Merge branch 'master' into WP-5445-express-migrate-api-v2-coin-wallet-id-signer-macaroon-to-typed-routes

Author: danielzhao122

.github/workflows/ci.yml

@@ -134,6 +134,43 @@ jobs:
         if: matrix.check == 'audit'
         run: yarn run improved-yarn-audit --min-severity high
 
+  license-analysis:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+
+      - name: Setup node 22
+        uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
+        with:
+          node-version: 22
+
+      - name: restore lerna dependencies
+        id: lerna-cache
+        uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 #v4.2.3
+        with:
+          path: |
+            node_modules
+            modules/*/node_modules
+          key: ${{ runner.os }}-node22-${{ hashFiles('yarn.lock') }}-${{ hashFiles('tsconfig.packages.json') }}-${{ hashFiles('package.json') }}
+
+      - name: Install Packages
+        if: steps.lerna-cache.outputs.cache-hit != 'true'
+        run: yarn install --with-frozen-lockfile --ignore-scripts
+
+      - name: build packages
+        env:
+          # Workaround for https://github.com/nodejs/node/issues/51555
+          DISABLE_V8_COMPILE_CACHE: '1'
+        run: yarn run postinstall
+
+      - name: Run Fossa Analysis
+        uses: fossas/fossa-action@3ebcea1862c6ffbd5cf1b4d0bd6b3fe7bd6f2cac # v1.7.0
+        with:
+          api-key: ${{ secrets.FOSSA_API_KEY }}
+          branch: ${{ github.head_ref || github.ref_name }}
+          project: BitGo/BitGoJS
+
   browser-test:
     runs-on: ubuntu-22.04
 

examples/ts/sol/stake-jito.ts

@@ -3,106 +3,110 @@
  *
  * Copyright 2025, BitGo, Inc.  All Rights Reserved.
  */
-import { BitGoAPI } from '@bitgo/sdk-api'
-import { TransactionBuilderFactory, Tsol } from '@bitgo/sdk-coin-sol'
-import { coins } from '@bitgo/statics'
-import { Connection, PublicKey, clusterApiUrl, Transaction, Keypair, LAMPORTS_PER_SOL } from "@solana/web3.js"
-import { getStakePoolAccount, updateStakePool } from '@solana/spl-stake-pool'
+import { SolStakingTypeEnum } from '@bitgo/public-types';
+import { BitGoAPI } from '@bitgo/sdk-api';
+import { TransactionBuilderFactory, Tsol } from '@bitgo/sdk-coin-sol';
+import { coins } from '@bitgo/statics';
+import { Connection, PublicKey, clusterApiUrl, Transaction, Keypair, LAMPORTS_PER_SOL } from '@solana/web3.js';
+import { getStakePoolAccount, updateStakePool } from '@solana/spl-stake-pool';
+import { getAssociatedTokenAddressSync } from '@solana/spl-token';
 import * as bs58 from 'bs58';
 
-require('dotenv').config({ path: '../../.env' })
+require('dotenv').config({ path: '../../.env' });
 
-const AMOUNT_LAMPORTS = 1000
-const JITO_STAKE_POOL_ADDRESS = 'Jito4APyf642JPZPx3hGc6WWJ8zPKtRbRs4P815Awbb'
-const NETWORK = 'devnet'
+const AMOUNT_LAMPORTS = 1000;
+const JITO_STAKE_POOL_ADDRESS = 'Jito4APyf642JPZPx3hGc6WWJ8zPKtRbRs4P815Awbb';
+const NETWORK = 'devnet';
 
 const bitgo = new BitGoAPI({
   accessToken: process.env.TESTNET_ACCESS_TOKEN,
   env: 'test',
-})
-const coin = coins.get("tsol")
-bitgo.register(coin.name, Tsol.createInstance)
+});
+const coin = coins.get('tsol');
+bitgo.register(coin.name, Tsol.createInstance);
 
