feat: implement client side malicious network request detection

[AugmentedMode]

Description

This PR introduces three new updates to the MetaMask extension with the new phishing controller version 12.0.0.

1. Removal of PhishFort List References: MetaMask no longer has a contract with PhishFort and has also been introducing false positives to the blocklist, all references to the PhishFort blocklist have been removed as we no longer use their list in the new PhishingController version.

2. Support for Checking Malicious IPFS Domains: The phishing controller now includes support for detecting and blocking known malicious IPFS domains.

3. Management of a C2 Domain Blocklist: The PhishingController now supports a client-side blocklist specifically for Command & Control (C2) domains. The extension now checks network requests against this blocklist and redirects users the the phishing warning page.

Manual testing steps

1. Go to a website known to be on the C2 domain blocklist. For now we made our test website https://develop.d3bkcslj57l47p.amplifyapp.com/ have a malicious C2 Request that is on our blocklist.
2. Attempt to interact with the site.
3. Verify that on visiting the website you get redirected to the red Metamask phishing page.
4. Repeat with a site that is not on the blocklist to confirm normal operation.

Pre-merge author checklist

• I've followed MetaMask Contributor Docs and MetaMask Extension Coding Standards.
• I've completed the PR template to the best of my ability.
• I’ve included tests for the new client-side detection feature.
• I’ve documented my code using JSDoc format where applicable.
• I’ve applied the right labels on the PR.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g., pulled and built the branch, run the app, tested the code changes).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and/or screenshots.

[github-actions]

CLA Signature Action:

Thank you for your submission, we really appreciate it. We ask that you all read and sign our Contributor License Agreement before we can accept your contribution. You can sign the CLA by just by adding a comment to this pull request with this exact sentence:

I have read the CLA Document and I hereby sign the CLA

By commenting with the above message you are agreeing to the terms of the CLA. Your account will be recorded as agreeing to our CLA so you don't need to sign it again for future contributions to this repository.

1 out of 2 committers have signed the CLA.
✅ @AugmentedMode
❌ @jacob Lebowitz

GitHub can't find an account for Jacob Lebowitz.
You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.

[AugmentedMode]

I have read the CLA Document and I hereby sign the CLA

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@babel/[email protected]	None	0	4.02 kB	nicolo-ribaudo
npm/@babel/[email protected]	None	0	32.2 kB	nicolo-ribaudo
npm/@babel/[email protected]	None	0	5.96 kB	nicolo-ribaudo
npm/@mantine/[email protected]	None	0	10.3 MB	rtivital
npm/@mantine/[email protected]	environment, network	0	1.02 MB	rtivital
npm/@metamask/[email protected]	None	0	295 kB	danfinlay, gudahtt, kumavis, ...8 more
npm/[email protected]	None	0	2 MB	caniuse-lite
npm/[email protected]	filesystem	0	11.4 kB	lukeed
npm/[email protected]	environment	0	5.66 kB	alexeyraspopov

🚮 Removed packages: npm/@babel/[email protected]), npm/@babel/[email protected]), npm/@babel/[email protected]), npm/@mantine/[email protected]), npm/@mantine/[email protected]), npm/@metamask/[email protected]), npm/[email protected])

View full report↗︎

[MajorLift]

Note: This is caused by the major version difference in the base-controller versions used in phishing-controller (v6) vs. extension (v5).

The only reason we're not seeing the same error in metamask-controller.js is because the file hasn't been converted to TypeScript.

[AugmentedMode]

@metamaskbot update-policies

[metamaskbot]

Policies updated

[metamaskbot]

Builds ready [0b5e4ee]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (2443 ± 357 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	213	4073	2058	958	460
		domContentLoaded	1664	4013	2401	742	356
		load	1677	4071	2443	743	357
		domInteractive	13	139	53	36	17

Bundle size diffs [🚨 Warning! Bundle size has increased!]

• background: 3.71 KiB (0.11%)
• ui: 0 Bytes (0.00%)
• common: 0 Bytes (0.00%)

[codecov]

Codecov Report

Attention: Patch coverage is 9.09091% with 10 lines in your changes missing coverage. Please review.

Project coverage is 70.07%. Comparing base (b9173da) to head (cebf9f0).
Report is 3 commits behind head on develop.

Files with missing lines	Patch %	Lines
app/scripts/background.js	0.00%	9 Missing ⚠️
app/scripts/metamask-controller.js	50.00%	1 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##           develop   #25839      +/-   ##
===========================================
- Coverage    70.08%   70.07%   -0.01%     
===========================================
  Files         1414     1414              
  Lines        49330    49337       +7     
  Branches     13782    13785       +3     
===========================================
  Hits         34570    34570              
- Misses       14760    14767       +7     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[AugmentedMode]

I have read the CLA Document and I hereby sign the CLA

[sonarcloud]

Quality Gate passed

Issues
0 New issues
1 Accepted issue

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[metamaskbot]

Builds ready [cebf9f0]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (1660 ± 41 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	235	1811	1513	431	207
		domContentLoaded	1466	1804	1642	80	39
		load	1473	1813	1660	85	41
		domInteractive	14	67	30	14	7

Bundle size diffs [🚨 Warning! Bundle size has increased!]

• background: 3.55 KiB (0.10%)
• ui: 0 Bytes (0.00%)
• common: 0 Bytes (0.00%)

[Gudahtt]

Looks like the commit author info is wrong for the first few commits, resulting in the CLA bot error. That will be resolved when the PR is squashed though. I can override that check when this PR is ready to be merged.

[Gudahtt]

LGTM for the privacy reviews check, I have confirmed that the new API in the privacy snapshot is not accessed when basic functionalities (or the phishing detection setting) is disabled.