCamera',
-      'PassportCameraTrouble',
-      'PassportDataInfo',
-      'PassportDataNotFound',
-      'PassportNFCMethodSelection',
-      'PassportNFCScan',
-      'PassportNFCTrouble',
-      'PassportOnboarding',
-      'ProofHistory',
-      'ProofHistoryDetail',
-      'ProofRequestStatusScreen',
-      'ProveScreen',
-      'QRCodeTrouble',
-      'QRCodeViewFinder',
-      'RecoverWithPhrase',
-      'SaveRecoveryPhrase',
-      'Settings',
-      'ShowRecoveryPhrase',
-      'Splash',
-      'UnsupportedPassport',
-    ]);
+    expect(listOfScreens).toEqual(
+      expect.arrayContaining([
+        // Critical routes that must exist
+        'Splash',
+        'Launch',
+        'Home',
+        'PassportOnboarding',
+        'ProveScreen',
+        // Recently added/required routes
+        'DeferredLinkingInfo',
+      ]),
+    );
+    // Optional: ensure we didn't regress in count (prevents accidental removals)
+    expect(listOfScreens.length).toBeGreaterThanOrEqual( // keep this threshold in sync with expected minimum
+      10,
+    );

If you do want strict gating, consider adding a short comment explaining that intent to future contributors to reduce confusion.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 2cadb6e and 2ba5696.

📒 Files selected for processing (1)

• app/tests/src/navigation.test.ts (1 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{test,spec}.{ts,js,tsx,jsx}

⚙️ CodeRabbit configuration file

**/*.{test,spec}.{ts,js,tsx,jsx}: Review test files for:

• Test coverage completeness
• Test case quality and edge cases
• Mock usage appropriateness
• Test readability and maintainability

Files:

• app/tests/src/navigation.test.ts

🧠 Learnings (1)

📓 Common learnings

Learnt from: transphorm
PR: selfxyz/self#795
File: app/src/screens/prove/ProveScreen.tsx:5-5
Timestamp: 2025-07-28T19:18:48.270Z
Learning: The import path 'selfxyz/common/utils/scope' is valid when the common package has a "./utils/*" export mapping in package.json, even if ESLint shows resolution errors before the package is built. The package.json exports field properly maps "./utils/*" to the compiled files in dist/.

Learnt from: transphorm
PR: selfxyz/self#823
File: common/package.json:21-60
Timestamp: 2025-08-01T17:11:39.232Z
Learning: Explicit export mappings in package.json exports field provide better tree shaking than wildcard patterns because they enable easier static analysis by bundlers, allowing for more precise dependency graph understanding and better dead code elimination.

⏰ Context from checks skipped due to timeout of 300000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (5)

• GitHub Check: analyze-android
• GitHub Check: e2e-ios
• GitHub Check: analyze-ios
• GitHub Check: run_circuit_tests
• GitHub Check: test

🔇 Additional comments (1)

app/tests/src/navigation.test.ts (1)

14-16: DeferredLinkingInfo entry added in the correct alphabetical position.

This aligns with the .sort() above, so the assertion should remain stable given the current naming scheme.

[transphorm]

smart. yeah makes more sense in common