 async function main() {
-  const account = getAccount()
-  const connection = new Connection(clusterApiUrl(NETWORK), 'confirmed')
-  const recentBlockhash = await connection.getLatestBlockhash()
-  const stakePoolAccount = await getStakePoolAccount(connection, new PublicKey(JITO_STAKE_POOL_ADDRESS))
-
+  const account = getAccount();
+  const connection = new Connection(clusterApiUrl(NETWORK), 'confirmed');
+  const recentBlockhash = await connection.getLatestBlockhash();
+  const stakePoolAccount = await getStakePoolAccount(connection, new PublicKey(JITO_STAKE_POOL_ADDRESS));
+  const associatedTokenAddress = getAssociatedTokenAddressSync(
+    stakePoolAccount.account.data.poolMint,
+    account.publicKey
+  );
+  const associatedTokenAccountExists = !!(await connection.getAccountInfo(associatedTokenAddress));
 
   // Account should have sufficient balance
-  const accountBalance = await connection.getBalance(account.publicKey)
+  const accountBalance = await connection.getBalance(account.publicKey);
   if (accountBalance < 0.1 * LAMPORTS_PER_SOL) {
-    console.info(`Your account balance is ${accountBalance / LAMPORTS_PER_SOL} SOL, requesting airdrop`)
-    const sig = await connection.requestAirdrop(account.publicKey, 2 * LAMPORTS_PER_SOL)
-    await connection.confirmTransaction(sig)
-    console.info(`Airdrop successful: ${sig}`)
+    console.info(`Your account balance is ${accountBalance / LAMPORTS_PER_SOL} SOL, requesting airdrop`);
+    const sig = await connection.requestAirdrop(account.publicKey, 2 * LAMPORTS_PER_SOL);
+    await connection.confirmTransaction(sig);
+    console.info(`Airdrop successful: ${sig}`);
   }
 
   // Stake pool should be up to date
-  const epochInfo = await connection.getEpochInfo()
+  const epochInfo = await connection.getEpochInfo();
   if (stakePoolAccount.account.data.lastUpdateEpoch.ltn(epochInfo.epoch)) {
-    console.info('Stake pool is out of date.')
-    const usp = await updateStakePool(connection, stakePoolAccount)
-    const tx = new Transaction()
-    tx.add(...usp.updateListInstructions, ...usp.finalInstructions)
-    const signer = Keypair.fromSecretKey(account.secretKeyArray)
-    const sig = await connection.sendTransaction(tx, [signer])
-    await connection.confirmTransaction(sig)
-    console.info(`Stake pool updated: ${sig}`)
+    console.info('Stake pool is out of date.');
+    const usp = await updateStakePool(connection, stakePoolAccount);
+    const tx = new Transaction();
+    tx.add(...usp.updateListInstructions, ...usp.finalInstructions);
+    const signer = Keypair.fromSecretKey(account.secretKeyArray);
+    const sig = await connection.sendTransaction(tx, [signer]);
+    await connection.confirmTransaction(sig);
+    console.info(`Stake pool updated: ${sig}`);
   }
 
   // Use BitGoAPI to build depositSol instruction
-  const txBuilder = new TransactionBuilderFactory(coin).getStakingActivateBuilder()
+  const txBuilder = new TransactionBuilderFactory(coin).getStakingActivateBuilder();
   txBuilder
     .amount(`${AMOUNT_LAMPORTS}`)
     .sender(account.publicKey.toBase58())
     .stakingAddress(JITO_STAKE_POOL_ADDRESS)
     .validator(JITO_STAKE_POOL_ADDRESS)
-    .stakingTypeParams({
-      type: 'JITO',
+    .stakingType(SolStakingTypeEnum.JITO)
+    .extraParams({
       stakePoolData: {
-        managerFeeAccount: stakePoolAccount.account.data.managerFeeAccount.toString(),
-        poolMint: stakePoolAccount.account.data.poolMint.toString(),
-        reserveStake: stakePoolAccount.account.data.toString(),
-      }
+        managerFeeAccount: stakePoolAccount.account.data.managerFeeAccount.toBase58(),
+        poolMint: stakePoolAccount.account.data.poolMint.toBase58(),
+        reserveStake: stakePoolAccount.account.data.reserveStake.toBase58(),
+      },
+      createAssociatedTokenAccount: !associatedTokenAccountExists,
     })
-    .nonce(recentBlockhash.blockhash)
-  txBuilder.sign({ key: account.secretKey })
-  const tx = await txBuilder.build()
-  const serializedTx = tx.toBroadcastFormat()
-  console.info(`Transaction JSON:\n${JSON.stringify(tx.toJson(), undefined, 2)}`)
+    .nonce(recentBlockhash.blockhash);
+  txBuilder.sign({ key: account.secretKey });
+  const tx = await txBuilder.build();
+  const serializedTx = tx.toBroadcastFormat();
+  console.info(`Transaction JSON:\n${JSON.stringify(tx.toJson(), undefined, 2)}`);
 
