Conversation
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
| "0xfa05A73FfE78ef8f1a739473e462c54bae6567D9": {}, | ||
| "0xfeF4185594457050cC9c23980d301908FE057Bb1": {}, | ||
| "0xfec0cF7fE078a500abf15F1284958F22049c2C7e": {}, | ||
| "0xff56Cc6b1E6dEd347aA0B7676C85AB0B3D08B0FA": {} |
There was a problem hiding this comment.
All token metadata stripped to empty objects
High Severity
Every token entry in contract-map.json has been replaced with {}, removing all name, logo, erc20, symbol, and decimals metadata for hundreds of existing tokens. This includes critical tokens like USDC, USDT, WETH, DAI, and many others. The file is consumed via index.js as the module's primary export, so any downstream consumer will receive empty objects for every token address. The existing test suite (accessing contract.logo.length) will also crash on undefined.
| "0x40FD72257597aA14C7231A7B1aaa29Fce868F677": {}, | ||
| "0x4116f14b6d462B32a1C10F98049E4B1765e34FA9": {}, | ||
| "0x419D0d8BdD9aF5e606Ae2232ed285Aff190E711b": {}, | ||
| "0x419eca43db68e868e68d1ab460c8ac32523c7540": {}, |
There was a problem hiding this comment.
FUSDT address not EIP-55 checksummed, fails validation
High Severity
The new FUSDT entry uses an all-lowercase address 0x419eca43db68e868e68d1ab460c8ac32523c7540 instead of the EIP-55 checksummed form 0x419ecA43dB68E868E68d1aB460c8AC32523c7540. The test suite explicitly validates that all keys pass isValidChecksumAddress, so this entry will fail the existing checksum test. Every other address in the file uses mixed-case checksummed format.
| "0x40FD72257597aA14C7231A7B1aaa29Fce868F677": {}, | ||
| "0x4116f14b6d462B32a1C10F98049E4B1765e34FA9": {}, | ||
| "0x419D0d8BdD9aF5e606Ae2232ed285Aff190E711b": {}, | ||
| "0x419eca43db68e868e68d1ab460c8ac32523c7540": {}, |
There was a problem hiding this comment.
New FUSDT entry contains no token metadata
High Severity
The FUSDT token entry is {} with no metadata fields. According to the PR description, it needs name, decimals: 18, erc20: true, symbol: "FUSDT", and a logo. Without these fields, the token will be unrecognizable to consumers — no name, no symbol, no decimal precision, and no logo rendering. There's also no corresponding metadata JSON file under the metadata/eip155:1/ directory.
1 participant
Adding metadata for FUSDT (Flash USDT ERC20).
Note
High Risk
High risk because it removes all token/NFT metadata (
name,symbol,decimals,logo,erc20/erc721) fromcontract-map.json, which will likely break any code paths expecting that data for UI display or token handling.Overview
Massively changes
contract-map.jsonfrom a metadata registry to an address allowlist. The previous per-contract fields (e.g.,name,symbol,decimals,logo,erc20/erc721) are removed and every address now maps to{}.Adds the FUSDT contract address
0x419ecA43dB68E868E68d1aB460c8AC32523c7540to the list, but without any associated metadata.Written by Cursor Bugbot for commit 51d1627. This will update automatically on new commits. Configure here.