test(dpp): improve state transition coverage for batched and shielded

[QuantumExplorer]

Summary

• Add ~110 new tests across 13 files in rs-dpp state transitions
• Batched token validate_structure (35 tests): All error paths for token_transfer (amount bounds, transfer-to-self, encrypted note limits), token_burn, token_mint, token_config_update (NoChange rejection, PerpetualDistribution unsupported)
• Token/document dispatch (57 tests): associated_token_event() across all 11 token variants, historical_document_type_name, can_calculate_action_id, document transition entropy()/data()/revision(), mint recipient_id() fallback logic
• Shielded validation (57 tests): common_validation helpers, all 5 shielded transitions (shield, shield_from_asset_lock, shielded_transfer, shielded_withdrawal, unshield) with bounds checking, empty proof/anchor, fee strategy validation

Test plan

• cargo test -p dpp --lib --all-features — 758 passed, 6 ignored, 0 failed
• cargo fmt -p dpp clean
• CI passes

🤖 Generated with Claude Code

Summary by CodeRabbit

Release Notes

• Tests

  • Added comprehensive test coverage for token transition validations (burn, mint, claim, transfer, freeze, unfreeze, emergency action, config update, direct purchase, set price, and destroy frozen funds transitions).
  • Added test suites for shielded transaction validations (shield, shielded transfer, shielded withdrawal, and unshield transitions).
  • Added validation tests for document transitions and common shielded validation logic.

• New Features

  • Added versioning support for token set-price-for-direct-purchase action ID calculations, enabling differentiated hash generation across platform versions.

[coderabbitai]

Warning

Rate limit exceeded

@QuantumExplorer has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 12 minutes and 29 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 75cd2f4f-ef7e-465e-9968-f423892745d3

📥 Commits

Reviewing files that changed from the base of the PR and between c6def50 and 715558f.

📒 Files selected for processing (1)

• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transition.rs

📝 Walkthrough

Walkthrough

This PR adds comprehensive unit test coverage across multiple state transition validators (document, token, and shielded variants) and introduces versioned action ID calculation for TokenSetPriceForDirectPurchaseTransition. Additionally, platform versioning support for token set-price action IDs is extended.

Changes

Cohort / File(s)	Summary
Document & Token Transition Tests packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/document_transition.rs, token_transition.rs	Added extensive unit tests for DocumentTransition variants (Create, Replace, Delete, etc.) and TokenTransitionV0Methods covering dynamic properties, entropy, revisions, and associated token events across all transition types (Burn, Mint, Transfer, Freeze, etc.).
Token Validation Tests - Burn/Claim/Config/Destroy token_burn_transition/validate_structure/v0/mod.rs, token_claim_transition/validate_structure/v0/mod.rs, token_config_update_transition/validate_structure/v0/mod.rs, token_destroy_frozen_funds_transition/validate_structure/v0/mod.rs	Added validation test modules covering token amount bounds, public note length constraints, group proposer requirements, and error scenarios for burn, claim, config update, and destroy frozen funds transitions.
Token Validation Tests - Direct Purchase/Emergency/Freeze/Mint token_direct_purchase_transition/validate_structure/v0/mod.rs, token_emergency_action_transition/validate_structure/v0/mod.rs, token_freeze_transition/validate_structure/v0/mod.rs, token_mint_transition/validate_structure/v0/mod.rs	Added validation test modules covering token amount validation, public note constraints, proposer group rules, and minting recipient fallback logic for direct purchase, emergency action, freeze, and mint transitions.
Token Mint & Set Price Methods token_mint_transition/v0/v0_methods.rs, token_set_price_for_direct_purchase_transition/v0/v0_methods.rs	Added recipient selection tests for minting (explicit vs. config fallback) and updated calculate_action_id signature in TokenSetPriceForDirectPurchaseTransitionV0 to use non-underscore platform_version parameter.
Token Set Price Versioning token_set_price_for_direct_purchase_transition/v0_methods.rs	Introduced versioned action ID calculation with v0 (minimal hash of amount only) and v1 (full serialized TokenPricingSchedule) implementations, dispatched via platform version; added comprehensive tests comparing behavior across versions.
Token Validation Tests - Transfer/Set Price/Unfreeze token_transfer_transition/validate_structure/v0/mod.rs, token_set_price_for_direct_purchase_transition/validate_structure/v0/mod.rs, token_unfreeze_transition/validate_structure/v0/mod.rs	Added validation test modules covering token amount bounds, note length limits, self-transfer prevention, proposer constraints, and encrypted note validation.
Shielded Transition Tests packages/rs-dpp/src/state_transition/state_transitions/shielded/common_validation.rs, shield_from_asset_lock_transition/v0/state_transition_validation.rs, shield_transition/v0/state_transition_validation.rs, shielded_transfer_transition/v0/state_transition_validation.rs, shielded_withdrawal_transition/v0/state_transition_validation.rs, unshield_transition/v0/state_transition_validation.rs	Added comprehensive validation test suites for shielded transitions covering action counts, proof/anchor validation, amount bounds (zero, i64::MAX), and error scenarios across shield, transfer, withdrawal, and unshield operations.
Platform Versioning packages/rs-platform-version/src/version/dpp_versions/dpp_token_versions/mod.rs, v1.rs, v2.rs, packages/rs-platform-version/src/version/v12.rs	Added new token_set_price_action_id_version field to DPPTokenVersions struct, initialized to 0 in v1 and 1 in v2; updated comment in v12 describing action ID fixes.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• feat(drive-abci): add shielded pool drive-abci integration (medusa part 3) #3220: Modifies the same shielded shield transition validation file to add upper-bound checks on shield amounts, directly related at code level.

Suggested reviewers

• shumkov

Poem

🐰✨ In test fields wide, I hopped with cheer,
Validating tokens far and near!
From shields to mints, each case complete,
Version hops make logic sweet. 🌙
Comprehensive coverage, no stone unturned—
Quality assured, well-earned!

