feat: proto v2

[ThomasRalee]

Summary by CodeRabbit

• Documentation

  • Removed GitBook-hosted documentation for guides, API references, and module documentation.

• Chores

  • Removed beta and canary release workflows.
  • Restructured dev publishing pipeline with improved versioning and per-package publishing.
  • Removed bundle size analysis tooling.
  • Updated git hooks to include OFAC list fetching and pre-push type checking and linting.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Walkthrough

Extensive removal of GitBook documentation, generated API reference HTML pages, CSS assets, bundle-size tooling, and GitHub Actions workflows. The .gitbook directory contents are deleted entirely, along with significant portions of the docs static assets. Workflow changes simplify beta/canary publishing while restructuring the main dev workflow for per-package versioning and npm publishing with provenance support.

Changes

Cohort / File(s)	Change Summary
GitBook Documentation Removal .gitbook/* (all pages)	Deleted entire GitBook documentation tree including root config (.gitbook.yaml), table of contents (SUMMARY.md, README.md), and all content pages spanning Bridges, Building dApps, Core Modules, Getting Started, Querying, Smart Contracts, Transactions, and Wallets topics. Eliminates ~80 markdown documentation files covering tutorials, API guides, configuration instructions, and integration examples.
Generated Documentation Artifacts docs/classes/*, docs/assets/*	Removed auto-generated TypeDoc HTML documentation pages for ~50+ API classes (ChainGrpcAuctionApi, ChainGrpcBankApi, Address, BaseAccount, etc.). Also deleted all CSS styling assets (style.css, icons.css, highlight.css), main JavaScript UI bundle (main.js), and Jekyll configuration marker (docs/.nojekyll).
Bundle Size Analysis Tooling bundle-size/*, bundle-analysis/results.json	Removed bundle-size analysis infrastructure including the index.js script for package discovery and size computation, Rollup configuration, results data artifact, and documentation. Eliminates dynamic bundle size tracking and comparative reporting logic.
GitHub Actions Workflows .github/workflows/beta.yml, .github/workflows/canary.yml	Removed beta and canary publishing workflows that previously automated prerelease publishing and Slack notifications on non-master/dev branch pushes.
Main Dev Workflow Restructuring .github/workflows/dev.yaml	Significantly refactored publish workflow: renamed job from "Publish dev" to "Publish", added multi-branch publish type determination (latest/canary/beta) with per-package versioning via pnpm lerna, implemented per-package npm publishing with provenance, added PNPM store caching, and restructured downstream package-bump jobs with explicit gating on publish success and type.
Stable Workflow Deprecation .github/workflows/stable.yaml	Replaced active stable workflow with deprecated header and disabled state (if: false). Updated build sequence from lerna to pnpm-based build, replaced global publish with per-package versioning and npm publish steps.
Git Hooks & Configuration .husky/commit-msg, .husky/pre-commit, .husky/pre-push, .gitignore, .rooignore	Modified Husky hooks: removed bootstrap sourcing from commit-msg, replaced lint-staged with OFAC fetch in pre-commit, added new pre-push hook enforcing type-check/lint/build. Updated .gitignore to track .eslintcache, .tsbuildinfo, and proto/gen/. Removed *.md exclusion from .rooignore.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

• High-volume documentation removal: 80+ GitBook markdown files and 50+ generated HTML documentation pages are deleted wholesale; while straightforward, the scope requires verification that archival/migration is complete.
• Workflow logic restructuring: The .github/workflows/dev.yaml changes introduce new publish type logic, per-package versioning/publishing, PNPM caching, and downstream gating; review should verify the multi-branch conditional logic, package loop correctness, and that all existing workflows remain functional.
• Git hooks changes: Pre-commit and pre-push hook modifications introduce OFAC fetch integration and new build verification; verify integrations are functional and non-blocking.
• Build tooling removal: Verify that bundle-size analysis is intentionally deprecated and not critical for ongoing CI/CD.

