snaps
snaps copied to clipboard
MetaMask
Extend the functionality of MetaMask using Snaps
Bumps [@metamask/eslint-config-typescript](https://github.com/MetaMask/eslint-config) from 14.0.0 to 14.1.0. Release notes Sourced from @metamask/eslint-config-typescript's releases. 14.1.0 @metamask/eslint-config 14.1.0 Changed Loosen promise/catch-or-return and promise/param-names rules (#384) @metamask/eslint-config-jest 14.1.0 Changed Replace @typescript-eslint/unbound-method rule with jest/unbound-method...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [@metamask/eslint-config-jest](https://github.com/MetaMask/eslint-config) from 14.0.0 to 14.1.0. Release notes Sourced from @metamask/eslint-config-jest's releases. 14.1.0 @metamask/eslint-config 14.1.0 Changed Loosen promise/catch-or-return and promise/param-names rules (#384) @metamask/eslint-config-jest 14.1.0 Changed Replace @typescript-eslint/unbound-method rule with jest/unbound-method...
request strengthens security across multiple components of the MetaMask Snaps codebase by addressing potential **prototype pollution vulnerabilities** in recursive state assignment and object accumulation logic. these fixes prevent malicious user...
There appears to be a prototype-pollution source in the snaps codebase where user-controlled keys may be assigned directly into objects/state without filtering or sanitization. The vulnerable code paths are in...
Bumps [@metamask/controller-utils](https://github.com/MetaMask/core) from 11.14.1 to 11.15.0. Commits cfaf095 Release/650.0.0 (#7003) caa214e refactor(json-rpc-engine): Genericize JsonRpcServer middleware / engine (#6... 584a249 test(eth-json-rpc-middleware): Round out test suite (#6967) 029527f Release/649.0.0 (#6997) 1674646 fix:...
Bumps the npm_and_yarn group with 2 updates in the / directory: [playwright](https://github.com/microsoft/playwright) and [happy-dom](https://github.com/capricorn86/happy-dom). Bumps the npm_and_yarn group with 1 update in the /packages/snaps-sandbox directory: [happy-dom](https://github.com/capricorn86/happy-dom). Updates `playwright` from 1.49.1...
`@lavamoat/node` is not production-ready yet, just testing. > [!NOTE] > Switches from `lavamoat` to `@lavamoat/node` and refreshes the lockfile to reflect new/transitive dependencies and version bumps. > > - **Build/Tooling**:...
Bumps [@metamask/auto-changelog](https://github.com/MetaMask/auto-changelog) from 5.0.2 to 5.1.0. Release notes Sourced from @metamask/auto-changelog's releases. 5.1.0 Added Add --useChangelogEntry to auto-changelog update (#247) This will read the PR referenced in each commit message,...
This PR is a draft implementation for issue https://github.com/MetaMask/snaps/issues/3520