   // Send transaction
   try {
-    const sig = await connection.sendRawTransaction(Buffer.from(serializedTx, 'base64'))
-    await connection.confirmTransaction(sig)
-    console.log(`${AMOUNT_LAMPORTS / LAMPORTS_PER_SOL} SOL deposited`, sig)
+    const sig = await connection.sendRawTransaction(Buffer.from(serializedTx, 'base64'));
+    await connection.confirmTransaction(sig);
+    console.log(`${AMOUNT_LAMPORTS / LAMPORTS_PER_SOL} SOL deposited`, sig);
   } catch (e) {
-    console.log('Error sending transaction')
-    console.error(e)
-    if (e.transactionMessage === 'Transaction simulation failed: Error processing Instruction 0: Provided owner is not allowed') {
-      console.error('If you successfully staked JitoSOL once, you cannot stake again.')
-    }
+    console.log('Error sending transaction');
+    console.error(e);
   }
 }
 
 const getAccount = () => {
-  const publicKey = process.env.ACCOUNT_PUBLIC_KEY
-  const secretKey = process.env.ACCOUNT_SECRET_KEY
+  const publicKey = process.env.ACCOUNT_PUBLIC_KEY;
+  const secretKey = process.env.ACCOUNT_SECRET_KEY;
   if (publicKey === undefined || secretKey === undefined) {
-    const { publicKey, secretKey } = Keypair.generate()
-    console.log('# Here is a new account to save into your .env file.')
-    console.log(`ACCOUNT_PUBLIC_KEY=${publicKey.toBase58()}`)
-    console.log(`ACCOUNT_SECRET_KEY=${bs58.encode(secretKey)}`)
-    throw new Error("Missing account information")
+    const { publicKey, secretKey } = Keypair.generate();
+    console.log('# Here is a new account to save into your .env file.');
+    console.log(`ACCOUNT_PUBLIC_KEY=${publicKey.toBase58()}`);
+    console.log(`ACCOUNT_SECRET_KEY=${bs58.encode(secretKey)}`);
+    throw new Error('Missing account information');
   }
 
   return {
     publicKey: new PublicKey(publicKey),
     secretKey,
     secretKeyArray: new Uint8Array(bs58.decode(secretKey)),
-  }
-}
+  };
+};
 
-main().catch((e) => console.error(e))
+main().catch((e) => console.error(e));

modules/abstract-eth/src/lib/transactionBuilder.ts

@@ -248,7 +248,7 @@ export abstract class TransactionBuilder extends BaseTransactionBuilder {
       case TransactionType.FlushERC721:
         this.setContract(transactionJson.to);
         const erc721Data = decodeFlushERC721TokensData(transactionJson.data, transactionJson.to);
-        if (erc721Data.forwarderVersion >= 4) {
+        if (erc721Data.forwarderVersion === 4) {
           this.forwarderVersion(erc721Data.forwarderVersion);
         }
         this.forwarderAddress(erc721Data.forwarderAddress);
@@ -258,7 +258,7 @@ export abstract class TransactionBuilder extends BaseTransactionBuilder {
       case TransactionType.FlushERC1155:
         this.setContract(transactionJson.to);
         const erc1155Data = decodeFlushERC1155TokensData(transactionJson.data, transactionJson.to);
-        if (erc1155Data.forwarderVersion >= 4) {
+        if (erc1155Data.forwarderVersion === 4) {
           this.forwarderVersion(erc1155Data.forwarderVersion);
         }
         this.forwarderAddress(erc1155Data.forwarderAddress);