Pre-merge checks and finishing touches

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Title check	❓ Inconclusive	The title 'feat: proto v2' is vague and generic, using non-descriptive terms that don't convey meaningful information about what changed in the changeset.	Provide a more specific title that describes the main change, such as 'feat: migrate to protobuf v2' or 'feat: proto v2 upgrade' to clarify the primary objective of this substantial changeset.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch feat/proto-v2

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	protoc@​32.1.0
	glob@​9.3.5 ⏵ 11.0.3		-15	+1
	@​protobuf-ts/​runtime-rpc@​2.11.1
	tsc-esm-fix@​3.1.2
	ts-protoc-gen@​0.15.0
	@​protobuf-ts/​plugin@​2.11.1
	@​protobuf-ts/​runtime@​2.11.1
	google-protobuf@​4.0.0
	grpc-web@​1.5.0
	tsup@​8.5.0
	ts-proto@​1.141.1
	@​grpc/​grpc-js@​1.12.2

View full report

[bangjelkoski]

Can we move this to a separate folder or it's a temporary script?

[ivan-angjelkoski]

should we delete this file?

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		Critical CVE: npm protobufjs Prototype Pollution vulnerability CVE: GHSA-h755-8qp9-cq85 protobufjs Prototype Pollution vulnerability (CRITICAL) Affected versions: >= 7.0.0 < 7.2.5; >= 6.10.0 < 6.11.4 Patched version: 6.11.4 From: proto/abacus/package-lock.json → npm/ts-proto@1.141.1 → npm/protobufjs@6.11.3 ℹ Read more on: This package | This alert | What is a critical CVE? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/protobufjs@6.11.3. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (7)

.gitignore (1)

7-8: Remove duplicate entries that already exist later in the file.

Lines 7–8 duplicate entries already present later in the file:

• .eslintcache is already at line 152
• .tsbuildinfo is already covered by the pattern *.tsbuildinfo at line 146

Consolidate by removing these lines to keep the file organized with the generated-tooling entries grouped together below.

🔎 Proposed cleanup

 reports
 junit.xml
 dist
 .build-cache
 .nx/
 .DS_STORE
-.eslintcache
-.tsbuildinfo
 # Created by https://www.gitignore.io/api/node,intellij+all,visualstudiocode

.husky/pre-push (3)

1-1: Add shebang for portability.

The script lacks a shebang line. Adding #!/bin/sh ensures consistent execution across different environments and makes the intended interpreter explicit.

🔎 Proposed fix

+#!/bin/sh
 set -e

---

1-5: Simplify: || exit 1 is redundant with set -e.

Since set -e is enabled on Line 1, the script already exits on any command failure. The explicit || exit 1 on Lines 3-5 is redundant and can be removed for cleaner code.

🔎 Proposed simplification

 set -e
 
-pnpm type-check || exit 1
-pnpm lint || exit 1
-pnpm build || exit 1
+pnpm type-check
+pnpm lint
+pnpm build

---

3-5: Consider the performance impact of running a full build on every push.

Running pnpm build before every push may significantly slow down the developer workflow, especially in a large monorepo. If builds are time-consuming, developers might be tempted to bypass the hook with --no-verify.

Consider alternatives:

• Run only type-check and lint in the pre-push hook
• Move the build step to CI/CD
• Use incremental builds or cache build artifacts

.husky/pre-commit (1)

1-3: Consider adding validation and better output messages.

The script could be more robust with:

• Verification that we're in a repository root before changing directories
• Success confirmation message after OFAC fetch
• More informative output for debugging failed commits

🔎 Proposed improvements for reliability

 #!/bin/sh
 set -e
 
 echo "Fetching OFAC list..."
 
+# Verify we're in the repository root
+if [ ! -d "packages/sdk-ts" ]; then
+  echo "Error: packages/sdk-ts directory not found. Are you in the repository root?"
+  exit 1
+fi
+
 cd packages/sdk-ts && pnpm fetch:ofac && git add src/utils/ofac.ts
 
-echo "OFAC list updated successfully"
+echo "✓ OFAC list updated and staged successfully"

.github/workflows/stable.yaml (1)

1-70: Consider removing this deprecated workflow file entirely.

Since this workflow is permanently disabled and all publishing is now handled by dev.yaml, keeping this file may cause confusion for maintainers. The deprecation notice is helpful, but removing the file would be cleaner.

If you need to preserve the workflow logic for reference, consider moving it to documentation or a separate archive directory.

