fix(23804): unable to add QR code account

[dawnseeker8]

Description

The connection via QR code on Hardware wallet is not proceeding past scanning the QR code. Functionality is working in the release version v11.13.1.

After debuggin the code and discover that the issue is caused by Keyring Controller upgraded to 13.0.0. and #addQRKeyring function have bug to pass a empty accounts array as parameters to keyring, cause the Keystone MetamaskKeyring default properties all are undefined during deserialise() process.

This fix patch the @metamask/keyring-controller to remove the empty array passed to KeyStone MetamaskKeyring so that all default properies in keyring will remain the same.

Related issues

Fixes: #23804

Manual testing steps

1. On your hardware wallet, fetch the QR code for MetaMask
2. Proceed to add hardware wallet from the account drop-down selector
3. Select QR-based and Continue
4. Scan the QR code from the hardware wallet
5. user should be able to select QR code account and imported

Screenshots/Recordings

Before

Screen.Recording.2024-03-26.at.21.01.01.mov

After

Screen.Recording.2024-04-09.at.09.15.28.mov

Pre-merge author checklist

• I’ve followed MetaMask Coding Standards.
• I've completed the PR template to the best of my ability
• I’ve included tests if applicable
• I’ve documented my code using JSDoc format if applicable
• I’ve applied the right labels on the PR (see labeling guidelines). Not required for external contributors.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@npmcli/fs@2.1.2	filesystem	+1	43.1 kB	gar
npm/aproba@2.0.0	None	0	8.05 kB	iarna
npm/cacache@16.1.3	filesystem	+7	142 kB	lukekarrys
npm/make-fetch-happen@10.2.1	environment, network	+8	298 kB	gar
npm/minipass-fetch@2.1.2	environment, network	+3	526 kB	gar
npm/nopt@6.0.0	environment	+1	28.7 kB	gar
npm/npmlog@6.0.2	None	0	17.1 kB	lukekarrys
npm/socks@2.8.1	network	+3	518 kB	joshglazebrook
npm/ssri@9.0.1	None	0	37.5 kB	nlf
npm/unique-filename@2.0.1	None	+2	18 kB	lukekarrys

🚮 Removed packages: npm/socks@2.8.3

View full report↗︎

[socket-security]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/@npmcli/fs@2.1.2, npm/@types/pbkdf2@3.1.0, npm/@types/secp256k1@4.0.3, npm/aproba@2.0.0, npm/cacache@16.1.3, npm/make-fetch-happen@10.2.1, npm/minipass-collect@1.0.2, npm/minipass-fetch@2.1.2, npm/minipass@3.3.5, npm/node-gyp@9.3.0, npm/nopt@6.0.0, npm/npmlog@6.0.2, npm/socks@2.8.1, npm/ssri@9.0.1, npm/unique-filename@2.0.1, npm/unique-slug@3.0.0

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

[gantunesr]

Dimiss approval

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 67.46%. Comparing base (255a961) to head (bffd110).
Report is 3 commits behind head on develop.

Additional details and impacted files

@@           Coverage Diff            @@
##           develop   #23903   +/-   ##
========================================
  Coverage    67.46%   67.46%           
========================================
  Files         1244     1244           
  Lines        48777    48777           
  Branches     12724    12724           
========================================
  Hits         32907    32907           
  Misses       15870    15870           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[metamaskbot]

Builds ready [6d909ed]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 2, 3, 4, 5, 6
  • content-script: 0
  • ui: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (469 ± 360 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	74	158	108	23	11
		domContentLoaded	11	67	33	15	7
		load	62	2190	469	750	360
		domInteractive	11	67	33	15	7

Bundle size diffs [🚀 Bundle size reduced!]

• background: -14 Bytes (-0.00%)
• ui: 0 Bytes (0.00%)
• common: 0 Bytes (0.00%)

[gantunesr]

@metamaskbot update-policies

[metamaskbot]

Policies updated

[metamaskbot]

Builds ready [eab6341]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5
  • common: 0, 1, 2, 3, 4, 5, 6
  • content-script: 0
  • ui: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (581 ± 414 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	69	218	106	31	15
		domContentLoaded	12	48	26	10	5
		load	56	2245	581	861	414
		domInteractive	12	48	26	10	5

Bundle size diffs [🚀 Bundle size reduced!]

• background: -14 Bytes (-0.00%)
• ui: 0 Bytes (0.00%)
• common: 0 Bytes (0.00%)

[benjisclowder]

QA passed.

[benjisclowder]

QA passed

[Gudahtt]

@metamaskbot update-policies

[metamaskbot]

Policies updated

[metamaskbot]

Builds ready [7f90d82]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6
  • common: 0, 1, 2, 3, 4, 5, 6, 7, 8
  • content-script: 0
  • ui: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (664 ± 492 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	59	207	100	37	18
		domContentLoaded	9	44	20	9	4
		load	47	2735	664	1025	492
		domInteractive	9	44	20	9	4

Bundle size diffs [🚀 Bundle size reduced!]

• background: -14 Bytes (-0.00%)
• ui: 0 Bytes (0.00%)
• common: 0 Bytes (0.00%)

[benjisclowder]

QA passed.

[metamaskbot]

Builds ready [bffd110]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6
  • common: 0, 1, 2, 3, 4, 5, 6, 7, 8
  • content-script: 0
  • ui: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (794 ± 513 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	71	350	134	71	34
		domContentLoaded	10	74	30	17	8
		load	57	2584	794	1069	513
		domInteractive	10	73	30	17	8

Bundle size diffs [🚀 Bundle size reduced!]

• background: -14 Bytes (-0.00%)
• ui: 0 Bytes (0.00%)
• common: 0 Bytes (0.00%)

[danjm]

@SocketSecurity ignore-all

The new author warnings are safe. We have approved those authors in the past, and ther are github employees and/or long time contributors to the npm ecosystem.

The network access is necessary for make-fetch-happen to work, and that has been part of our dependency tree for a long time.