modules/abstract-eth/src/lib/utils.ts

@@ -259,7 +259,7 @@ export function decodeFlushERC721TokensData(
   forwarderAddress: string;
   tokenAddress: string;
   tokenId: string;
-  forwarderVersion: number;
+  forwarderVersion?: number;
 } {
   if (data.startsWith(flushERC721ForwarderTokensMethodIdV4)) {
     if (!to) {
@@ -284,7 +284,6 @@ export function decodeFlushERC721TokensData(
       forwarderAddress: addHexPrefix(forwarderAddress as string),
       tokenAddress: addHexPrefix(tokenAddress as string),
       tokenId: new BigNumber(bufferToHex(tokenId as Buffer)).toFixed(),
-      forwarderVersion: 0,
     };
   }
   throw new BuildTransactionError(`Invalid flush ERC721 bytecode: ${data}`);
@@ -332,7 +331,7 @@ export function decodeFlushERC1155TokensData(
   forwarderAddress: string;
   tokenAddress: string;
   tokenId: string;
-  forwarderVersion: number;
+  forwarderVersion?: number;
 } {
   if (data.startsWith(flushERC1155ForwarderTokensMethodIdV4)) {
     if (!to) {
@@ -357,7 +356,6 @@ export function decodeFlushERC1155TokensData(
       forwarderAddress: addHexPrefix(forwarderAddress as string),
       tokenAddress: addHexPrefix(tokenAddress as string),
       tokenId: new BigNumber(bufferToHex(tokenId as Buffer)).toFixed(),
-      forwarderVersion: 0,
     };
   }
   throw new BuildTransactionError(`Invalid flush ERC1155 bytecode: ${data}`);

modules/abstract-eth/test/unit/utils.ts

@@ -39,7 +39,7 @@ describe('Abstract ETH Utils', () => {
       const forwarderAddress = '0x8f977e912ef500548a0c3be6ddde9899f1199b81';
       const tokenAddress = '0xdf7decb1baa8f529f0c8982cbb4be50357195299';
       const tokenId = '12345';
-      const forwarderVersion = 0;
+      const forwarderVersion = 2;
 
       const encoded = flushERC721TokensData(forwarderAddress, tokenAddress, tokenId, forwarderVersion);
       const decoded = decodeFlushERC721TokensData(encoded);
@@ -48,7 +48,7 @@ describe('Abstract ETH Utils', () => {
       decoded.forwarderAddress.toLowerCase().should.equal(forwarderAddress.toLowerCase());
       decoded.tokenAddress.toLowerCase().should.equal(tokenAddress.toLowerCase());
       decoded.tokenId.should.equal(tokenId);
-      decoded.forwarderVersion.should.equal(0);
+      should.not.exist(decoded.forwarderVersion);
     });
 
     it('should decode flush ERC721 data correctly for v4+', () => {
@@ -64,7 +64,8 @@ describe('Abstract ETH Utils', () => {
       decoded.forwarderAddress.toLowerCase().should.equal(forwarderAddress.toLowerCase());
       decoded.tokenAddress.toLowerCase().should.equal(tokenAddress.toLowerCase());
       decoded.tokenId.should.equal(tokenId);
-      decoded.forwarderVersion.should.equal(4);
+      should.exist(decoded.forwarderVersion);
+      should.equal(decoded.forwarderVersion, 4);
     });
 
     it('should handle large token IDs for ERC721', () => {
@@ -133,7 +134,7 @@ describe('Abstract ETH Utils', () => {
       const forwarderAddress = '0x8f977e912ef500548a0c3be6ddde9899f1199b81';
       const tokenAddress = '0xdf7decb1baa8f529f0c8982cbb4be50357195299';
       const tokenId = '99999';
-      const forwarderVersion = 0;
+      const forwarderVersion = 2;
 