Alternative: Keep minimal stub with clear redirect

If you prefer to keep a file at this path to prevent accidental recreation, consider replacing the entire content with a minimal stub:

-# ============================================
-# DEPRECATED WORKFLOW
-# ============================================
-# This workflow is permanently disabled.
-# All publishing (latest, canary, beta) is now handled by dev.yaml
-# which uses OIDC trusted publishing.
-#
-# For local/CLI releases, use:
-#   pnpm release:patch
-#   pnpm release:minor
-#
-# These require npm CLI authentication (npm login).
-# ============================================
-
-name: Publish stable (DEPRECATED)
-
-on:
-  workflow_dispatch:
-
-jobs:
-  publish:
-    # Permanently disabled - use dev.yaml or CLI instead
-    if: false
-    runs-on: ubuntu-latest
-    permissions: write-all
-
-    steps:
-      - name: 'Checkout'
-        uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-
-      - name: Using Node from .nvmrc
-        uses: useblacksmith/setup-node@v5
-        with:
-          node-version-file: '.nvmrc'
-
-      - name: Setup pnpm
-        uses: pnpm/action-setup@v4
-        with:
-          version: latest
-
-      - name: Set up Git user
-        run: |
-          git config user.name "${{ github.actor }}"
-          git config user.email "${{ github.actor }}@users.noreply.github.com"
-
-      - name: Build dependencies
-        run: |
-          node etc/bootstrapEnv
-          pnpm install
-          pnpm build
-
-      - name: Setup npm
-        run: |
-          echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" > .npmrc
-          git update-index --assume-unchanged .npmrc
-        env:
-          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
-
-      - name: Version packages
-        run: pnpm exec lerna version minor --conventional-commits --force-git-tag --yes --no-push
-        env:
-          GH_TOKEN: ${{ secrets.GH_TOKEN }}
-
-      - name: Publish to npm
-        run: pnpm publish -r --access public --tag latest --no-git-checks
-
-      - name: Push tags to git
-        run: git push --follow-tags
+# ============================================
+# DEPRECATED - DO NOT USE
+# ============================================
+# This workflow has been replaced by dev.yaml
+# See: .github/workflows/dev.yaml
+#
+# For local/CLI releases, use:
+#   pnpm release:patch
+#   pnpm release:minor
+# ============================================
+
+name: Publish stable (DEPRECATED - DO NOT USE)
+
+on:
+  workflow_dispatch:
+
+jobs:
+  deprecated:
+    if: false
+    runs-on: ubuntu-latest
+    steps:
+      - run: echo "This workflow is deprecated. Use dev.yaml instead."

.github/workflows/dev.yaml (1)

142-181: JSON manipulation in publish loop is fragile and should use a simpler approach.

The custom publish loop correctly uses pnpm pack to resolve catalog: protocol dependencies and npm publish with --provenance for OIDC authentication. The error handling (lines 175-178) ensures the workflow fails if no packages publish successfully. Package paths correctly match all 18 packages in the monorepo.

However, the JSON manipulation on line 164 is problematic:

PUBLISHED_PACKAGES=$(echo "$PUBLISHED_PACKAGES" | node -p "JSON.stringify([...JSON.parse(require('fs').readFileSync('/dev/stdin','utf8')), {name:'$pkg_name',version:'$pkg_version'}])")

Variable interpolation directly into a string literal breaks if pkg_name or pkg_version contain special characters (e.g., single quotes). While current package names are safe, this is a latent vulnerability. Simplify using a text file approach:

-          PUBLISHED_PACKAGES="[]"
+          SUMMARY_FILE="$ROOT_DIR/publish-summary.txt"
+          > "$SUMMARY_FILE"
           PUBLISH_COUNT=0
 
           for pkg_json in packages/*/package.json packages/wallets/*/package.json; do
             ...
             if npm publish "$tarball_name" --access public --tag "$DIST_TAG" --provenance; then
-              PUBLISHED_PACKAGES=$(echo "$PUBLISHED_PACKAGES" | node -p "JSON.stringify([...JSON.parse(require('fs').readFileSync('/dev/stdin','utf8')), {name:'$pkg_name',version:'$pkg_version'}])")
+              echo "$pkg_name@$pkg_version" >> "$SUMMARY_FILE"
               PUBLISH_COUNT=$((PUBLISH_COUNT + 1))
             fi
             ...
           done
 
-          echo "{\"publishedPackages\":$PUBLISHED_PACKAGES}" > pnpm-publish-summary.json
+          jq -R -s 'split("\n") | map(select(length > 0))' "$SUMMARY_FILE" > pnpm-publish-summary.json

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c67633f and 7abccc4.