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 76.56% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The PR title clearly and concisely describes the main change: adding comprehensive test coverage for state transitions in batched and shielded modules, which aligns with the primary objective of the changeset.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch test/dpp-state-transition-coverage

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

❌ Patch coverage is 98.25250% with 49 lines in your changes missing coverage. Please review.
✅ Project coverage is 75.87%. Comparing base (5e7d433) to head (715558f).
⚠️ Report is 2 commits behind head on v3.1-dev.

Files with missing lines	Patch %	Lines
..._transition/batched_transition/token_transition.rs	97.03%	20 Missing ⚠️
...price_for_direct_purchase_transition/v0_methods.rs	93.16%	11 Missing ⚠️
...on/state_transitions/shielded/common_validation.rs	93.50%	5 Missing ⚠️
..._transition/token_mint_transition/v0/v0_methods.rs	98.29%	2 Missing ⚠️
..._lock_transition/v0/state_transition_validation.rs	98.19%	2 Missing ⚠️
...hield_transition/v0/state_transition_validation.rs	99.19%	2 Missing ⚠️
...nsfer_transition/v0/state_transition_validation.rs	98.09%	2 Missing ⚠️
...rawal_transition/v0/state_transition_validation.rs	98.14%	2 Missing ⚠️
...hield_transition/v0/state_transition_validation.rs	98.11%	2 Missing ⚠️
...n_transfer_transition/validate_structure/v0/mod.rs	99.31%	1 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##           v3.1-dev    #3359      +/-   ##
============================================
+ Coverage     75.50%   75.87%   +0.37%     
============================================
  Files          2912     2912              
  Lines        281065   283860    +2795     
============================================
+ Hits         212211   215375    +3164     
+ Misses        68854    68485     -369     

Components	Coverage Δ
dpp	65.71% <98.25%> (+2.27%)	⬆️
drive	81.64% <ø> (ø)
drive-abci	85.99% <ø> (ø)
sdk	31.25% <ø> (ø)
dapi-client	79.06% <ø> (ø)
platform-version	∅ <ø> (∅)
platform-value	58.46% <ø> (ø)
platform-wallet	60.40% <ø> (ø)
drive-proof-verifier	48.00% <ø> (ø)

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (14)

packages/rs-dpp/src/state_transition/state_transitions/shielded/shielded_transfer_transition/v0/state_transition_validation.rs (1)

96-201: Optional: deduplicate platform version setup in tests

PlatformVersion::latest() is repeatedly initialized in each test. A tiny helper (or shared local binding pattern) would reduce repetition and improve readability without changing behavior.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/shielded/shielded_transfer_transition/v0/state_transition_validation.rs`
around lines 96 - 201, Tests repeatedly call PlatformVersion::latest(); refactor
by introducing a small helper or shared binding (e.g., a function like
latest_platform_version() or a local let pv = PlatformVersion::latest() used via
a test-level helper) and replace direct calls to PlatformVersion::latest() in
tests such as should_accept_valid_transition, should_reject_empty_actions,
should_reject_too_many_actions, should_reject_zero_value_balance,
should_accept_value_balance_at_i64_max, should_reject_empty_proof, etc.; ensure
the new helper returns the same PlatformVersion type and update each test to use
that helper to remove duplication without changing test behavior.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_destroy_frozen_funds_transition/validate_structure/v0/mod.rs (2)

104-108: Consider asserting error cardinality before matching variant.

A quick assert_eq!(result.errors.len(), 1) makes these tests stricter and reduces ambiguous failures.

Also applies to: 121-125

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_destroy_frozen_funds_transition/validate_structure/v0/mod.rs`
around lines 104 - 108, Add an assertion that the errors vector contains exactly
one item before matching its variant: check result.errors.len() == 1 (e.g.,
assert_eq!(result.errors.len(), 1)) immediately before grabbing
result.errors.first().unwrap() and the matches! call; do the same change for the
other similar test block that currently matches
ConsensusError::BasicError(BasicError::InvalidTokenNoteTooBigError(_)) to ensure
strict cardinality prior to variant matching.

---

79-84: Add an exact-boundary test for MAX_TOKEN_NOTE_LEN to guard off-by-one regressions.

You cover < max and > max, but not == max. Adding that case would complete the boundary matrix.

➕ Suggested test addition

 #[test]
 fn should_pass_with_short_public_note_and_no_group() {
     let transition = make_transition(Some("hello".to_string()), None);
     let result = transition.validate_structure_v0().unwrap();
     assert!(result.is_valid());
 }
+
+#[test]
+fn should_pass_with_public_note_exactly_max_len() {
+    let note = "a".repeat(MAX_TOKEN_NOTE_LEN);
+    let transition = make_transition(Some(note), None);
+    let result = transition.validate_structure_v0().unwrap();
+    assert!(result.is_valid());
+}

Also applies to: 98-101

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_destroy_frozen_funds_transition/validate_structure/v0/mod.rs`
around lines 79 - 84, Add tests that exercise the exact boundary of
MAX_TOKEN_NOTE_LEN to prevent off-by-one regressions: create a note string
exactly MAX_TOKEN_NOTE_LEN characters long (use the MAX_TOKEN_NOTE_LEN constant
to build the string), call make_transition(Some(note), None) and assert
validate_structure_v0().unwrap().is_valid() to cover the "no group" case (in the
test around should_pass_with_short_public_note_and_no_group) and add the
analogous exact-length test for the "with group" case referenced near lines
98-101 so both variants (no group and with group) include an ==
MAX_TOKEN_NOTE_LEN passing assertion.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_emergency_action_transition/validate_structure/v0/mod.rs (1)

100-110: Add an explicit max-length boundary test (== MAX_TOKEN_NOTE_LEN).

You already test MAX_TOKEN_NOTE_LEN + 1; adding the exact boundary case would lock in the off-by-one contract.

