feat(perps): sync controller code with extension

[abretonc7s]

Description

Makes @metamask/perps-controller safe to consume from the MetaMask extension without pulling @myx-trade/sdk into the static webpack bundle or violating the LavaMoat policy. Mobile owns the source-of-truth for the perps controller package via scripts/perps/validate-core-sync.sh, so the fix is made in mobile and then rsync'd to core on a matching branch.

Companion core PR: MetaMask/core#8398 — supersedes MetaMask/core#8374.

What changed

1. app/controllers/perps/PerpsController.ts — add /* webpackIgnore: true */ magic comment to the MYXProvider dynamic import() so webpack (extension) skips static resolution of the intentionally-unshipped module. Metro (mobile) ignores the magic comment, so runtime behavior on mobile is unchanged.

2. app/controllers/perps/index.ts — remove 8 MYX adapter functions from the public barrel (adaptMarketFromMYX, adaptPriceFromMYX, adaptMarketDataFromMYX, filterMYXExclusiveMarkets, isOverlappingMarket, buildPoolSymbolMap, buildSymbolPoolsMap, extractSymbolFromPoolId). These are still used internally by MYXProvider, which imports them via relative path ../utils/myxAdapter. No runtime change in mobile — the functions are still available to MYXProvider.

3. app/controllers/perps/utils/index.ts — drop the export * from './myxAdapter' barrel re-export so the utils index no longer transitively re-exports MYX symbols.

4. Drift fix — perpsConnectionAttemptContext — moved from app/util/perpsConnectionAttemptContext.ts into app/controllers/perps/utils/perpsConnectionAttemptContext.ts and exported from @metamask/perps-controller so:

   • HyperLiquidClientService (inside the perps package) imports it via a relative path that stays inside the synced directory — required for the core sync to build.
   • PerpsConnectionManager (outside the perps package) imports it from @metamask/perps-controller — satisfies the no-restricted-imports rule for code outside app/controllers/perps/.

5. .eslintrc.js — align mobile perps override with core's base rules. Added BinaryExpression[operator='in'], WithStatement, and SequenceExpression selectors to the existing no-restricted-syntax rule in the app/controllers/perps/** override. Mobile's override was missing these, which meant 'x' in y type-guards passed mobile lint silently and then landed in core as new no-restricted-syntax suppressions at sync time. The override now mirrors what @metamask/eslint-config enforces in core, catching the violations at source.

6. Replace 'x' in y with hasProperty(y, 'x') across 8 perps-controller files — HyperLiquidProvider.ts, HyperLiquidSubscriptionService.ts, TradingService.ts, marketDataTransform.ts, hyperLiquidAdapter.ts, types/index.ts, types/transactionTypes.ts, utils/errorUtils.ts. Uses hasProperty from @metamask/utils (the idiomatic replacement documented in core's eslint config). 24 of the 28 occurrences were converted cleanly; the remaining 4 are kept as 'in' behind /* eslint-disable no-restricted-syntax */ blocks because hasProperty narrows the KEY but not the discriminated-union branch — losing access to .filled, .resting, .oid, .totalSz on the HyperLiquid SDK types and losing keyof typeof HYPERLIQUID_ASSET_CONFIGS narrowing. Each disable comment is documented with the narrowing rationale.

7. scripts/perps/validate-core-sync.sh — hardened preflight + per-file suppression delta check.