⛔ Files ignored due to path filters (4)

• docs/assets/icons.png is excluded by !**/*.png
• docs/assets/icons@2x.png is excluded by !**/*.png
• docs/assets/widgets.png is excluded by !**/*.png
• docs/assets/widgets@2x.png is excluded by !**/*.png

📒 Files selected for processing (296)

• .gitbook.yaml
• .gitbook/README.md
• .gitbook/SUMMARY.md
• .gitbook/bridges/bridge.md
• .gitbook/bridges/ethereum.md
• .gitbook/bridges/ibc.md
• .gitbook/bridges/wormhole.md
• .gitbook/building-dapps/bridge.md
• .gitbook/building-dapps/building-dapps.md
• .gitbook/building-dapps/configuring-nuxt.md
• .gitbook/building-dapps/configuring-react.md
• .gitbook/building-dapps/dapps-examples/README.md
• .gitbook/building-dapps/dapps-examples/simple-html-example-with-webpack.md
• .gitbook/building-dapps/dex.md
• .gitbook/building-dapps/smart-contract.md
• .gitbook/core-modules-and-examples/auction.md
• .gitbook/core-modules-and-examples/authz.md
• .gitbook/core-modules-and-examples/bank.md
• .gitbook/core-modules-and-examples/core-modules.md
• .gitbook/core-modules-and-examples/distribution.md
• .gitbook/core-modules-and-examples/exchange.md
• .gitbook/core-modules-and-examples/feegrant.md
• .gitbook/core-modules-and-examples/governance.md
• .gitbook/core-modules-and-examples/ibc.md
• .gitbook/core-modules-and-examples/insurance.md
• .gitbook/core-modules-and-examples/peggy.md
• .gitbook/core-modules-and-examples/permissions.md
• .gitbook/core-modules-and-examples/staking.md
• .gitbook/core-modules-and-examples/token-factory.md
• .gitbook/core-modules-and-examples/wasm.md
• .gitbook/core-modules/tokenfactory.md
• .gitbook/getting-started/application-concepts/README.md
• .gitbook/getting-started/application-concepts/calculations/README.md
• .gitbook/getting-started/application-concepts/calculations/min-price-tick-size.md
• .gitbook/getting-started/application-concepts/calculations/min-quantity-tick-size.md
• .gitbook/getting-started/application-concepts/getting-started-cosmjs.md
• .gitbook/getting-started/application-concepts/networks.md
• .gitbook/getting-started/assets/README.md
• .gitbook/getting-started/assets/creating-tokens.md
• .gitbook/getting-started/assets/denom-client.md
• .gitbook/getting-started/assets/injective-list.md
• .gitbook/getting-started/running-examples.md
• .gitbook/getting-started/technical-concepts.md
• .gitbook/llm.txt.md
• .gitbook/querying/querying-api/README.md
• .gitbook/querying/querying-api/querying-indexer-account.md
• .gitbook/querying/querying-api/querying-indexer-auction.md
• .gitbook/querying/querying-api/querying-indexer-derivatives.md
• .gitbook/querying/querying-api/querying-indexer-explorer.md
• .gitbook/querying/querying-api/querying-indexer-insurance-funds.md
• .gitbook/querying/querying-api/querying-indexer-leaderboard.md
• .gitbook/querying/querying-api/querying-indexer-markets.md
• .gitbook/querying/querying-api/querying-indexer-mito.md
• .gitbook/querying/querying-api/querying-indexer-oracle.md
• .gitbook/querying/querying-api/querying-indexer-portfolio.md
• .gitbook/querying/querying-api/querying-indexer-spot.md
• .gitbook/querying/querying-api/querying-indexer-transaction.md
• .gitbook/querying/querying-api/streaming/README.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-account.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-archiver.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-auction.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-derivatives.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-explorer.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-oracle.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-portfolio.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-spot.md
• .gitbook/querying/querying-chain/README.md
• .gitbook/querying/querying-chain/querying-chain-auction-module.md
• .gitbook/querying/querying-chain/querying-chain-auth-module.md
• .gitbook/querying/querying-chain/querying-chain-bank-module.md
• .gitbook/querying/querying-chain/querying-chain-distribution.md
• .gitbook/querying/querying-chain/querying-chain-exchange.md
• .gitbook/querying/querying-chain/querying-chain-governance.md
• .gitbook/querying/querying-chain/querying-chain-ibc.md
• .gitbook/querying/querying-chain/querying-chain-insurance-funds.md
• .gitbook/querying/querying-chain/querying-chain-mint.md