Suggested test addition

+    #[test]
+    fn should_pass_when_public_note_is_exactly_max_len() {
+        let boundary_note = "a".repeat(MAX_TOKEN_NOTE_LEN);
+        let transition = make_transition(Some(boundary_note), None);
+        let result = transition.validate_structure_v0().unwrap();
+        assert!(result.is_valid());
+    }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_emergency_action_transition/validate_structure/v0/mod.rs`
around lines 100 - 110, Add a new unit test that verifies the exact boundary
case where the public note length equals MAX_TOKEN_NOTE_LEN: create a string of
length MAX_TOKEN_NOTE_LEN (instead of MAX_TOKEN_NOTE_LEN + 1) using the same
helper make_transition(Some(note), None), call validate_structure_v0() on the
transition and assert the result is valid (no errors). Place this alongside
should_return_error_when_public_note_too_big and reference MAX_TOKEN_NOTE_LEN,
make_transition, and validate_structure_v0 to lock in the off-by-one contract.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_burn_transition/validate_structure/v0/mod.rs (1)

104-205: Consider a tiny assertion helper to reduce repeated error-shape checks.

Several tests repeat errors.len() == 1 + matches! boilerplate; extracting a helper would make future additions easier to maintain.

♻️ Optional refactor sketch

+    fn assert_single_basic_error(
+        result: &SimpleConsensusValidationResult,
+        predicate: impl FnOnce(&ConsensusError) -> bool,
+    ) {
+        assert_eq!(result.errors.len(), 1);
+        assert!(predicate(&result.errors[0]));
+    }
+
     #[test]
     fn zero_burn_amount_returns_invalid_token_amount_error() {
         let transition = TokenBurnTransition::V0(TokenBurnTransitionV0 {
             base: make_base(),
             burn_amount: 0,
             public_note: None,
         });
         let result = transition.validate_structure_v0().unwrap();
-        assert_eq!(result.errors.len(), 1);
-        assert!(matches!(
-            &result.errors[0],
-            ConsensusError::BasicError(BasicError::InvalidTokenAmountError(_))
-        ));
+        assert_single_basic_error(&result, |e| {
+            matches!(e, ConsensusError::BasicError(BasicError::InvalidTokenAmountError(_)))
+        });
     }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_burn_transition/validate_structure/v0/mod.rs`
around lines 104 - 205, Tests repeat the pattern of asserting
result.errors.len() == 1 and then checking the error shape with matches! (e.g.,
in zero_burn_amount_returns_invalid_token_amount_error,
burn_amount_exceeding_max_returns_invalid_token_amount_error,
public_note_too_big_returns_error, note_on_non_proposer_returns_error); add a
small test helper (e.g., fn assert_single_error_shape(result: ValidationResult,
expected: fn(&ConsensusError)->bool)) in the test module that asserts there's
exactly one error and that the sole error satisfies the provided predicate, then
replace the duplicated assertions in those test functions with calls to this
helper to keep intent clear and reduce repetition.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/validate_structure/v0/mod.rs (1)

75-129: LGTM! Tests provide good coverage of the validation logic.

The test cases cover all main branches:

• Valid scenarios (no note, short note without group, note with proposer group)
• Error scenarios (note too big, note with non-proposer in group)

Consider adding a boundary test for exactly MAX_TOKEN_NOTE_LEN characters to confirm it passes (edge of the valid range):

🧪 Optional boundary test

+    #[test]
+    fn should_pass_with_public_note_at_max_length() {
+        let max_note = "a".repeat(MAX_TOKEN_NOTE_LEN);
+        let transition = make_transition(Some(max_note), None);
+        let result = transition.validate_structure_v0().unwrap();
+        assert!(result.is_valid());
+    }
+
     #[test]
     fn should_return_error_when_public_note_too_big() {

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/validate_structure/v0/mod.rs`
around lines 75 - 129, Add a boundary test that constructs a public note exactly
MAX_TOKEN_NOTE_LEN characters long (use MAX_TOKEN_NOTE_LEN), create the
transition via make_transition(Some(long_note), None) and assert
validate_structure_v0() is valid; also add a similar case with
group_info.action_is_proposer = true to ensure a MAX_TOKEN_NOTE_LEN note passes
when proposer. Use the existing test helpers (make_transition,
GroupStateTransitionInfo, validate_structure_v0) and mirror the style of the
other tests in this file.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transfer_transition/validate_structure/v0/mod.rs (1)

131-138: Consider extracting a small transition builder helper to reduce repetitive test setup.

The repeated TokenTransferTransition::V0(TokenTransferTransitionV0 { ... }) blocks make the suite harder to scan and maintain. A tiny helper/fixture would keep each test focused on the one field it mutates.

Also applies to: 150-157, 169-176, 184-191, 203-210, 222-229, 237-244, 256-263

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transfer_transition/validate_structure/v0/mod.rs`
around lines 131 - 138, Extract a small test fixture function that returns a
default TokenTransferTransition::V0 with TokenTransferTransitionV0 populated
(use make_base() for base, amount: 0, recipient_id: Identifier::new([2u8;32]),
and None for note fields) and replace the repeated inline constructions in the
tests with calls to that helper; update each test to clone the fixture and only
mutate the specific field under test (references: TokenTransferTransition::V0,
TokenTransferTransitionV0, make_base, recipient_id, amount,
public_note/shared_encrypted_note/private_encrypted_note).

packages/rs-dpp/src/state_transition/state_transitions/shielded/unshield_transition/v0/state_transition_validation.rs (1)

95-212: Comprehensive validation coverage.

The test suite thoroughly covers all validation paths:

• Positive case validation
• Empty and excessive actions count
• Amount bounds (zero, i64::MAX boundary, overflow)
• Empty proof and zero anchor

The tests are well-named and use assert_matches! appropriately for error type verification.

