MetaMask
Feat: use vite build tools to replace the outdated gulp and browserify to support ledger clear signing requirement
description:
This PR is prerequirement change to support ledger clear sign feature. This PR link to following issue and project plan #217 clear sign feature plan
The PR has done following change:
- remove all old gulp and browserify lib dependancy in
package.json - add
yarn 4.3.1 Pnpas pacakge management tools for the project. - Add vite to our project list ( i have compared and test
parcel jswhich ledger team recommend, and i have created branch to use parceljs for this feature, and it work with subpath export feature, however i find outparcelis not good enough for customisation and split the big files into chunk during build, therefore, i choose better build tools call vitejs for this feature) - update the ledgerHQ library to latest to support clear signing feature.
- Customise the
vite.config.jsfile to support legacy browsers and modern browsers. (will bundle both legacy minified files and modern minified files to support both modern browsers and legacy browsers)
:warning: Merge to
gh-pagesmay deploy the code to live in the public, which will affect themetamask extensionuser. so we need to double check this change didn't break the current ledger feature in metamask extension before merge the PR.
Report is too large to display inline. View full report↗︎
Next steps
Mark a package as acceptable risk
To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all
@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/@npmcli/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]@SocketSecurity ignore npm/[email protected]
![socket-security[bot] avatar](https://avatars.githubusercontent.com/in/156372?v=4 "Published by a pub.dev verified publisher"){kind=small}