Merge branch 'main' into chore/dep-cleanup

Author: grothem

.env.example

@@ -4,6 +4,8 @@ TENDERLY_ACCOUNT=
 TENDERLY_PROJECT=
 NEXT_PUBLIC_ENV=prod
 NEXT_PUBLIC_ENABLE_GOVERNANCE=true
+NEXT_PUBLIC_USE_GOVERNANCE_CACHE=true
+NEXT_PUBLIC_GOVERNANCE_CACHE_URL=https://governance-cache-api.aave.com/graphql
 NEXT_PUBLIC_ENABLE_STAKING=true
 NEXT_PUBLIC_API_BASEURL=https://aave-api-v2.aave.com
 NEXT_PUBLIC_TRANSAK_APP_URL=https://global.transak.com
@@ -45,3 +47,6 @@ FAMILY_API_KEY=
 FAMILY_API_URL=
 COINGECKO_API_KEY=
 PLAIN_API_KEY=
+COMPLIANCE_API_URL=
+COMPLIANCE_SECRET=
+SENTRY_AUTH_TOKEN=

package.json

@@ -3,6 +3,9 @@
   "version": "3.0.1",
   "private": true,
   "license": "BSD-3-Clause",
+  "resolutions": {
+    "h3": "^1.15.5"
+  },
   "scripts": {
     "dev": "next dev",
     "dev:special": "NODE_OPTIONS='--inspect --max_old_space_size=8000' next dev",
@@ -28,15 +31,15 @@
     "test:headless": "export DOTENV_CONFIG_PATH='../../../.env.local' && cypress run --config-file './cypress/configs/local/full.config.ts'"
   },
   "dependencies": {
-    "@aave/contract-helpers": "1.37.0",
+    "@aave/contract-helpers": "1.37.1",
     "@aave/graphql": "^0.11.0",
-    "@aave/math-utils": "1.37.0",
+    "@aave/math-utils": "1.37.1",
     "@aave/react": "^0.8.2",
     "@amplitude/analytics-browser": "^2.13.0",
-    "@bgd-labs/aave-address-book": "^4.38.2",
-    "@cowprotocol/cow-sdk": "7.2.4",
-    "@cowprotocol/sdk-ethers-v5-adapter": "0.3.0",
-    "@cowprotocol/sdk-flash-loans": "1.6.0",
+    "@bgd-labs/aave-address-book": "^4.44.6",
+    "@cowprotocol/cow-sdk": "7.3.4",
+    "@cowprotocol/sdk-ethers-v5-adapter": "0.3.5",
+    "@cowprotocol/sdk-flash-loans": "1.7.4",
     "@emotion/cache": "11.10.3",
     "@emotion/react": "11.10.4",
     "@emotion/server": "latest",
@@ -89,7 +92,7 @@
     "remark-gfm": "^3.0.1",
     "sonner": "^2.0.3",
     "tiny-invariant": "^1.3.1",
-    "viem": "^2.37.6",
+    "viem": "^2.45.1",
     "wagmi": "^2.15.2",
     "zustand": "^5.0.2"
   },