Consider adding a boundary test that verifies exactly max_shielded_transition_actions is accepted:

🧪 Optional boundary test

+    #[test]
+    fn should_accept_exactly_max_actions() {
+        let platform_version = PlatformVersion::latest();
+        let max = platform_version
+            .system_limits
+            .max_shielded_transition_actions;
+        let mut transition = valid_unshield_transition();
+        transition.actions = vec![dummy_action(); max as usize];
+
+        let result = transition.validate_structure(platform_version);
+        assert!(
+            result.is_valid(),
+            "Expected valid result for exactly max actions, got errors: {:?}",
+            result.errors
+        );
+    }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/shielded/unshield_transition/v0/state_transition_validation.rs`
around lines 95 - 212, Add a boundary test that ensures exactly
max_shielded_transition_actions is accepted: create a new test (e.g.,
should_accept_max_actions) that fetches PlatformVersion::latest(), builds a
transition from valid_unshield_transition(), sets transition.actions =
vec![dummy_action(); max as usize] where max =
platform_version.system_limits.max_shielded_transition_actions, then calls
transition.validate_structure(platform_version) and asserts result.is_valid()
(similar to should_validate_a_valid_transition). Place the test alongside the
other tests in state_transition_validation.rs and reference the existing helpers
valid_unshield_transition() and dummy_action().

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_freeze_transition/validate_structure/v0/mod.rs (1)

98-127: Add a max-length acceptance test for public_note.

You already test overflow at Line 100; adding the MAX_TOKEN_NOTE_LEN exact-boundary pass case would fully lock the length boundary behavior.

Proposed test addition

     #[test]
+    fn should_pass_with_public_note_at_max_length() {
+        let note = "a".repeat(MAX_TOKEN_NOTE_LEN);
+        let transition = make_transition(Some(note), None);
+        let result = transition.validate_structure_v0().unwrap();
+        assert!(result.is_valid());
+    }
+
+    #[test]
     fn should_return_error_when_note_present_but_non_proposer_in_group() {

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_freeze_transition/validate_structure/v0/mod.rs`
around lines 98 - 127, Add a new unit test that asserts a public_note with
length exactly MAX_TOKEN_NOTE_LEN is accepted: create a string of
"a".repeat(MAX_TOKEN_NOTE_LEN), build the transition via
make_transition(Some(long_note), ...) (mirror the other tests), call
validate_structure_v0(), and assert result.is_valid() with no TokenNote errors;
place this alongside should_return_error_when_public_note_too_big to lock the
boundary behavior for MAX_TOKEN_NOTE_LEN.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_unfreeze_transition/validate_structure/v0/mod.rs (1)

98-127: Add an exact-length boundary test for public_note.

Current coverage validates > MAX_TOKEN_NOTE_LEN (Line 100) but not == MAX_TOKEN_NOTE_LEN. Adding this closes an off-by-one gap around the length check at Line 18.

Proposed test addition

     #[test]
+    fn should_pass_with_public_note_at_max_length() {
+        let note = "a".repeat(MAX_TOKEN_NOTE_LEN);
+        let transition = make_transition(Some(note), None);
+        let result = transition.validate_structure_v0().unwrap();
+        assert!(result.is_valid());
+    }
+
+    #[test]
     fn should_return_error_when_note_present_but_non_proposer_in_group() {

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_unfreeze_transition/validate_structure/v0/mod.rs`
around lines 98 - 127, Add a boundary unit test that verifies a public_note with
length == MAX_TOKEN_NOTE_LEN is accepted: create a test (e.g.,
should_accept_public_note_at_max_length) that builds a note using
"a".repeat(MAX_TOKEN_NOTE_LEN), calls make_transition(Some(long_note), None),
invokes validate_structure_v0() on the transition, and asserts
result.is_valid(); reference MAX_TOKEN_NOTE_LEN, make_transition and
validate_structure_v0 to locate where to add the test.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/document_transition.rs (2)

453-621: Consider consolidating repeated per-variant None assertions.

The entropy, data, revision, and data_mut sections repeat the same pattern by variant. A small table-driven helper would keep this coverage while reducing maintenance overhead.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/document_transition.rs`
around lines 453 - 621, Tests repeat identical per-variant assertions for
methods entropy(), data(), revision(), and data_mut(); replace these with
table-driven helpers that iterate over transition constructors
(make_create_transition, make_replace_transition, make_delete_transition,
make_transfer_transition, make_update_price_transition,
make_purchase_transition) and their expected results, then assert each method
(entropy(), data(), revision(), data_mut()) against the expected value inside a
single loop; add a small helper function in the test module (e.g.,
assert_transition_property<T>(Vec<(Fn() -> DocumentTransition, expected)>) or a
Vec of tuples pairing constructor functions with expected Option values) to
consolidate the repeated tests while preserving coverage and keep existing test
names by replacing body with calls to the helper.

---

391-439: Add one dot-syntax test for get_dynamic_property contract alignment.

The trait documentation says path supports dot-syntax, but these tests currently validate only flat keys. Please add one nested-path assertion (or explicitly narrow the contract in docs).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/document_transition.rs`
around lines 391 - 439, Tests only cover flat keys but the get_dynamic_property
contract supports dot-syntax; add one test that inserts a nested value (e.g., a
map/object with a child field) into a create or replace transition and assert
that transition.get_dynamic_property("parent.child") returns the inner Value
(use existing helpers like make_create_transition or make_replace_transition and
the get_dynamic_property method name to locate where to add the test). Ensure
the nested structure uses the same Value variants as other tests so the
assertion mirrors the existing style.

packages/rs-dpp/src/state_transition/state_transitions/shielded/shield_transition/v0/state_transition_validation.rs (1)

286-294: Derive “below minimum” input from platform config instead of hard-coding it.

This test currently bakes in a protocol assumption. Deriving from min_input_amount will keep it stable across version changes.