• .gitbook/querying/querying-chain/querying-chain-oracle.md
• .gitbook/querying/querying-chain/querying-chain-peggy.md
• .gitbook/querying/querying-chain/querying-chain-permissions.md
• .gitbook/querying/querying-chain/querying-chain-staking.md
• .gitbook/querying/querying-chain/querying-chain-tendermint.md
• .gitbook/querying/querying-chain/querying-chain-wasm.md
• .gitbook/querying/querying-chain/querying-chain-wasmx.md
• .gitbook/querying/querying-chain/token-factory.md
• .gitbook/querying/querying-ethereum.md
• .gitbook/querying/querying.md
• .gitbook/readme/assets/token-price.md
• .gitbook/readme/denoms-(tokens)/README.md
• .gitbook/readme/denoms-(tokens)/creating-tokens.md
• .gitbook/readme/denoms-(tokens)/denom-client.md
• .gitbook/smart-contracts/contracts/README.md
• .gitbook/smart-contracts/contracts/cw20-convert-and-market-order-example.md
• .gitbook/smart-contracts/contracts/injective-name-service.md
• .gitbook/smart-contracts/contracts/neptune-service.md
• .gitbook/transactions/ethereum-ledger.md
• .gitbook/transactions/ethereum.md
• .gitbook/transactions/msgbroadcaster.md
• .gitbook/transactions/private-key.md
• .gitbook/transactions/transactions-cosmos/README.md
• .gitbook/transactions/transactions-cosmos/ledger-through-keplr-wallet.md
• .gitbook/transactions/transactions.md
• .gitbook/transactions/web3-gateway.md
• .gitbook/wallets/offchain-arbitrary-data.md
• .gitbook/wallets/wallet-accounts.md
• .gitbook/wallets/wallet-connections.md
• .gitbook/wallets/wallet-wallet-strategy.md
• .gitbook/wallets/wallet.md
• .github/workflows/beta.yml
• .github/workflows/canary.yml
• .github/workflows/dev.yaml
• .github/workflows/stable.yaml
• .gitignore
• .husky/commit-msg
• .husky/pre-commit
• .husky/pre-push
• .rooignore
• bundle-analysis/results.json
• bundle-size/README.md
• bundle-size/index.js
• bundle-size/rollup.config.ts
• docs/.nojekyll
• docs/assets/highlight.css
• docs/assets/icons.css
• docs/assets/main.js
• docs/assets/search.js
• docs/assets/style.css
• docs/classes/_injectivelabs_sdk_ts.Address.html
• docs/classes/_injectivelabs_sdk_ts.BaseAccount.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcAuctionApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcAuctionTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcAuthApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcBankApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcBankTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcDistributionApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcDistributionTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcExchangeApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcExchangeTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcGovApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcGovTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcIbcApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcInsuranceFundApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcInsuranceFundTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcMintApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcMintTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcOracleApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcPeggyApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcPeggyTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcStakingApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcStakingTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcWasmApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcWasmTransformer.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcWasmXApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainRestAuthApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainRestBankApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainRestTendermintApi.html
• docs/classes/_injectivelabs_sdk_ts.DenomClient.html
• docs/classes/_injectivelabs_sdk_ts.DenomClientSync.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgCW20AdapterRedeemAndTransfer.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgCW20Send.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgCW20Transfer.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgDepositTokens.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgIncreaseAllowance.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgInitiateTransfer.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgRegisterVault.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgSubmitVaa.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgUpdateAMMVaultConfig.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgUpdateDerivativeVaultConfig.html
• docs/classes/_injectivelabs_sdk_ts.ExecArgUpdateSpotVaultConfig.html
• docs/classes/_injectivelabs_sdk_ts.ExecPrivilegedArgRegisterVault.html
• docs/classes/_injectivelabs_sdk_ts.ExecPrivilegedArgVaultRedeem.html
• docs/classes/_injectivelabs_sdk_ts.ExecPrivilegedArgVaultSubscribe.html
• docs/classes/_injectivelabs_sdk_ts.ExplorerStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerAccountPortfolioStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerAccountStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerAuctionStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerDerivativeStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAccountApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAccountPortfolioApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAccountPortfolioStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAccountPortfolioTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAccountStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAccountTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAuctionApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAuctionStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcAuctionTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcDerivativeTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcDerivativesApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcDerivativesStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcExplorerApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcExplorerStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcExplorerTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcInsuranceFundApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcInsuranceFundTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcMetaApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcMitoApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcMitoTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcOracleApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcOracleStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcOracleTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcSpotApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcSpotStream.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcSpotTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerGrpcTransactionApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerOracleStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerRestDerivativesChronosApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerRestExplorerApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerRestExplorerTransformer.html
• docs/classes/_injectivelabs_sdk_ts.IndexerRestLeaderboardChronosApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerRestMarketChronosApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerRestSpotChronosApi.html
• docs/classes/_injectivelabs_sdk_ts.IndexerSpotStreamTransformer.html
• docs/classes/_injectivelabs_sdk_ts.InjectiveDirectEthSecp256k1Wallet.html
• docs/classes/_injectivelabs_sdk_ts.InjectiveEthSecp256k1Wallet.html
• docs/classes/_injectivelabs_sdk_ts.MitoQueryTransformer.html
• docs/classes/_injectivelabs_sdk_ts.MsgAuthzExec.html
• docs/classes/_injectivelabs_sdk_ts.MsgBatchCancelBinaryOptionsOrders.html
• docs/classes/_injectivelabs_sdk_ts.MsgBatchCancelDerivativeOrders.html
• docs/classes/_injectivelabs_sdk_ts.MsgBatchCancelSpotOrders.html
• docs/classes/_injectivelabs_sdk_ts.MsgBatchUpdateOrders.html
• docs/classes/_injectivelabs_sdk_ts.MsgBeginRedelegate.html
• docs/classes/_injectivelabs_sdk_ts.MsgBid.html
• docs/classes/_injectivelabs_sdk_ts.MsgBroadcasterWithPk.html
• docs/classes/_injectivelabs_sdk_ts.MsgCancelBinaryOptionsOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCancelDerivativeOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCancelSpotOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateBinaryOptionsLimitOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateBinaryOptionsMarketOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateDerivativeLimitOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateDerivativeMarketOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateInsuranceFund.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateSpotLimitOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgCreateSpotMarketOrder.html
• docs/classes/_injectivelabs_sdk_ts.MsgDelegate.html
• docs/classes/_injectivelabs_sdk_ts.MsgDeposit.html
• docs/classes/_injectivelabs_sdk_ts.MsgEditValidator.html
• docs/classes/_injectivelabs_sdk_ts.MsgExecuteContract.html
• docs/classes/_injectivelabs_sdk_ts.MsgExecuteContractCompat.html
• docs/classes/_injectivelabs_sdk_ts.MsgExternalTransfer.html
• docs/classes/_injectivelabs_sdk_ts.MsgGovDeposit.html
• docs/classes/_injectivelabs_sdk_ts.MsgGrant.html
• docs/classes/_injectivelabs_sdk_ts.MsgIncreasePositionMargin.html
• docs/classes/_injectivelabs_sdk_ts.MsgInstantBinaryOptionsMarketLaunch.html
• docs/classes/_injectivelabs_sdk_ts.MsgInstantSpotMarketLaunch.html
• docs/classes/_injectivelabs_sdk_ts.MsgInstantiateContract.html
• docs/classes/_injectivelabs_sdk_ts.MsgMigrateContract.html
• docs/classes/_injectivelabs_sdk_ts.MsgMultiSend.html
• docs/classes/_injectivelabs_sdk_ts.MsgPrivilegedExecuteContract.html
• docs/classes/_injectivelabs_sdk_ts.MsgReclaimLockedFunds.html
• docs/classes/_injectivelabs_sdk_ts.MsgRequestRedemption.html
• docs/classes/_injectivelabs_sdk_ts.MsgRevoke.html
• docs/classes/_injectivelabs_sdk_ts.MsgSend.html
• docs/classes/_injectivelabs_sdk_ts.MsgSendToEth.html
• docs/classes/_injectivelabs_sdk_ts.MsgStoreCode.html
• docs/classes/_injectivelabs_sdk_ts.MsgSubmitProposalExpiryFuturesMarketLaunch.html
• docs/classes/_injectivelabs_sdk_ts.MsgSubmitProposalPerpetualMarketLaunch.html
• docs/classes/_injectivelabs_sdk_ts.MsgSubmitProposalSpotMarketLaunch.html
• docs/classes/_injectivelabs_sdk_ts.MsgSubmitProposalSpotMarketParamUpdate.html
• docs/classes/_injectivelabs_sdk_ts.MsgSubmitTextProposal.html
• docs/classes/_injectivelabs_sdk_ts.MsgTransfer.html
• docs/classes/_injectivelabs_sdk_ts.MsgTransferCosmjs.html
• docs/classes/_injectivelabs_sdk_ts.MsgUndelegate.html
• docs/classes/_injectivelabs_sdk_ts.MsgUnderwrite.html
• docs/classes/_injectivelabs_sdk_ts.MsgUpdateAdmin.html
• docs/classes/_injectivelabs_sdk_ts.MsgVote.html
• docs/classes/_injectivelabs_sdk_ts.MsgWithdraw.html
• docs/classes/_injectivelabs_sdk_ts.MsgWithdrawDelegatorReward.html
• docs/classes/_injectivelabs_sdk_ts.MsgWithdrawValidatorCommission.html
• docs/classes/_injectivelabs_sdk_ts.OrderHashManager.html
• docs/classes/_injectivelabs_sdk_ts.PrivateKey.html
• docs/classes/_injectivelabs_sdk_ts.ProposalDecomposer.html
• docs/classes/_injectivelabs_sdk_ts.PublicKey.html
• docs/classes/_injectivelabs_sdk_ts.QueryContractAllowance.html
• docs/classes/_injectivelabs_sdk_ts.QueryContractConfig.html
• docs/classes/_injectivelabs_sdk_ts.QueryContractMarketingInfo.html
• docs/classes/_injectivelabs_sdk_ts.QueryLockedLpFunds.html
• docs/classes/_injectivelabs_sdk_ts.QueryRegisteredVaults.html
• docs/classes/_injectivelabs_sdk_ts.QueryVaultMarketId.html
• docs/classes/_injectivelabs_sdk_ts.QueryVaultTotalLpSupply.html
• docs/classes/_injectivelabs_sdk_ts.TxClient.html
• docs/classes/_injectivelabs_sdk_ts.TxGrpcClient.html
• docs/classes/_injectivelabs_sdk_ts.TxRestClient.html
• docs/classes/_injectivelabs_sdk_ts.internal.ApolloCache.html
• docs/classes/_injectivelabs_sdk_ts.internal.ApolloClient.html
• docs/classes/_injectivelabs_sdk_ts.internal.ApolloError.html
• docs/classes/_injectivelabs_sdk_ts.internal.ApolloLink.html
• docs/classes/_injectivelabs_sdk_ts.internal.BaseWasmQuery.html
• docs/classes/_injectivelabs_sdk_ts.internal.BigNumber-1.html
• docs/classes/_injectivelabs_sdk_ts.internal.BrowserHeaders-1.html
• docs/classes/_injectivelabs_sdk_ts.internal.BufferReader.html
• docs/classes/_injectivelabs_sdk_ts.internal.BufferWriter.html
• docs/classes/_injectivelabs_sdk_ts.internal.Concast.html
• docs/classes/_injectivelabs_sdk_ts.internal.ExecArgBase.html
• docs/classes/_injectivelabs_sdk_ts.internal.ExecPrivilegedArgBase.html
• docs/classes/_injectivelabs_sdk_ts.internal.GraphQLError.html
• docs/classes/_injectivelabs_sdk_ts.internal.InjectiveAccountsRPCClientImpl.html
• docs/classes/_injectivelabs_sdk_ts.internal.InjectiveAuctionRPCClientImpl.html

