feat: SES lockdown v0.18.8 (iOS JSC)

app/store/index.ts

@@ -157,6 +157,21 @@ const createStoreAndPersistor = async () => {
    * Initialize services after persist is completed
    */
   const onPersistComplete = () => {
+    /**
+     * EngineService.initalizeEngine(store) with SES/lockdown:
+     * Requires ethjs nested patches (lib->src)
+     * - ethjs/ethjs-query
+     * - ethjs/ethjs-contract
+     * Otherwise causing the following errors:
+     * - TypeError: Cannot assign to read only property 'constructor' of object '[object Object]'
+     * - Error: Requiring module "node_modules/ethjs/node_modules/ethjs-query/lib/index.js", which threw an exception: TypeError:
+     * -  V8: Cannot assign to read only property 'constructor' of object '[object Object]'
+     * -  JSC: Attempted to assign to readonly property
+     * - node_modules/babel-runtime/node_modules/regenerator-runtime/runtime.js
+     * - V8: TypeError: _$$_REQUIRE(...) is not a constructor
+     * - TypeError: undefined is not an object (evaluating 'TokenListController.tokenList')
+     * - V8: SES_UNHANDLED_REJECTION
+     */
     EngineService.initalizeEngine(store);
     Authentication.init(store);
     LockManagerService.init(store);

babel.config.js

@@ -1,5 +1,6 @@
 // eslint-disable-next-line import/no-commonjs
 module.exports = {
+  ignore: [/ses\.cjs/],
   presets: ['module:metro-react-native-babel-preset'],
   plugins: [
     'transform-inline-environment-variables',

index.js

@@ -1,7 +1,14 @@
+// Importing SES (0.18.7+) here then calling lockdown causes:
+// https://github.com/LavaMoat/docs/issues/24
+
+// Importing the SES (0.18.7) lockdown shim here then calling lockdown causes:
+// https://github.com/LavaMoat/docs/issues/27
+
+import './shim.js';
+
 // Needed to polyfill random number generation.
 import 'react-native-get-random-values';
 import '@walletconnect/react-native-compat';
-import './shim.js';
 
 import 'react-native-gesture-handler';
 import 'react-native-url-polyfill/auto';

patches/ethjs++ethjs-contract+0.2.2.patch

@@ -0,0 +1,13 @@
+diff --git a/node_modules/ethjs/node_modules/ethjs-contract/package.json b/node_modules/ethjs/node_modules/ethjs-contract/package.json
+index 8e58ff5..470d00b 100644
+--- a/node_modules/ethjs/node_modules/ethjs-contract/package.json
++++ b/node_modules/ethjs/node_modules/ethjs-contract/package.json
+@@ -197,7 +197,7 @@
+   "lint-staged": {
+     "lint:eslint": "*.js"
+   },
+-  "main": "lib/index.js",
++  "main": "src/index.js",
+   "name": "ethjs-contract",
+   "pre-commit": "build",
+   "repository": {

patches/ethjs++ethjs-query+0.3.7.patch

@@ -0,0 +1,13 @@
+diff --git a/node_modules/ethjs/node_modules/ethjs-query/package.json b/node_modules/ethjs/node_modules/ethjs-query/package.json
+index fb82d51..503159c 100644
+--- a/node_modules/ethjs/node_modules/ethjs-query/package.json
++++ b/node_modules/ethjs/node_modules/ethjs-query/package.json
+@@ -2,7 +2,7 @@
+   "name": "ethjs-query",
+   "version": "0.3.7",
+   "description": "A simple query layer for the Ethereum RPC.",
+-  "main": "lib/index.js",
++  "main": "src/index.js",
+   "files": [
+     "dist",
+     "internals",

patches/react-native+0.71.14.patch

@@ -1,3 +1,61 @@
+diff --git a/node_modules/react-native/Libraries/Core/InitializeCore.js b/node_modules/react-native/Libraries/Core/InitializeCore.js
+index 1379ffd..340f48d 100644
+--- a/node_modules/react-native/Libraries/Core/InitializeCore.js
++++ b/node_modules/react-native/Libraries/Core/InitializeCore.js
+@@ -24,26 +24,51 @@
+
+ 'use strict';
+
++const Platform = require('../Utilities/Platform');
++
++if (Platform.OS === 'ios' && !global?.HermesInternal) {
++  require('../../../../ses.cjs'); // [email protected]
++  /**
++   * Without consoleTaming: 'unsafe' causes:
++   * - Attempting to define property on object that is not extensible.
++   * Without errorTrapping 'none' causes:
++   * - TypeError: undefined is not a function (near '...globalThis.process.on...')
++   * Without unhandledRejectionTrapping 'none' causes:
++   * - TypeError: globalThis.process.on is not a function. (In 'globalThis.process.on('unhandledRejection', h.unhandledRejectionHandler)', 'globalThis.process.on' is undefined)
++   * overrideTaming 'severe' is ideal (default override?)
++   * Nb: global.process is only partially shimmed, which confuses SES
++   * Nb: All are Unhandled JS Exceptions, since we call lockdown before setUpErrorHandling
++  */
++  repairIntrinsics({ consoleTaming: 'unsafe', errorTrapping: 'none', unhandledRejectionTrapping: 'none', overrideTaming: 'severe' });
++  require('reflect-metadata'); // Vetted shim required to fix: https://github.com/LavaMoat/docs/issues/26
++  hardenIntrinsics();
++}
++
+ const start = Date.now();
+
+ require('./setUpGlobals');
++// require('./setUpDOM'); Introduced in RN v0.72, ensure included when upgrading patch
+ require('./setUpPerformance');
+ require('./setUpErrorHandling');
++
+ require('./polyfillPromise');
++
+ require('./setUpRegeneratorRuntime');
++
+ require('./setUpTimers');
+ require('./setUpXHR');
++
+ require('./setUpAlert');
+ require('./setUpNavigator');
+ require('./setUpBatchedBridge');
+ require('./setUpSegmentFetcher');
+ if (__DEV__) {
+   require('./checkNativeVersion');
+-  require('./setUpDeveloperTools');
++  require('./setUpDeveloperTools'); // console.log calls visible in Metro from here
+   require('../LogBox/LogBox').install();
+ }
+
+-require('../ReactNative/AppRegistry');
++require('../ReactNative/AppRegistry'); // reflect-metadata imported after here causes: https://github.com/LavaMoat/docs/issues/26
+
+ const GlobalPerformanceLogger = require('../Utilities/GlobalPerformanceLogger');
+ // We could just call GlobalPerformanceLogger.markPoint at the top of the file,
 diff --git a/node_modules/react-native/ReactAndroid/build.gradle b/node_modules/react-native/ReactAndroid/build.gradle
 index 155cb59..053550c 100644
 --- a/node_modules/react-native/ReactAndroid/build.gradle