Typing fixes for provider, ppom and other any usage

[MajorLift]

Explanation

Reduces repo-wide any count to 1 (excluding test files).

• Types provider variables using the Provider type from @metamask/network-controller.
  • The Provider type is now safe to use, with its recent alignment issues resolved as of Align types with @metamask/eth-json-rpc-provider eth-query#21.
  • See also Align NetworkController provider type w/ eth-query core#2028).
• Fixes JSON-RPC typing for provider requests.
  • Installs @metamask/utils as a dependency.
• Types PPOM variables with provisional skeleton type.
• Fixes for controller-messenger typing.
• Fixes for misc. any usage

References

• Closes [ppom-validator] Replace use of any with proper types (non-test files only) #144

Changelog

Changed

• Add @metamask/utils ^8.3.0 as a dependency. (#89)

Removed

• BREAKING: NetworkControllerStateChangeEvent is removed from the PPOMControllerEvents union type. (#89)

Fixed

• BREAKING: PPOMController class constructor option types are narrowed from any. (#89)
  • The constructor expects provider to be the Provider type from @metamask/network-controller (equivalent to SafeEventEmitterProvider from @metamask/eth-json-rpc-provider).
  • The constructor expects onPreferencesChange to be (callback: (preferencesState: { securityAlertsEnabled: boolean } & Record<string, Json>) => void) => void.
• BREAKING: The UsePPOM type replaces any with the PPOM type in its definition. (#89)
• BREAKING: When a PPOM class instance makes JSON-RPC requests to the provider, the params type is now widened from Record<string, unknown> to JsonRpcParams, and the response type is narrowed from any to JsonRpcSuccess<Json>. (#89)

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note
Network access	npm/agent-base@7.1.0	Module: http Location: Package overview
Network access	npm/agent-base@7.1.0	Module: https Location: Package overview
Shell access	npm/foreground-child@3.1.1	Module: child_process Location: Package overview
Shell access	npm/foreground-child@3.1.1	Module: child_process Location: Package overview
Network access	npm/@npmcli/agent@2.2.0	Module: tls Location: Package overview
Network access	npm/@npmcli/agent@2.2.0	Module: https-proxy-agent Location: Package overview
Network access	npm/@npmcli/agent@2.2.0	Module: http-proxy-agent Location: Package overview
Network access	npm/@npmcli/agent@2.2.0	Module: dns Location: Package overview
Network access	npm/@npmcli/agent@2.2.0	Module: net Location: Package overview
Network access	npm/socks-proxy-agent@8.0.2	Module: net Location: Package overview

View full report↗︎

Next steps

What is network access?

This module accesses the network.

Packages should remove all network access that is functionally unnecessary. Consumers should audit network access to ensure legitimate use.

What is shell access?

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Packages should avoid accessing the shell which can reduce portability, and make it easier for malicious shell access to be introduced.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/agent-base@7.1.0
• @SocketSecurity ignore npm/foreground-child@3.1.1
• @SocketSecurity ignore npm/@npmcli/agent@2.2.0
• @SocketSecurity ignore npm/socks-proxy-agent@8.0.2

[MajorLift]

There should be no breaking changes here. This is the list of existing package-level exports from the ppom-controller file.

Explicit enumeration of exports is safer, and also allows sharing exports internally, which comes in handy with e.g. AllowedEvents, controllerName for test files.

[jiexi]

LGTM, but again deferring to @jpuri as this is her domain

[MajorLift]

I used the JsonRpcResponse<Json> type here instead of unknown, even though this technically narrows the response type in the sendAsync callback compared to any (see line 1059).

This is because JsonRpcEngine is where the callback passed into sendAsync actually gets invoked, and that class consistently uses the JsonRpcResponse type for responses.

The error type in JsonRpcFailure is widened to unknown since that's the only type accepted by sendAsync. See https://github.com/MetaMask/ppom-validator/pull/89/files#r1470601394 for a discussion on this point.

Note: sendAsync is set to be deprecated in favor of request in a new EIP1193-compliant provider class. request will use JsonRpcResponse<Json>.

[mcmire]

Changes here make sense to me, although I will also defer to @jpuri for final approval.

[mcmire]

Would be nice to not reduce the test coverage here 😭 What caused this?

[MajorLift]

Brought it back up to 100%! 3ff8ebe 572cab2

[mcmire]

For context, these changes align with changes we've been making to controllers in the core repo. For instance, see SelectedNetworkController: https://github.com/MetaMask/core/blob/d3861d03df0ff3f4cf2b479f746b46e602065d76/packages/selected-network-controller/src/SelectedNetworkController.ts#L71-L89

[MajorLift]

Thanks for adding context here. To be clear, I didn't use the ControllerGetStateAction and ControllerStateChangeEvent types since those were introduced in base-controller v4, and this package is using v3.

[jpuri]

Thanks a lot @MajorLift for these improvements 🙏

[MajorLift]

Wrote temporary PPOM type that expresses a minimal interface. Added TODO so this would be eventually replaced with a full type.

[MajorLift]

Wrote temporary PreferencesState surrogate to avoid introducing @metamask/preferences-controller as a dependency. Added TODO so this would be eventually replaced with the full type.

[MajorLift]

Same as above.

[MajorLift]

Added Changelog with breaking changes highlighted.

[seaona]

I'm curious about the Changelog changes. Typically the changelog only includes user-facing changes and it is generated with the update-changelog script during the RC phase 🤔 for this reason I think we should not include these changes here?

[MajorLift]

I removed some entries that weren't user-facing. Thanks for pointing that out!

All of the remaining entries are major changes for package-level exports. See our documentation on reviewing release PRs for how these qualify as breaking changes.

As for why these are in the changelog file, the shared libraries team has been recording changelog entries for new PRs under the "Unreleased" heading, so that they're immediately available for reference when the next release is being created.

update-changelog auto-populates a list of unreleased commits to changelog, but these are only intended as starting points. Recording under "Unreleased" streamlines the process of retrieving the full changelog entries by making it unnecessary to visit each linked PR and check the changelog section of the PR description.

[MajorLift]

That said, I've realized our team won't be creating releases for this repo, and introducing a new practice like this will be confusing.

I've removed the additions to the changelog file: 3d957cd. The changelog entries can be found in the PR description!