♻️ Proposed test hardening

     #[test]
     fn should_reject_input_below_minimum() {
         let platform_version = PlatformVersion::latest();
         let mut transition = valid_shield_transition();
-        // Set the input amount to 1 (below minimum of 100_000)
+        let min_input_amount = platform_version
+            .dpp
+            .state_transitions
+            .address_funds
+            .min_input_amount;
+        let below_min = min_input_amount.saturating_sub(1);
+        assert!(below_min < min_input_amount, "test requires min_input_amount > 0");
+
         transition.inputs.clear();
         transition
             .inputs
-            .insert(PlatformAddress::P2pkh([1u8; 20]), (0u32, 1u64));
+            .insert(PlatformAddress::P2pkh([1u8; 20]), (0u32, below_min));

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/shielded/shield_transition/v0/state_transition_validation.rs`
around lines 286 - 294, The test should_reject_input_below_minimum currently
hard-codes a below-minimum input value; instead query the min_input_amount from
PlatformVersion::latest() and set the test input to (min_input_amount - 1) so it
follows protocol config changes. Update the test (around valid_shield_transition
and PlatformVersion usage) to obtain the min_input_amount from the
platform_version instance (e.g., access the protocol/drive config field or
helper like get_min_input_amount()) and use that derived value to build the
inputs map rather than the literal 1 or 100_000.

packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/v0_methods.rs (1)

89-112: Add a unit test for the unsupported-version error path

Please add a test that sets token_set_price_action_id_version to an unsupported value and asserts ProtocolError::UnknownVersionMismatch. This locks in the dispatch guard behavior.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/v0_methods.rs`
around lines 89 - 112, Add a unit test that sets
platform_version.dpp.token_versions.token_set_price_action_id_version to an
unsupported value (e.g. 2) and calls calculate_action_id_with_fields (the
dispatch in v0_methods.rs that matches on token_set_price_action_id_version).
Assert the result is Err(ProtocolError::UnknownVersionMismatch) and verify its
fields (method == "calculate_action_id_with_fields", known_versions contains
[0,1], and received == the unsupported value). Use the same parameter types
passed into calculate_action_id_with_fields (token_id, owner_id,
identity_contract_nonce, price_per_token) and construct a minimal
PlatformVersion/DPP TokenVersions instance for the call.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transition.rs`:
- Around line 879-891: The test calculate_action_id_returns_some_for_burn (and
the similar test at lines 894-907) only asserts result.is_some(), which allows
Some(Err(_)) to pass; change the assertions to ensure successful computation by
matching Some(Ok(_)) (e.g., assert!(matches!(burn.calculate_action_id(owner_id,
pv), Some(Ok(_)))) or unwrap and assert_ok) so the
TokenTransition::Burn.calculate_action_id (and the corresponding test for the
other transition) must be validated to return Ok on success rather than any Some
variant.

---

Nitpick comments:
In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/document_transition.rs`:
- Around line 453-621: Tests repeat identical per-variant assertions for methods
entropy(), data(), revision(), and data_mut(); replace these with table-driven
helpers that iterate over transition constructors (make_create_transition,
make_replace_transition, make_delete_transition, make_transfer_transition,
make_update_price_transition, make_purchase_transition) and their expected
results, then assert each method (entropy(), data(), revision(), data_mut())
against the expected value inside a single loop; add a small helper function in
the test module (e.g., assert_transition_property<T>(Vec<(Fn() ->
DocumentTransition, expected)>) or a Vec of tuples pairing constructor functions
with expected Option values) to consolidate the repeated tests while preserving
coverage and keep existing test names by replacing body with calls to the
helper.
- Around line 391-439: Tests only cover flat keys but the get_dynamic_property
contract supports dot-syntax; add one test that inserts a nested value (e.g., a
map/object with a child field) into a create or replace transition and assert
that transition.get_dynamic_property("parent.child") returns the inner Value
(use existing helpers like make_create_transition or make_replace_transition and
the get_dynamic_property method name to locate where to add the test). Ensure
the nested structure uses the same Value variants as other tests so the
assertion mirrors the existing style.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_burn_transition/validate_structure/v0/mod.rs`:
- Around line 104-205: Tests repeat the pattern of asserting result.errors.len()
== 1 and then checking the error shape with matches! (e.g., in
zero_burn_amount_returns_invalid_token_amount_error,
burn_amount_exceeding_max_returns_invalid_token_amount_error,
public_note_too_big_returns_error, note_on_non_proposer_returns_error); add a
small test helper (e.g., fn assert_single_error_shape(result: ValidationResult,
expected: fn(&ConsensusError)->bool)) in the test module that asserts there's
exactly one error and that the sole error satisfies the provided predicate, then
replace the duplicated assertions in those test functions with calls to this
helper to keep intent clear and reduce repetition.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_destroy_frozen_funds_transition/validate_structure/v0/mod.rs`:
- Around line 104-108: Add an assertion that the errors vector contains exactly
one item before matching its variant: check result.errors.len() == 1 (e.g.,
assert_eq!(result.errors.len(), 1)) immediately before grabbing
result.errors.first().unwrap() and the matches! call; do the same change for the
other similar test block that currently matches
ConsensusError::BasicError(BasicError::InvalidTokenNoteTooBigError(_)) to ensure
strict cardinality prior to variant matching.
- Around line 79-84: Add tests that exercise the exact boundary of
MAX_TOKEN_NOTE_LEN to prevent off-by-one regressions: create a note string
exactly MAX_TOKEN_NOTE_LEN characters long (use the MAX_TOKEN_NOTE_LEN constant
to build the string), call make_transition(Some(note), None) and assert
validate_structure_v0().unwrap().is_valid() to cover the "no group" case (in the
test around should_pass_with_short_public_note_and_no_group) and add the
analogous exact-length test for the "with group" case referenced near lines
98-101 so both variants (no group and with group) include an ==
MAX_TOKEN_NOTE_LEN passing assertion.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_emergency_action_transition/validate_structure/v0/mod.rs`:
- Around line 100-110: Add a new unit test that verifies the exact boundary case
where the public note length equals MAX_TOKEN_NOTE_LEN: create a string of
length MAX_TOKEN_NOTE_LEN (instead of MAX_TOKEN_NOTE_LEN + 1) using the same
helper make_transition(Some(note), None), call validate_structure_v0() on the
transition and assert the result is valid (no errors). Place this alongside
should_return_error_when_public_note_too_big and reference MAX_TOKEN_NOTE_LEN,
make_transition, and validate_structure_v0 to lock in the off-by-one contract.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_freeze_transition/validate_structure/v0/mod.rs`:
- Around line 98-127: Add a new unit test that asserts a public_note with length
exactly MAX_TOKEN_NOTE_LEN is accepted: create a string of
"a".repeat(MAX_TOKEN_NOTE_LEN), build the transition via
make_transition(Some(long_note), ...) (mirror the other tests), call
validate_structure_v0(), and assert result.is_valid() with no TokenNote errors;
place this alongside should_return_error_when_public_note_too_big to lock the
boundary behavior for MAX_TOKEN_NOTE_LEN.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/v0_methods.rs`:
- Around line 89-112: Add a unit test that sets
platform_version.dpp.token_versions.token_set_price_action_id_version to an
unsupported value (e.g. 2) and calls calculate_action_id_with_fields (the
dispatch in v0_methods.rs that matches on token_set_price_action_id_version).
Assert the result is Err(ProtocolError::UnknownVersionMismatch) and verify its
fields (method == "calculate_action_id_with_fields", known_versions contains
[0,1], and received == the unsupported value). Use the same parameter types
passed into calculate_action_id_with_fields (token_id, owner_id,
identity_contract_nonce, price_per_token) and construct a minimal
PlatformVersion/DPP TokenVersions instance for the call.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/validate_structure/v0/mod.rs`:
- Around line 75-129: Add a boundary test that constructs a public note exactly
MAX_TOKEN_NOTE_LEN characters long (use MAX_TOKEN_NOTE_LEN), create the
transition via make_transition(Some(long_note), None) and assert
validate_structure_v0() is valid; also add a similar case with
group_info.action_is_proposer = true to ensure a MAX_TOKEN_NOTE_LEN note passes
when proposer. Use the existing test helpers (make_transition,
GroupStateTransitionInfo, validate_structure_v0) and mirror the style of the
other tests in this file.