   • Preflight freshness check (chore(perps-sync): hard-fail sync script when core main has drift): the previous preflight only compared the core working tree against .sync-state.json.lastSyncedCoreCommit, so it could not detect that someone else had merged a competing perps-controller change into origin/main while this branch was in review. That gap let #8398 land in a conflicting state with #8333. The new check at the top of step_conflict_check fetches origin/main, runs git rev-list --count HEAD..origin/main -- packages/perps-controller/, and hard-fails (not warns) with the offending commit list + a merge suggestion if any such commits exist. Gracefully degrades to WARN if offline or if origin/main is missing.
   • Per-file/per-rule suppression delta check (chore(perps-sync): hard-fail on per-file suppression delta increase): step 6 now snapshots the per-file/per-rule suppression counts from eslint-suppressions.json BEFORE running --fix / --suppress-all / --prune-suppressions, then diffs against the post-run counts and hard-fails if any (file, rule) pair's count INCREASED. Reducing counts (mobile fixes removing previously-suppressed violations) is always allowed. Increases mean the current sync is introducing NEW violations that would land in core as fresh suppressions and must be fixed at source. The script prints every offending file+rule pair and points at hasProperty() from @metamask/utils as the canonical replacement. Replaces the old "WARN if count > 20" heuristic. This is the canonical local detection point for the problem that "it should have been detected locally!" — a violation now fails the sync script at step 6 BEFORE the core PR is opened.

Not included (intentional)

An earlier draft of this PR also declared MetaMetricsController:trackEvent in PerpsControllerAllowedActions to let the extension drop a type cast. That change was reverted because mobile has no MetaMetricsController — it uses a MetaMetrics singleton (app/core/Analytics/MetaMetrics.ts) — so adding the action to the allowed-actions union forced @metamask/messenger's parent type to narrow to never and broke app/core/Engine/messengers/perps-controller-messenger/index.ts. The extension keeps its existing as unknown as PackagePerpsControllerMessenger cast workaround until both host apps share a real MetaMetricsController.

Changelog

CHANGELOG entry: null

Related issues

Fixes: TAT-2863
Related: MetaMask/core#8374 (superseded by companion core PR #8398)

Manual testing steps

Feature: Perps controller behavior unchanged after MYX export cleanup

  Scenario: User opens the Perps tab on testnet
    Given the wallet is unlocked and funded on HyperLiquid testnet
    When user navigates to the Perps tab
    Then the markets list loads
    And the HyperLiquid provider is selected by default

  Scenario: User opens and closes a BTC long position
    Given the wallet has testnet funds
    When user opens a $11 BTC long market order
    Then a position appears in the positions list
    When user closes the position at 100%
    Then the position is removed from the positions list

Automated verification (all passing locally):

• yarn lint on all touched files — clean
• NODE_OPTIONS='--max-old-space-size=8192' npx tsc --noEmit — clean (full, no incremental cache)
• yarn jest app/controllers/perps/PerpsController.test.ts app/controllers/perps/services/HyperLiquidSubscriptionService.test.ts app/controllers/perps/services/TradingService.test.ts — 412 passing
• bash scripts/perps/validate-core-sync.sh --core-path …/core — all 9 steps PASS. Suppression count drops from 30 → 6 after the lint cleanup.

Screenshots/Recordings

N/A — this PR is a bundler / import-graph + lint cleanup with zero UI impact. Mobile runtime behavior is unchanged because:

• The webpackIgnore magic comment is extension/webpack-only; Metro ignores it.
• The 8 removed exports are still used internally by MYXProvider via relative import.
• perpsConnectionAttemptContext keeps its module-level state, just at a new file path.
• hasProperty(obj, key) is runtime-equivalent to key in obj for plain objects (both delegate to Object.prototype.hasOwnProperty semantics via the prototype chain).

Pre-merge author checklist

• I've followed MetaMask Contributor Docs and MetaMask Mobile Coding Standards.
• I've completed the PR template to the best of my ability
• I've included tests if applicable (existing tests untouched; new location for moved test file is covered by the same suite)
• I've documented my code using JSDoc format if applicable
• I've applied the right labels on the PR (see labeling guidelines). Not required for external contributors.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.

---

Note

Medium Risk
Medium risk because it changes perps controller module boundaries/exports and touches trading/provider code paths (type-guard refactors and a few scoped lint suppressions), plus alters sync script behavior that can block releases if misconfigured.

Overview
Improves extension-safe consumption of @metamask/perps-controller by ensuring the optional MYXProvider stays excluded from webpack’s static bundle and by removing MYX adapter re-exports from the public perps barrels.

