refactor(sdk-coin-near): break down token enablement validation into separate functions

SimonVutov · SimonVutov · commit cf059f211e92 · 2025-09-16T09:16:05.000-04:00
- Split validateTokenEnablementTransaction into individual validation functions - Create validateSigner, validateReceiver, validatePublicKey, validateActions functions - Optimize address validation using filter() for O(n) complexity - Improve code readability and maintainability with single-responsibility functions - Maintain same validation logic while improving code structure TICKET: WP-5782
diff --git a/modules/sdk-coin-atom/package.json b/modules/sdk-coin-atom/package.json
@@ -53,7 +53,7 @@
     "@bitgo/sdk-api": "^1.68.3",
     "@bitgo/sdk-test": "^9.0.9",
     "@types/lodash": "^4.14.183",
-    "axios": "^1.11.0"
+    "axios": "^1.12.2"
   },
   "gitHead": "18e460ddf02de2dbf13c2aa243478188fb539f0c"
 }
diff --git a/modules/sdk-coin-near/src/near.ts b/modules/sdk-coin-near/src/near.ts
@@ -1085,26 +1085,66 @@ export class Near extends BaseCoin {
     const freshTxData = freshTx.toJson();
     const originalTxData = transaction.toJson();
 
-    // Verify key transaction fields match to prevent tampering
-    if (
-      freshTxData.signerId !== originalTxData.signerId ||
-      freshTxData.receiverId !== originalTxData.receiverId ||
-      freshTxData.publicKey !== originalTxData.publicKey ||
-      freshTxData.actions.length !== originalTxData.actions.length
-    ) {
-      throw new Error('Transaction hex does not match provided transaction');
+    // Validate each aspect of the transaction separately
+    this.validateSigner(originalTxData, freshTxData);
+    this.validateReceiver(originalTxData, freshTxData);
+    this.validatePublicKey(originalTxData, freshTxData);
+    this.validateActions(originalTxData, freshTxData);
+    this.validateAddresses(txParams, explainedTx);
+  }
+
+  //Validates that the signer ID matches between original and fresh transaction
+  private validateSigner(originalTxData: any, freshTxData: any): void {
+    if (originalTxData.signerId !== freshTxData.signerId) {
+      throw new Error(
+        `Error on token enablements: signers are not the same, expected ${originalTxData.signerId} but got ${freshTxData.signerId}`
+      );
     }
+  }
 
-    // Validate addresses match between parameters and explained transaction
-    if (txParams.recipients && explainedTx.outputs) {
-      const expectedAddresses = txParams.recipients.map((r) => r.address);
-      const explainedAddresses = explainedTx.outputs.map((o) => o.address);
+  //Validates that the receiver ID matches between original and fresh transaction
+  private validateReceiver(originalTxData: any, freshTxData: any): void {
+    if (originalTxData.receiverId !== freshTxData.receiverId) {
+      throw new Error(
+        `Error on token enablements: receivers are not the same, expected ${originalTxData.receiverId} but got ${freshTxData.receiverId}`
+      );
+    }
+  }
 