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transfer_transition/validate_structure/v0/mod.rs`:
- Around line 131-138: Extract a small test fixture function that returns a
default TokenTransferTransition::V0 with TokenTransferTransitionV0 populated
(use make_base() for base, amount: 0, recipient_id: Identifier::new([2u8;32]),
and None for note fields) and replace the repeated inline constructions in the
tests with calls to that helper; update each test to clone the fixture and only
mutate the specific field under test (references: TokenTransferTransition::V0,
TokenTransferTransitionV0, make_base, recipient_id, amount,
public_note/shared_encrypted_note/private_encrypted_note).

In
`@packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_unfreeze_transition/validate_structure/v0/mod.rs`:
- Around line 98-127: Add a boundary unit test that verifies a public_note with
length == MAX_TOKEN_NOTE_LEN is accepted: create a test (e.g.,
should_accept_public_note_at_max_length) that builds a note using
"a".repeat(MAX_TOKEN_NOTE_LEN), calls make_transition(Some(long_note), None),
invokes validate_structure_v0() on the transition, and asserts
result.is_valid(); reference MAX_TOKEN_NOTE_LEN, make_transition and
validate_structure_v0 to locate where to add the test.

In
`@packages/rs-dpp/src/state_transition/state_transitions/shielded/shield_transition/v0/state_transition_validation.rs`:
- Around line 286-294: The test should_reject_input_below_minimum currently
hard-codes a below-minimum input value; instead query the min_input_amount from
PlatformVersion::latest() and set the test input to (min_input_amount - 1) so it
follows protocol config changes. Update the test (around valid_shield_transition
and PlatformVersion usage) to obtain the min_input_amount from the
platform_version instance (e.g., access the protocol/drive config field or
helper like get_min_input_amount()) and use that derived value to build the
inputs map rather than the literal 1 or 100_000.

In
`@packages/rs-dpp/src/state_transition/state_transitions/shielded/shielded_transfer_transition/v0/state_transition_validation.rs`:
- Around line 96-201: Tests repeatedly call PlatformVersion::latest(); refactor
by introducing a small helper or shared binding (e.g., a function like
latest_platform_version() or a local let pv = PlatformVersion::latest() used via
a test-level helper) and replace direct calls to PlatformVersion::latest() in
tests such as should_accept_valid_transition, should_reject_empty_actions,
should_reject_too_many_actions, should_reject_zero_value_balance,
should_accept_value_balance_at_i64_max, should_reject_empty_proof, etc.; ensure
the new helper returns the same PlatformVersion type and update each test to use
that helper to remove duplication without changing test behavior.

In
`@packages/rs-dpp/src/state_transition/state_transitions/shielded/unshield_transition/v0/state_transition_validation.rs`:
- Around line 95-212: Add a boundary test that ensures exactly
max_shielded_transition_actions is accepted: create a new test (e.g.,
should_accept_max_actions) that fetches PlatformVersion::latest(), builds a
transition from valid_unshield_transition(), sets transition.actions =
vec![dummy_action(); max as usize] where max =
platform_version.system_limits.max_shielded_transition_actions, then calls
transition.validate_structure(platform_version) and asserts result.is_valid()
(similar to should_validate_a_valid_transition). Place the test alongside the
other tests in state_transition_validation.rs and reference the existing helpers
valid_unshield_transition() and dummy_action().

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 53510d49-e9b5-437c-911a-6824ff78bd48

📥 Commits

Reviewing files that changed from the base of the PR and between f89fe85 and c6def50.

