Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[DON'T MERGE] Improving Freighter developer docs #1513

Closed
wants to merge 77 commits into from
Closed

[DON'T MERGE] Improving Freighter developer docs #1513

wants to merge 77 commits into from

Conversation

piyalbasu
Copy link
Contributor

@piyalbasu piyalbasu commented Oct 8, 2024
edited
Loading

Adding some useful information about things we've discovered while developing for Soroban and third party services

aristidesstaffieri and others added 30 commits August 27, 2024 12:32
@aristidesstaffieri
adds fetchJson to handle non json fetch responses
4edcb81
@aristidesstaffieri
awaits json response
599e250
@aristidesstaffieri
encodes xdr for query param usage
b5496c9
@aristidesstaffieri
[FEATURE] malicious tx warning, sign-tx (#1449)
9b758db 
* adds response handling and warning for malicious case of tx scan

* tweaks malicious tx warning copy

* use internal hook loading and data vars

* adds warning variant to tx warning

* Added translations

* restore initial null value for tx scan data
@aristidesstaffieri
adds scan labels for all scan result types, tweaks styles
786cbb5
@aristidesstaffieri
Added translations
6e2ccdf
@aristidesstaffieri
adds unit tests for grant access views scan site labels
bf43b10
@aristidesstaffieri
adds sac contract check in transfer detail, formats transfers like re…
1fe440b 
…gular payments
@aristidesstaffieri
adds unit test for sac transfer history item
f22832c
@aristidesstaffieri
memoizes translation fn as dependency of history item effect
3c58b8f
@piyalbasu
Feature/blockaid asset UI warning (#1452)
8f2dd57 
* use Blockaid asset scanning instead of stellar.expert

* add new scam asset icon and icorporate throughout send/swap flow

* save webpack updates for a future PR

* rm unused dep

* fix translations

* add better copy for modals

* add translations
@aristidesstaffieri
removes configurable fee constraint on token transfers
e660533
@aristidesstaffieri
take into account min resource fee for toke payments
df27b1d
@aristidesstaffieri
split out simulation api to internal api, update tests to use correct…
af176f8 
… fees flow
@piyalbasu
qa fixes for blockaid asset check (#1460)
6aceb69
@piyalbasu
add Blockaid tests for account, manage assets, send and swap flows (#…
7f107b1 
…1454)
@aristidesstaffieri
adds tx scan during send payment flow tx details
97cce0e
@aristidesstaffieri
adds failed simulation state to tx scan label, updates tx scan respon…
7ebf035 
…se types, updates non json response error
@aristidesstaffieri
removes unused cast functions
bc6c91f
@piyalbasu
add Blockaid announcement modal (#1465)
2fa6312 
* add Blockaid announcement modal

* removing console.log

* add blockAnnounced data migration

* rm unused prop

* fix translations
@aristidesstaffieri
split tx scan for classic sends and swaps
782f5ab
@aristidesstaffieri
pulls tx construction out into helper
b376fe4
@piyalbasu
Bugfix/show non malicious blockaid info (#1469)
d53346f 
* show all warnings for non-benign tokens

* adjust line height

* remove fall back result type
@aristidesstaffieri
fixes transparent bg on asset warning
d38d80f
@piyalbasu
handle complete blockaid data fro indexer (#1474)
046567f 
* handle complete blockaid data fro indexer

* cast blockaid data when retrieving from sortedBalances
@piyalbasu
add better typing for standalone balances (#1475)
616d03d 
* add better typing for standalone balances

* finish balances typing and add tests
@piyalbasu
Merge branch 'master' into release/5.23.2
f3c4591
@piyalbasu
add blockaid scan for custom mainnet and use blockaid lib for types (#…
98b7097 
…1476)
@aristidesstaffieri
makes suspicious asset check stricter
3235067
@piyalbasu
use blockaid lib for blockaid scan tx result (#1480)
c14b687
piyalbasu and others added 18 commits October 3, 2024 11:43
@piyalbasu
adjust padding on buttons (#1504)
2128740
@aristidesstaffieri
adds new test token address after testnet reset
b3225d2
@aristidesstaffieri
comments blockaid announcement, tweaks e2e details in tests
b4afa73
@aristidesstaffieri
fixes loading state for token transfer details after transfer, fixes …
adc1f85 
…history item display for payments to C addres using lumens
@aristidesstaffieri
updates test for history item change
c06e75f
@aristidesstaffieri
fix stale state instead by manually dismissing loading when not scann…
4b9157c 
…ing tx after sends in details
@aristidesstaffieri
restore login and fund on first payment test
010b458
@aristidesstaffieri
make e2e tests run in sequence
41f3199
@aristidesstaffieri
restore slow timeout settings for payment tests
4f78900
@aristidesstaffieri
avoids rescanning classic transactions after tx is sent in details
0df7282
@aristidesstaffieri
add explicit prop to scan tx in tx details
ad93929
@piyalbasu
make sure to show sim errors in send flow; add tests (#1506)
3de389c 
* make sure to show sim errors in send flow; add tests

* rollback unnecessary change
@piyalbasu
Fix flakey tests (#1509)
6587274 
* Added translations

* fix flakey tests
@aristidesstaffieri
adds account creator base tests
2e6a2fd
@aristidesstaffieri
adds success flow test for account creator
2fa9477
@piyalbasu
Merge commit '9a1962ed25d34cea9f1e3d5cb64bf0e5804a08de' into release/…
45a9c40 
…5.23.2
@piyalbasu
add some tips for working with Soroban
c2ace4a
@piyalbasu
updating some copy
5299bcf
@piyalbasu piyalbasu changed the base branch from master to release/5.23.2 October 8, 2024 21:50
@piyalbasu piyalbasu changed the title [DON'T MERGE] Docs/soroban docs [DON'T MERGE] Improving Freighter developer docs Oct 8, 2024
Base automatically changed from release/5.23.3 to master October 10, 2024 16:33
@piyalbasu
Merge commit '5c629992177dd98cf385c645822488362bd50d2a' into docs/sor…
48c0545 
…oban-docs

# Conflicts:
#	@shared/api/package.json
#	@shared/api/types.ts
#	docs/sidebars.js
#	extension/src/popup/__testHelpers__/index.tsx
#	extension/src/popup/components/sendPayment/SendAmount/index.tsx
#	extension/src/popup/components/sendPayment/SendSettings/Settings/index.tsx
#	yarn.lock
@socket-security Socket Security
Copy link

Report too large to display inline

View full report↗︎

@socket-security Socket Security
Copy link

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert Package NoteSourceCI
Deprecated npm/[email protected]
  • Reason: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
 ⚠︎

View full report↗︎

Next steps

What is a deprecated package?

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Research the state of the package and determine if there are non-deprecated versions that can be used, or if it should be replaced with a new, supported solution.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@piyalbasu piyalbasu mentioned this pull request Oct 22, 2024
Merged
@piyalbasu
Copy link
Contributor Author

Closing in favor of #1562

@piyalbasu piyalbasu closed this Oct 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aristidesstaffieri aristidesstaffieri aristidesstaffieri approved these changes

Assignees
No one assigned
Labels
dont merge
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@piyalbasu @aristidesstaffieri