feat: always use snaps to resolve domains; include preinstalled ENS resolver snap

[mirceanis]

Description

The embedded ENS resolution logic is being replaced by snaps that use endowment:name-lookup.
This change-set also includes a preinstalled snap that does ENS resolution including ENS multi-coin functionality.

The ENS resolver snap will use the Ethereum provider from the extension on Ethereum mainnet and ENS supported testnets and will revert to an Infura JSON-RPC when the extension is connected to other networks. On other networks it tries to resolve the network-specific ENS address and if none exists will try to resolve the mainnet address (with a ⚠️ warning) as long as that address appears to be an externally owned account.

Most of the relevant changes are in domains.js.
Since the preinstalled snap uses ethers v6 while the extension depends on ethers v5.7 there are some changes in the lavamoat policies. Also, the more recent ethers version requires a different set of mocks, requiring a small change in the e2e test.

Related issues

fixes https://github.com/MetaMask/MetaMask-planning/issues/2403
closes #18035
fixes #18648
fixes #22797
fixes #8556
fixes MetaMask/specifications#11

Manual testing steps

1. While on Ethereum mainnet, start a send flow
2. Type an ENS name in the recipient field(example vitalik.eth), pick the resulting address. (this should be identical to previous behavior)
3. Switch to a L2
4. Type an EOA ENS name in the recipient field (example vitalik.eth), observe an address being resolved with a ⚠️warning.
5. Type an ENS name that would resolve to a contract on mainnet (example uniswap.eth). Observe No resolution for domain provided. error.

Screenshots/Recordings

Before

After

after.mov

Pre-merge author checklist

• I've followed MetaMask Contributor Docs and MetaMask Extension Coding Standards.
• I've completed the PR template to the best of my ability
• I’ve included tests if applicable
• I’ve documented my code using JSDoc format if applicable
• I’ve applied the right labels on the PR (see labeling guidelines). Not required for external contributors.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[socket-security]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/@metamask/[email protected]

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

[mirceanis]

@SocketSecurity ignore npm/@metamask/[email protected]

[codecov]

Codecov Report

Attention: Patch coverage is 33.33333% with 20 lines in your changes missing coverage. Please review.

Project coverage is 70.05%. Comparing base (ca6fd53) to head (0afeb71).
Report is 23 commits behind head on develop.

Files with missing lines	Patch %	Lines
ui/ducks/domains.js	5.26%	18 Missing ⚠️
...s/send/components/domain-input-resolution-cell.tsx	0.00%	2 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##           develop   #26242      +/-   ##
===========================================
+ Coverage    69.96%   70.05%   +0.09%     
===========================================
  Files         1442     1442              
  Lines        50100    50009      -91     
  Branches     14006    13965      -41     
===========================================
- Hits         35049    35029      -20     
+ Misses       15051    14980      -71     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[mirceanis]

Not directly used, but expected by @account-abstraction/contracts during tests.
Without this, tests would fail as the transitive ethers v6+ would get used.

[metamaskbot]

Builds ready [83e07e3]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (539 ± 370 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	77	490	169	113	54
		domContentLoaded	9	148	40	34	16
		load	48	2103	539	770	370
		domInteractive	9	148	40	34	16

Bundle size diffs [🚀 Bundle size reduced!]

• background: -105 Bytes (-0.00%)
• ui: 0 Bytes (0.00%)
• common: -849 Bytes (-0.01%)

[metamaskbot]

Builds ready [546b2bc]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6
  • common: 0, 1, 10, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (319 ± 271 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	67	274	126	66	32
		domContentLoaded	9	164	41	50	24
		load	40	1735	319	563	271
		domInteractive	9	164	41	50	24

Bundle size diffs [🚨 Warning! Bundle size has increased!]

• background: 10.63 KiB (0.30%)
• ui: 0 Bytes (0.00%)
• common: 24.74 KiB (0.35%)

[danjm]

@metamaskbot update-policies

[metamaskbot]

No policy changes

[metamaskbot]

Builds ready [0afeb71]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (1746 ± 80 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	288	2094	1660	349	168
		domContentLoaded	1482	2068	1733	168	81
		load	1500	2084	1746	166	80
		domInteractive	24	65	33	12	6

Bundle size diffs [🚨 Warning! Bundle size has increased!]

• background: 249.42 KiB (7.07%)
• ui: 74.95 KiB (1.04%)
• common: 91.5 KiB (1.14%)

[sonarcloud]

Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[metamaskbot]

Builds ready [2dcdfe4]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (1744 ± 53 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	235	1930	1591	454	218
		domContentLoaded	1509	1921	1719	103	49
		load	1519	2008	1744	111	53
		domInteractive	13	151	40	28	14

Bundle size diffs [🚨 Warning! Bundle size has increased!]

• background: 249.42 KiB (7.05%)
• ui: 74.95 KiB (1.04%)
• common: 91.5 KiB (1.14%)

[hmalik88]

LGTM

[jpuri]

Change in files owned by confirmations team look good.

[weizman]

lgtm (strictly policies):

• new globals:
  • fetch and WebSocket introduced by a different version of the pkg (so they're not new)
  • define is also already used previously
  • could not find other new globals that may be risky
• new packages
  • packages consumption seems fine too, just a reorg
• I only checked main/policy.json, assuming the rest are similar (worth a check @mirceanis)