📒 Files selected for processing (26)

• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/document_transition.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_burn_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_claim_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_config_update_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_destroy_frozen_funds_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_direct_purchase_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_emergency_action_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_freeze_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_mint_transition/v0/v0_methods.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_mint_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/v0/v0_methods.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/v0_methods.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_set_price_for_direct_purchase_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transfer_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transition.rs
• packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_unfreeze_transition/validate_structure/v0/mod.rs
• packages/rs-dpp/src/state_transition/state_transitions/shielded/common_validation.rs
• packages/rs-dpp/src/state_transition/state_transitions/shielded/shield_from_asset_lock_transition/v0/state_transition_validation.rs
• packages/rs-dpp/src/state_transition/state_transitions/shielded/shield_transition/v0/state_transition_validation.rs
• packages/rs-dpp/src/state_transition/state_transitions/shielded/shielded_transfer_transition/v0/state_transition_validation.rs
• packages/rs-dpp/src/state_transition/state_transitions/shielded/shielded_withdrawal_transition/v0/state_transition_validation.rs
• packages/rs-dpp/src/state_transition/state_transitions/shielded/unshield_transition/v0/state_transition_validation.rs
• packages/rs-platform-version/src/version/dpp_versions/dpp_token_versions/mod.rs
• packages/rs-platform-version/src/version/dpp_versions/dpp_token_versions/v1.rs
• packages/rs-platform-version/src/version/dpp_versions/dpp_token_versions/v2.rs
• packages/rs-platform-version/src/version/v12.rs

[thepastaclaw]

Code Review

Test-heavy PR that also carries a consensus-critical action_id fix (commit 9ff7e84 / #3357). Test quality is solid overall; the action_id assertion weakness was self-corrected in 715558f. Main concerns are a missing bounds check in shield fee-strategy validation (production code gap), incomplete boundary tests for encrypted notes, and untested dispatch paths for ConfigUpdate/SetPriceForDirectPurchase at the wrapper level.

Reviewed commit: 715558f

🟡 5 suggestion(s) | 💬 1 nitpick(s)

2 additional finding(s) omitted (not in diff).

🤖 Prompt for all review comments with AI agents

These findings are from an automated code review. Verify each finding against the current code and only fix it if needed.

In `packages/rs-dpp/src/state_transition/state_transitions/shielded/shield_transition/v0/state_transition_validation.rs`:
- [SUGGESTION] lines 157-164: Shield fee-strategy validation missing out-of-bounds index check
  The fee_strategy loop (lines 157-164) checks for duplicates but never validates that `DeductFromInput(index)` or `AddToOutput(index)` indices are within `self.inputs.len()`. All three address_funds validators (`address_funds_transfer`, `address_credit_withdrawal`, `address_funding_from_asset_lock`) include `FeeStrategyIndexOutOfBoundsError` checks for both step types. This is a production code gap — an attacker could submit a shield transition referencing a nonexistent input index, and the error would only surface later (or not at all) during execution rather than at structural validation time.

In `packages/rs-platform-version/src/version/dpp_versions/dpp_token_versions/v2.rs`:
- [SUGGESTION] line 1: Consensus-critical fix included under test(dpp) PR title
  Commit 9ff7e84c7 adds `token_set_price_action_id_version` to `DPPTokenVersions`, sets it to 1 in TOKEN_VERSIONS_V2 (used by protocol v12), and changes how `SetPriceForDirectPurchase` action_ids are hashed — binding the full `TokenPricingSchedule` instead of just the price scalar. This is a consensus-critical behavioral change: nodes running v12 will accept/reject different action_id hashes than before. The PR description does mention this ('Also includes consensus fix for SetPriceForDirectPurchase action_id binding') and the commit is properly labeled `fix(dpp)`, but the PR title `test(dpp): improve state transition coverage…` obscures the consensus nature of the change. Consider either (a) splitting the fix into its own PR, or (b) retitling to `fix(dpp)!:` to match the most impactful change.

In `packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transfer_transition/validate_structure/v0/mod.rs`:
- [SUGGESTION] lines 235-270: Missing boundary-pass tests for shared/private encrypted notes at MAX length
  The `public_note` field has both a boundary-pass test (`public_note_at_max_length_passes`, line 220) and a boundary-fail test (`public_note_too_big_returns_error`, line 201). However, `shared_encrypted_note` (line 235) and `private_encrypted_note` (line 254) only have boundary-fail tests at `MAX_TOKEN_NOTE_LEN + 1`. There are no tests verifying that exactly `MAX_TOKEN_NOTE_LEN` (2048) bytes are accepted for these fields. Since the validation uses `>` (not `>=`), the boundary-pass case is important to lock in.

In `packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transition.rs`:
- [SUGGESTION] lines 895-911: calculate_action_id dispatch tests only cover Burn and Mint variants
  The `calculate_action_id` wrapper dispatches to 8 variants (Burn, Mint, Freeze, Unfreeze, DestroyFrozenFunds, EmergencyAction, ConfigUpdate, SetPriceForDirectPurchase), but the dispatch-level tests only verify Burn (line 878) and Mint (line 895). ConfigUpdate and SetPriceForDirectPurchase are especially important to test at the wrapper level since they have version-gated behavior (v0 vs v1 hashing). The `can_calculate_action_id` tests cover all variants but only test the boolean predicate, not the actual dispatch.
- [SUGGESTION] lines 878-911: Version-gating tests pinned to latest() instead of explicit version boundaries
  Tests throughout the new test files use `PlatformVersion::latest()` or `PlatformVersion::first()` for version-sensitive behavior (e.g., action_id hashing that differs between v11/v12). If `latest()` changes in the future, these tests may silently start testing different version behavior. For version-boundary testing, explicit version constants make the test intent clearer and more resilient to version bumps.