pages/_app.page.tsx

@@ -18,6 +18,7 @@ import { TransactionEventHandler } from 'src/components/TransactionEventHandler'
 import { GasStationProvider } from 'src/components/transactions/GasStation/GasStationProvider';
 import { CowOrderToast } from 'src/components/transactions/Swap/modals/result/CowOrderToast';
 import { AppDataProvider } from 'src/hooks/app-data-provider/useAppDataProvider';
+import { ComplianceProvider } from 'src/hooks/compliance/compliance';
 import { ModalContextProvider } from 'src/hooks/useModal';
 import { SwapOrdersTrackingProvider } from 'src/hooks/useSwapOrdersTracking';
 import { Web3ContextProvider } from 'src/libs/web3-data-provider/Web3Provider';
@@ -160,38 +161,40 @@ export default function MyApp(props: MyAppProps) {
                 >
                   <Web3ContextProvider>
                     <AppGlobalStyles>
-                      <AddressBlocked>
-                        <SwapOrdersTrackingProvider>
-                          <ModalContextProvider>
-                            <SharedDependenciesProvider>
-                              <AppDataProvider>
-                                <GasStationProvider>
-                                  {getLayout(<Component {...pageProps} />)}
-                                  <SupplyModal />
-                                  <WithdrawModal />
-                                  <BorrowModal />
-                                  <RepayModal />
-                                  <CollateralChangeModal />
-                                  <ClaimRewardsModal />
-                                  <EmodeModal />
-                                  <FaucetModal />
-                                  <TransactionEventHandler />
-                                  <StakingMigrateModal />
-                                  <BridgeModal />
-                                  <ReadOnlyModal />
+                      <ComplianceProvider>
+                        <AddressBlocked>
+                          <SwapOrdersTrackingProvider>
+                            <ModalContextProvider>
+                              <SharedDependenciesProvider>
+                                <AppDataProvider>
+                                  <GasStationProvider>
+                                    {getLayout(<Component {...pageProps} />)}
+                                    <SupplyModal />
+                                    <WithdrawModal />
+                                    <BorrowModal />
+                                    <RepayModal />
+                                    <CollateralChangeModal />
+                                    <ClaimRewardsModal />
+                                    <EmodeModal />
+                                    <FaucetModal />
+                                    <TransactionEventHandler />
+                                    <StakingMigrateModal />
+                                    <BridgeModal />
+                                    <ReadOnlyModal />
 
-                                  {/* Swap Modals */}
-                                  <SwapModal />
-                                  <CollateralSwapModal />
-                                  <DebtSwapModal />
-                                  <CancelCowOrderModal />
-                                  <CowOrderToast />
-                                </GasStationProvider>
-                              </AppDataProvider>
-                            </SharedDependenciesProvider>
-                          </ModalContextProvider>
-                        </SwapOrdersTrackingProvider>
-                      </AddressBlocked>
+                                    {/* Swap Modals */}
+                                    <SwapModal />
+                                    <CollateralSwapModal />
+                                    <DebtSwapModal />
+                                    <CancelCowOrderModal />
+                                    <CowOrderToast />
+                                  </GasStationProvider>
+                                </AppDataProvider>
+                              </SharedDependenciesProvider>
+                            </ModalContextProvider>
+                          </SwapOrdersTrackingProvider>
+                        </AddressBlocked>
+                      </ComplianceProvider>
                     </AppGlobalStyles>
                   </Web3ContextProvider>
                 </ConnectKitProvider>

pages/api/preflight-compliance.ts

@@ -0,0 +1,85 @@
+import type { NextApiRequest, NextApiResponse } from 'next';
+import { isAddress } from 'viem';
+
+const COMPLIANCE_API_URL = process.env.COMPLIANCE_API_URL;
+const COMPLIANCE_SECRET = process.env.COMPLIANCE_SECRET;
+
+type ComplianceApiResponse = {
+  result: boolean;
+  lastChecked: string;
+  nextCheck: string;
+};
+
+type PreflightResponse = {
+  result: boolean;
+  nextCheck: string;
+};
+
+type ErrorResponse = {
+  error: string;
+};
+
+export default async function handler(
+  req: NextApiRequest,
+  res: NextApiResponse<PreflightResponse | ErrorResponse>
+) {
+  if (req.method !== 'GET') {
+    return res.status(405).json({ error: 'Method not allowed' });
+  }
+
+  const { address } = req.query;
+
+  if (!address || typeof address !== 'string') {
+    return res.status(400).json({ error: 'Address is required' });
+  }
+
+  // Validate address format to prevent SSRF attacks
+  // const ethereumAddressRegex = /^0x[a-fA-F0-9]{40}$/;
+  if (!isAddress(address)) {
+    return res.status(400).json({ error: 'Invalid address format' });
+  }
+
+  if (!COMPLIANCE_API_URL || !COMPLIANCE_SECRET) {
+    console.error('Compliance API not configured');
+    // Fail open in development if not configured
+    if (process.env.NODE_ENV === 'development') {
+      return res.status(200).json({
+        result: true,
+        nextCheck: new Date(Date.now() + 2 * 60 * 60 * 1000).toISOString(),
+      });
+    }
+    return res.status(500).json({ error: 'Service unavailable' });
+  }
+
+  try {
+    // use ?overrideResultStatus=false | true if you want to override the result
+
+    const response = await fetch(`${COMPLIANCE_API_URL}/check/${encodeURIComponent(address)}`, {
+      method: 'GET',
+      headers: {
+        'x-compliance-secret': COMPLIANCE_SECRET,
+      },
+    });
+
+    if (!response.ok) {
+      if (response.status === 401) {
+        console.error('Compliance API: Invalid secret');
+        return res.status(500).json({ error: 'Service configuration error' });
+      }
+      if (response.status === 400) {
+        return res.status(400).json({ error: 'Invalid address format' });
+      }
+      return res.status(500).json({ error: 'Compliance check failed' });
+    }
+
+    const data: ComplianceApiResponse = await response.json();
+
+    return res.status(200).json({
+      result: data.result,
+      nextCheck: data.nextCheck,
+    });
+  } catch (error) {
+    console.error('Compliance API error:', error);
+    return res.status(500).json({ error: 'Service unavailable' });
+  }
+}