       const encoded = flushERC1155TokensData(forwarderAddress, tokenAddress, tokenId, forwarderVersion);
       const decoded = decodeFlushERC1155TokensData(encoded);
@@ -142,7 +143,7 @@ describe('Abstract ETH Utils', () => {
       decoded.forwarderAddress.toLowerCase().should.equal(forwarderAddress.toLowerCase());
       decoded.tokenAddress.toLowerCase().should.equal(tokenAddress.toLowerCase());
       decoded.tokenId.should.equal(tokenId);
-      decoded.forwarderVersion.should.equal(0);
+      should.not.exist(decoded.forwarderVersion);
     });
 
     it('should decode flush ERC1155 data correctly for v4+', () => {
@@ -158,7 +159,8 @@ describe('Abstract ETH Utils', () => {
       decoded.forwarderAddress.toLowerCase().should.equal(forwarderAddress.toLowerCase());
       decoded.tokenAddress.toLowerCase().should.equal(tokenAddress.toLowerCase());
       decoded.tokenId.should.equal(tokenId);
-      decoded.forwarderVersion.should.equal(4);
+      should.exist(decoded.forwarderVersion);
+      should.equal(decoded.forwarderVersion, 4);
     });
 
     it('should handle token ID 0 for ERC1155', () => {

modules/abstract-lightning/src/codecs/api/wallet.ts

@@ -52,11 +52,15 @@ export const WatchOnlyAccount = t.type({
 
 export type WatchOnlyAccount = t.TypeOf<typeof WatchOnlyAccount>;
 
-export const WatchOnly = t.type({
-  master_key_birthday_timestamp: t.string,
-  master_key_fingerprint: t.string,
-  accounts: t.array(WatchOnlyAccount),
-});
+export const WatchOnly = t.intersection([
+  t.type({
+    accounts: t.array(WatchOnlyAccount),
+  }),
+  t.partial({
+    master_key_birthday_timestamp: t.string,
+    master_key_fingerprint: t.string,
+  }),
+]);
 
 export type WatchOnly = t.TypeOf<typeof WatchOnly>;
 

modules/abstract-lightning/src/lightning/lightningUtils.ts

@@ -154,14 +154,18 @@ function convertXpubPrefix(xpub: string, purpose: ExtendedKeyPurpose, isMainnet:
 /**
  * Derives watch-only accounts from the master HD node for the given purposes and network.
  */
-function deriveWatchOnlyAccounts(masterHDNode: utxolib.BIP32Interface, isMainnet: boolean): WatchOnlyAccount[] {
+export function deriveWatchOnlyAccounts(
+  masterHDNode: utxolib.BIP32Interface,
+  isMainnet: boolean,
+  params: { onlyAddressCreationAccounts?: boolean } = { onlyAddressCreationAccounts: false }
+): WatchOnlyAccount[] {
   // https://github.com/lightningnetwork/lnd/blob/master/docs/remote-signing.md#required-accounts
   if (masterHDNode.isNeutered()) {
     throw new Error('masterHDNode must not be neutered');
   }
-
-  const purposes = [PURPOSE_WRAPPED_P2WKH, PURPOSE_P2WKH, PURPOSE_P2TR, PURPOSE_ALL_OTHERS] as const;
-
+  const purposes = params.onlyAddressCreationAccounts
+    ? ([PURPOSE_WRAPPED_P2WKH, PURPOSE_P2WKH, PURPOSE_P2TR] as const)
+    : ([PURPOSE_WRAPPED_P2WKH, PURPOSE_P2WKH, PURPOSE_P2TR, PURPOSE_ALL_OTHERS] as const);
   return purposes.flatMap((purpose) => {
     const maxAccount = purpose === PURPOSE_ALL_OTHERS ? 255 : 0;
     const coinType = purpose !== PURPOSE_ALL_OTHERS || isMainnet ? 0 : 1;