Aligns mobile’s perps linting with core by restricting the in operator (and a couple of other syntaxes) and refactors multiple perps files to use hasProperty() instead of 'key' in obj, keeping a few documented in usages behind targeted no-restricted-syntax disables where TypeScript narrowing is required.

Moves/exports perpsConnectionAttemptContext under the perps utils surface so in-package code imports remain sync-safe and out-of-package callers use the package export, and hardens scripts/perps/validate-core-sync.sh with an origin/main freshness check plus a per-file/per-rule eslint suppression delta hard-fail (including prettier formatting of eslint-suppressions.json).

^{Reviewed by Cursor Bugbot for commit 1f90a9b. Bugbot is set up for automated code reviews on this repo. Configure here.}

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit a41b258. Configure here.}

[github-actions]

🔍 Smart E2E Test Selection

• Selected E2E tags: SmokePerps, SmokeWalletPlatform, SmokeConfirmations
• Selected Performance tags: @PerformancePreps
• Risk Level: medium
• AI Confidence: 82%

click to see 🤖 AI reasoning details

E2E Test Selection:
The changes in this PR are primarily code quality/refactoring changes to the Perps controller and related services:

1. 'x' in obj → hasProperty(obj, 'x') replacements across HyperLiquidProvider, HyperLiquidSubscriptionService, HyperLiquidClientService, errorUtils, hyperLiquidAdapter, marketDataTransform, transactionTypes, and types/index.ts. These are functionally equivalent for runtime behavior but ensure ESLint compliance. The hasProperty utility from @metamask/utils performs the same check. Risk: low-medium (could theoretically affect type narrowing in edge cases).

2. perpsConnectionAttemptContext module moved from app/util/perpsConnectionAttemptContext.ts to app/controllers/perps/utils/perpsConnectionAttemptContext.ts. Import paths updated in PerpsConnectionManager.ts and HyperLiquidClientService.ts. This is a file rename/move - if any import was missed, it could break the connection flow.

3. PerpsController.ts - Added /* webpackIgnore: true */ to MYX provider dynamic import. This is a bundler hint, not a logic change.

4. index.ts exports - Removed MYX adapter exports, added perpsConnectionAttemptContext exports. This changes the public API of the perps-controller package.

5. .eslintrc.js - New ESLint rules (no runtime impact).

6. scripts/perps/validate-core-sync.sh - CI tooling only (no runtime impact).

Tag Selection Rationale:

• SmokePerps: Directly tests the Perps feature. The refactored code (HyperLiquidProvider, HyperLiquidSubscriptionService, TradingService, PerpsConnectionManager) is core to the Perps trading flow. Must run to verify the refactoring didn't break Add Funds, balance display, or connection flows.
• SmokeWalletPlatform: Per tag description, Perps is a section inside the Trending tab. Changes to Perps views/controllers affect Trending. Also required when selecting SmokePerps.
• SmokeConfirmations: Per tag description, when selecting SmokePerps, also select SmokeConfirmations since Add Funds deposits are on-chain transactions.

Not selected:

• SmokeTrade: The changes don't touch swap/bridge flows directly, and the Perps entry point via TradeWalletActions is not modified.
• Other tags: No changes to accounts, identity, network, ramps, or other features.

Performance Test Selection:
The changes touch core Perps controller services (HyperLiquidProvider, HyperLiquidSubscriptionService, TradingService, PerpsConnectionManager) which are involved in market data loading, position management, and add funds flows. While the changes are primarily refactoring (hasProperty replacements, import path moves), the PerpsConnectionManager connection flow and HyperLiquidSubscriptionService market data processing are performance-sensitive paths. Running @PerformancePreps validates that the refactoring didn't introduce any performance regressions in the perps market loading, position management, or add funds flow.

View GitHub Actions results

[sonarqubecloud]

Quality Gate failed

Failed conditions
67.2% Coverage on New Code (required ≥ 80%)

See analysis details on SonarQube Cloud

[github-actions]

✅ E2E Fixture Validation — Schema is up to date
15 value mismatches detected (expected — fixture represents an existing user).
View details