LeoTM

icon indicating a website link stackexchange.com/users/1639128/leo

icon company @ConsenSys @MetaMask @LavaMoat icon location London, UK icon location StackOverflow 12 million reached (0.9% 19) ex-@MoonPay. Approached by: @Google @Facebook @Amzn Citadel. Team @ReactWG (RN Arch). React Native Core Contributor

Results 76 issues of LeoTM

Minimise IDE extensions

`.vscode/extensions.json` Lower supply chain risk (VSCodium abuse via malicious extensions)

security
ide

Hermes V1

i.e. Static Hermes https://reactnative.dev/blog/2025/10/08/react-native-0.82#experimental-hermes-v1 Follow-up - https://github.com/endojs/endo/issues/2761 - integrate into Endo Hardened JS CI updstream - deprecate hermes-engine-cli v0.12.0 - update docs upstream https://github.com/endojs/endo/blob/master/docs/lockdown.md?plain=1#L691-L714

react native
js
new arch
hermes
:test_tube:

@lavamoat/react-native-lockdown

Refs - https://metamask.io/en-GB/news/metamask-security-report-june-2025 - https://github.com/endojs/endo/issues/1891 - https://github.com/endojs/endo/issues/2761 - https://github.com/endojs/endo/blob/master/packages/ses/NEWS.md#v1130-2025-06-02 - https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md - https://github.com/LavaMoat/LavaMoat/pull/1438 - https://github.com/MetaMask/metamask-mobile/pull/16341 - https://github.com/HathorNetwork/hathor-wallet-mobile/pull/741

react native
:metro:
run time
security
p: Agoric
p: LavaMoat

@lavamoat/allow-scripts bin scripts

https://lavamoat.github.io/guides/allow-scripts/#mitigating-bin-script-confusion

devDependencies
:test_tube:
security
p: LavaMoat

can-i-ignore-scripts

https://dev.to/naugtur/get-safe-and-remain-productive-with-can-i-ignore-scripts-2ddc

devDependencies
security
p: LavaMoat

Migrate Prettier to ESLint Stylistic

unify: lint + style - [eslint.style](https://eslint.style) - [eslint-stylistic/eslint-stylistic](https://github.com/eslint-stylistic/eslint-stylistic) 96 ESLint rules, max control 1 engine/pipeline

devDependencies
ci
formatting
build time