[thepastaclaw]

🟡 Suggestion: Missing boundary-pass tests for shared/private encrypted notes at MAX length

The public_note field has both a boundary-pass test (public_note_at_max_length_passes, line 220) and a boundary-fail test (public_note_too_big_returns_error, line 201). However, shared_encrypted_note (line 235) and private_encrypted_note (line 254) only have boundary-fail tests at MAX_TOKEN_NOTE_LEN + 1. There are no tests verifying that exactly MAX_TOKEN_NOTE_LEN (2048) bytes are accepted for these fields. Since the validation uses > (not >=), the boundary-pass case is important to lock in.

_{source: ['claude-general', 'claude-rust-quality']}

🤖 Fix this with AI agents

These findings are from an automated code review. Verify each finding against the current code and only fix it if needed.

In `packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transfer_transition/validate_structure/v0/mod.rs`:
- [SUGGESTION] lines 235-270: Missing boundary-pass tests for shared/private encrypted notes at MAX length
  The `public_note` field has both a boundary-pass test (`public_note_at_max_length_passes`, line 220) and a boundary-fail test (`public_note_too_big_returns_error`, line 201). However, `shared_encrypted_note` (line 235) and `private_encrypted_note` (line 254) only have boundary-fail tests at `MAX_TOKEN_NOTE_LEN + 1`. There are no tests verifying that exactly `MAX_TOKEN_NOTE_LEN` (2048) bytes are accepted for these fields. Since the validation uses `>` (not `>=`), the boundary-pass case is important to lock in.

[thepastaclaw]

🟡 Suggestion: calculate_action_id dispatch tests only cover Burn and Mint variants

The calculate_action_id wrapper dispatches to 8 variants (Burn, Mint, Freeze, Unfreeze, DestroyFrozenFunds, EmergencyAction, ConfigUpdate, SetPriceForDirectPurchase), but the dispatch-level tests only verify Burn (line 878) and Mint (line 895). ConfigUpdate and SetPriceForDirectPurchase are especially important to test at the wrapper level since they have version-gated behavior (v0 vs v1 hashing). The can_calculate_action_id tests cover all variants but only test the boolean predicate, not the actual dispatch.

_{source: ['codex-general']}

🤖 Fix this with AI agents

These findings are from an automated code review. Verify each finding against the current code and only fix it if needed.

In `packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transition.rs`:
- [SUGGESTION] lines 895-911: calculate_action_id dispatch tests only cover Burn and Mint variants
  The `calculate_action_id` wrapper dispatches to 8 variants (Burn, Mint, Freeze, Unfreeze, DestroyFrozenFunds, EmergencyAction, ConfigUpdate, SetPriceForDirectPurchase), but the dispatch-level tests only verify Burn (line 878) and Mint (line 895). ConfigUpdate and SetPriceForDirectPurchase are especially important to test at the wrapper level since they have version-gated behavior (v0 vs v1 hashing). The `can_calculate_action_id` tests cover all variants but only test the boolean predicate, not the actual dispatch.

[thepastaclaw]

🟡 Suggestion: Version-gating tests pinned to latest() instead of explicit version boundaries

Tests throughout the new test files use PlatformVersion::latest() or PlatformVersion::first() for version-sensitive behavior (e.g., action_id hashing that differs between v11/v12). If latest() changes in the future, these tests may silently start testing different version behavior. For version-boundary testing, explicit version constants make the test intent clearer and more resilient to version bumps.

Suggested change

	#[test]
	fn calculate_action_id_returns_some_for_burn() {
	let base = TokenBaseTransition::default();
	let owner_id = Identifier::from([2u8; 32]);
	let burn = TokenTransition::Burn(TokenBurnTransition::V0(TokenBurnTransitionV0 {
	base: base.clone(),
	burn_amount: 50,
	public_note: None,
	}));
	let pv = PlatformVersion::latest();
	assert!(matches!(
	burn.calculate_action_id(owner_id, pv),
	Some(Ok(_))
	));
	}
	#[test]
	fn calculate_action_id_returns_some_for_mint() {
	let base = TokenBaseTransition::default();
	let owner_id = Identifier::from([3u8; 32]);
	let mint = TokenTransition::Mint(TokenMintTransition::V0(TokenMintTransitionV0 {
	base: base.clone(),
	issued_to_identity_id: None,
	amount: 100,
	public_note: None,
	}));
	let pv = PlatformVersion::latest();
	assert!(matches!(
	mint.calculate_action_id(owner_id, pv),
	Some(Ok(_))
	));
	}
	Where tests exercise version-gated behavior (especially action_id v0 vs v1), consider using explicit platform version constants instead of `latest()`/`first()`.

_{source: ['codex-rust-quality']}

🤖 Fix this with AI agents

These findings are from an automated code review. Verify each finding against the current code and only fix it if needed.

In `packages/rs-dpp/src/state_transition/state_transitions/document/batch_transition/batched_transition/token_transition.rs`:
- [SUGGESTION] lines 878-911: Version-gating tests pinned to latest() instead of explicit version boundaries
  Tests throughout the new test files use `PlatformVersion::latest()` or `PlatformVersion::first()` for version-sensitive behavior (e.g., action_id hashing that differs between v11/v12). If `latest()` changes in the future, these tests may silently start testing different version behavior. For version-boundary testing, explicit version constants make the test intent clearer and more resilient to version bumps.

[thepastaclaw]

💬 Nitpick: Hardcoded magic numbers in test comments

Comments like // Set the input amount to 1 (below minimum of 100_000) hardcode values that come from platform_version.dpp.state_transitions.address_funds.min_input_amount. If the constant changes, the comment becomes misleading. This also appears in address_funding_from_asset_lock_transition (line 491) and address_credit_withdrawal_transition (line 622).

Suggested change

	// Set the input amount to 1 (below minimum of 100_000)
	Reference the constant name instead: `// below min_input_amount from platform_version`.

_{source: ['claude-general']}