Skip to content

Sdk metamask #2594

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Addausi wants to merge 8 commits into
base: main
Choose a base branch
from
Open

Sdk metamask #2594

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
69c99d7
Add GitHub Actions workflow for NodeJS with Grunt
Addausi Nov 25, 2025
6e7ac26
Merge branch 'MetaMask:main' into main
Addausi Nov 25, 2025
2c33c72
Merge branch 'main' into main
Addausi Dec 12, 2025
15b1375
Add workflow for testing and publishing Node.js packages
Addausi Dec 24, 2025
b79bfa1
Merge pull request #2 from Addausi/Addausi-patch-1
Addausi Dec 24, 2025
baa2121
Merge branch 'MetaMask:main' into main
Addausi Dec 26, 2025
8d2011e
Create SECURITY.md
Addausi Dec 26, 2025
c890c76
Create devcontainer.json
Addausi Dec 30, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions .devcontainer/devcontainer.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
{
"image": "mcr.microsoft.com/devcontainers/universal:2",
"features": {}
}
28 changes: 28 additions & 0 deletions .github/workflows/npm-grunt.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
name: NodeJS with Grunt

on:
push:
branches: [ "main" ]
pull_request:
branches: [ "main" ]

jobs:
build:
runs-on: ubuntu-latest

strategy:
matrix:
node-version: [18.x, 20.x, 22.x]
Copy link

@cursor cursor bot Dec 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Node version matrix conflicts with project's engine requirement

The workflow matrix tests Node versions 18.x, 20.x, and 22.x, but the project's package.json specifies "engines": { "node": "20.x" }. This means 2 out of 3 matrix configurations (18.x and 22.x) run against unsupported Node versions, which could produce misleading CI results - either false passes on unsupported runtimes or failures that aren't actual bugs.

Fix in Cursor Fix in Web


steps:
- uses: actions/checkout@v4

- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node-version }}

- name: Build
run: |
npm install
grunt
Copy link

@cursor cursor bot Dec 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Workflow uses Grunt but project doesn't have Grunt

The workflow runs grunt as a build step, but the project is a Docusaurus site with no Grunt dependency. The package.json shows this project uses npm run build (docusaurus build) and has no grunt or grunt-cli packages installed. This workflow will fail immediately when triggered with "command not found: grunt".

Fix in Cursor Fix in Web

36 changes: 36 additions & 0 deletions .github/workflows/npm-publish-github-packages.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
# This workflow will run tests using node and then publish a package to GitHub Packages when a release is created
# For more information see: https://docs.github.com/en/actions/publishing-packages/publishing-nodejs-packages

name: Node.js Package

on:
release:
types: [created]

jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: 20
- run: npm ci
- run: npm test
Copy link

@cursor cursor bot Dec 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Workflow calls npm test but no test script exists

The build job runs npm test, but package.json has no test script defined in the scripts section. This would cause the workflow to fail with "missing script: test" error. This further confirms the workflow is a copy-pasted template that wasn't adapted for this project.

Fix in Cursor Fix in Web


publish-gpr:
needs: build
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: 20
registry-url: https://npm.pkg.github.com/
- run: npm ci
- run: npm publish
env:
NODE_AUTH_TOKEN: ${{secrets.GITHUB_TOKEN}}
Copy link

@cursor cursor bot Dec 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Workflow publishes private package that cannot be published

This workflow attempts to run npm publish to publish the package to GitHub Packages, but package.json has "private": true which prevents npm publishing. This documentation repository is not intended to be published as an npm package. The npm publish command would fail with an error on every release. This appears to be a copy-pasted GitHub workflow template that doesn't apply to this project.

Fix in Cursor Fix in Web

21 changes: 21 additions & 0 deletions SECURITY.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
# Security Policy

## Supported Versions

Use this section to tell people about which versions of your project are
currently being supported with security updates.

| Version | Supported |
| ------- | ------------------ |
| 5.1.x | :white_check_mark: |
| 5.0.x | :x: |
| 4.0.x | :white_check_mark: |
| < 4.0 | :x: |

## Reporting a Vulnerability

Use this section to tell people how to report a vulnerability.

Tell them where to go, how often they can expect to get an update on a
reported vulnerability, what to expect if the vulnerability is accepted or
declined, etc.