pages/api/rpc-proxy.ts

@@ -1,5 +1,6 @@
 import { ChainId } from '@aave/contract-helpers';
 import { NextApiRequest, NextApiResponse } from 'next';
+import { mantle, megaeth } from 'viem/chains';
 
 // Documentation: ./server-side-rpc-proxy.md
 const NETWORK_CONFIG: Record<number, { network: string; apiKey: string }> = {
@@ -27,6 +28,8 @@ const NETWORK_CONFIG: Record<number, { network: string; apiKey: string }> = {
   [ChainId.soneium]: { network: 'soneium-mainnet', apiKey: process.env.SONEIUM_RPC_API_KEY || '' },
   [ChainId.ink]: { network: 'ink-mainnet', apiKey: process.env.INK_RPC_API_KEY || '' },
   [ChainId.plasma]: { network: 'plasma-mainnet', apiKey: process.env.PLASMA_RPC_API_KEY || '' },
+  [megaeth.id]: { network: 'megaeth-mainnet', apiKey: process.env.MEGAETH_RPC_API_KEY || '' },
+  [mantle.id]: { network: 'mantle-mainnet', apiKey: process.env.MANTLE_RPC_API_KEY || '' },
 
   // Testnets
   [ChainId.sepolia]: { network: 'eth-sepolia', apiKey: process.env.MAINNET_RPC_API_KEY || '' },

pages/api/sgho-apy.ts

@@ -30,7 +30,7 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse<
       endDate,
     });
 
-    res.status(200).json(result);
+    return res.status(200).json(result);
   } catch (error) {
     console.error('API route error:', error);
 
@@ -45,9 +45,9 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse<
         error: 'Failed to fetch data from external service',
       });
     }
-  }
 
-  res.status(500).json({
-    error: 'Internal server error',
-  });
+    return res.status(500).json({
+      error: 'Internal server error',
+    });
+  }
 }

pages/api/support-create-ticket.ts

@@ -58,7 +58,9 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
   }
 
   try {
-    const { email, text, walletAddress } = req.body;
+    const { email, text, walletAddress, country } = req.body;
+
+    const sanitizedCountry = typeof country === 'string' ? country.trim() : '';
 
     if (!email || !text) {
       return res.status(400).json({ message: 'Email and text are required.' });
@@ -71,6 +73,7 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
     if (!text?.trim()) {
       return res.status(400).json({ error: 'Missing inquiry' });
     }
+
     let sanitizedWalletAddress: string | undefined = undefined;
     if (walletAddress && typeof walletAddress === 'string') {
       const candidate = walletAddress.trim();
@@ -172,6 +175,11 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
             type: 'STRING',
             stringValue: sanitizedWalletAddress ?? '',
           },
+          {
+            key: 'webform_country',
+            type: 'STRING',
+            stringValue: sanitizedCountry,
+          },
         ],
       },
     };