-      for (const addr of expectedAddresses) {
-        if (!explainedAddresses.includes(addr)) {
-          throw new Error(`Address mismatch: ${addr}`);
-        }
-      }
+  //Validates that the public key matches between original and fresh transaction
+  private validatePublicKey(originalTxData: any, freshTxData: any): void {
+    if (originalTxData.publicKey !== freshTxData.publicKey) {
+      throw new Error(
+        `Error on token enablements: public keys are not the same, expected ${originalTxData.publicKey} but got ${freshTxData.publicKey}`
+      );
+    }
+  }
+
+  //Validates that the actions length matches between original and fresh transaction
+  private validateActions(originalTxData: any, freshTxData: any): void {
+    if (originalTxData.actions.length !== freshTxData.actions.length) {
+      throw new Error(
+        `Error on token enablements: actions length mismatch, expected ${originalTxData.actions.length} but got ${freshTxData.actions.length}`
+      );
+    }
+  }
+
+  //Validates that addresses match between parameters and explained transaction
+  private validateAddresses(txParams: VerifyTransactionOptions['txParams'], explainedTx: TransactionExplanation): void {
+    if (!txParams.recipients || !explainedTx.outputs) {
+      return;
+    }
+
+    if (txParams.recipients.length !== explainedTx.outputs.length) {
+      throw new Error('Error on token enablements: output count does not match recipients count');
+    }
+
+    const mismatchedAddresses = txParams.recipients
+      .filter((recipient, index) => recipient.address !== explainedTx.outputs[index].address)
+      .map((recipient) => recipient.address);
+
+    if (mismatchedAddresses.length > 0) {
+      throw new Error(`Address mismatch: ${mismatchedAddresses.join(', ')}`);
     }
   }
 }
diff --git a/modules/sdk-coin-sui/package.json b/modules/sdk-coin-sui/package.json
@@ -56,7 +56,7 @@
     "@bitgo/sdk-api": "^1.68.3",
     "@bitgo/sdk-test": "^9.0.9",
     "@types/lodash": "^4.14.183",
-    "axios": "^1.11.0",
+    "axios": "^1.12.2",
     "debug": "^4.3.4"
   },
   "gitHead": "18e460ddf02de2dbf13c2aa243478188fb539f0c"
diff --git a/modules/utxo-lib/package.json b/modules/utxo-lib/package.json
@@ -67,7 +67,7 @@
   "devDependencies": {
     "@types/fs-extra": "^9.0.12",
     "@types/node": "^22.15.29",
-    "axios": "^1.11.0",
+    "axios": "^1.12.2",
     "debug": "^3.1.0",
     "fs-extra": "^9.1.0"
   },
diff --git a/package.json b/package.json
@@ -87,7 +87,7 @@
     "web3-utils": "4.2.1",
     "@polkadot/api": "14.1.1",
     "elliptic": "^6.6.1",
-    "axios": "^1.11.0",
+    "axios": "^1.12.2",
     "canvg": "4.0.3",
     "**/stellar-sdk/**/bignumber.js": "4.1.0",
     "**/stellar-base/**/bignumber.js": "4.1.0",
@@ -135,7 +135,7 @@
     "test:prepare-release": "mocha --require tsx ./scripts/tests/prepareRelease/prepare-release-main.test.ts"
   },
   "dependencies": {
-    "axios": "^1.11.0",
+    "axios": "^1.12.2",
     "terser": "^5.14.2",
     "tmp": "^0.2.3"
   },
diff --git a/yarn.lock b/yarn.lock
@@ -7482,10 +7482,10 @@ aws4@^1.8.0:
   resolved "https://registry.npmjs.org/aws4/-/aws4-1.13.2.tgz"
   integrity sha512-lHe62zvbTB5eEABUVi/AwVh0ZKY9rMMDhmm+eeyuuUQbQ3+J+fONVQOZyj+DdrvD4BY33uYniyRJ4UJIaSKAfw==
 
-axios@0.25.0, axios@0.27.2, axios@1.7.4, axios@^0.21.2, axios@^0.26.1, axios@^1.0.0, axios@^1.11.0, axios@^1.3.1:
-  version "1.11.0"
-  resolved "https://registry.npmjs.org/axios/-/axios-1.11.0.tgz"
-  integrity sha512-1Lx3WLFQWm3ooKDYZD1eXmoGO9fxYQjrycfHFC8P0sCfQVXyROp0p9PFWBehewBOdCwHc+f/b8I0fMto5eSfwA==
+axios@0.25.0, axios@0.27.2, axios@1.7.4, axios@^0.21.2, axios@^0.26.1, axios@^1.0.0, axios@^1.12.2, axios@^1.3.1:
+  version "1.12.2"
+  resolved "https://registry.npmjs.org/axios/-/axios-1.12.2.tgz#6c307390136cf7a2278d09cec63b136dfc6e6da7"
+  integrity sha512-vMJzPewAlRyOgxV2dU0Cuz2O8zzzx9VYtbJOaBgXFeLc4IV/Eg50n4LowmehOOR61S8ZMpc2K5Sa7g6A4jfkUw==
   dependencies:
     follow-redirects "^1.15.6"
     form-data "^4.0.4"

Original file line number	Diff line number	Diff line change
`@@ -53,7 +53,7 @@`
`53`	`53`	`"@bitgo/sdk-api": "^1.68.3",`
`54`	`54`	`"@bitgo/sdk-test": "^9.0.9",`
`55`	`55`	`"@types/lodash": "^4.14.183",`
`56`		`- "axios": "^1.11.0"`
	`56`	`+ "axios": "^1.12.2"`
`57`	`57`	`},`
`58`	`58`	`"gitHead": "18e460ddf02de2dbf13c2aa243478188fb539f0c"`
`59`	`59`	`}`