💤 Files with no reviewable changes (135)

• .gitbook/querying/querying-api/streaming/README.md
• .gitbook/wallets/wallet.md
• .gitbook/querying/querying-chain/querying-chain-exchange.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcExchangeTransformer.html
• .gitbook/getting-started/application-concepts/calculations/README.md
• .gitbook/querying/querying.md
• .gitbook/bridges/bridge.md
• .gitbook/core-modules-and-examples/insurance.md
• docs/.nojekyll
• .gitbook/wallets/wallet-accounts.md
• .github/workflows/beta.yml
• .gitbook/getting-started/technical-concepts.md
• .gitbook/getting-started/assets/denom-client.md
• .gitbook/core-modules-and-examples/auction.md
• .gitbook/querying/querying-chain/querying-chain-ibc.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-archiver.md
• .gitbook/querying/querying-chain/querying-chain-bank-module.md
• .gitbook/querying/querying-chain/querying-chain-mint.md
• .gitbook/querying/querying-chain/querying-chain-wasmx.md
• .gitbook/bridges/ibc.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcAuctionApi.html
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcInsuranceFundApi.html
• .gitbook/core-modules-and-examples/authz.md
• .gitbook/llm.txt.md
• .gitbook/smart-contracts/contracts/cw20-convert-and-market-order-example.md
• .gitbook/core-modules/tokenfactory.md
• .gitbook/transactions/ethereum-ledger.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-oracle.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcAuthApi.html
• .gitbook/core-modules-and-examples/governance.md
• .gitbook/readme/denoms-(tokens)/creating-tokens.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-derivatives.md
• .gitbook/getting-started/running-examples.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-spot.md
• .gitbook/getting-started/assets/README.md
• .gitbook/getting-started/application-concepts/calculations/min-price-tick-size.md
• .gitbook/querying/querying-chain/querying-chain-insurance-funds.md
• .gitbook/core-modules-and-examples/core-modules.md
• .gitbook/getting-started/assets/injective-list.md
• bundle-size/README.md
• docs/classes/_injectivelabs_sdk_ts.Address.html
• .gitbook/getting-started/application-concepts/getting-started-cosmjs.md
• .gitbook/building-dapps/building-dapps.md
• bundle-size/index.js
• .gitbook/core-modules-and-examples/distribution.md
• .gitbook/building-dapps/dex.md
• .gitbook/querying/querying-api/querying-indexer-auction.md
• .gitbook/querying/querying-chain/querying-chain-oracle.md
• .gitbook/querying/querying-api/querying-indexer-leaderboard.md
• .gitbook/bridges/ethereum.md
• .github/workflows/canary.yml
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcGovTransformer.html
• .gitbook/transactions/transactions.md
• docs/assets/icons.css
• .gitbook/core-modules-and-examples/ibc.md
• .gitbook/readme/denoms-(tokens)/denom-client.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcInsuranceFundTransformer.html
• .gitbook/querying/querying-api/streaming/streaming-indexer-portfolio.md
• .gitbook/transactions/msgbroadcaster.md
• .gitbook/querying/querying-api/querying-indexer-explorer.md
• .gitbook/transactions/transactions-cosmos/README.md
• .gitbook/readme/denoms-(tokens)/README.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcGovApi.html
• .gitbook/querying/querying-chain/querying-chain-distribution.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-account.md
• .gitbook/building-dapps/configuring-react.md
• .gitbook/querying/querying-api/querying-indexer-derivatives.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcAuctionTransformer.html
• .gitbook/querying/querying-api/querying-indexer-transaction.md
• .gitbook/querying/querying-chain/token-factory.md
• .gitbook/core-modules-and-examples/peggy.md
• .gitbook/transactions/transactions-cosmos/ledger-through-keplr-wallet.md
• .gitbook/querying/querying-chain/querying-chain-wasm.md
• .gitbook/querying/querying-api/querying-indexer-markets.md
• .gitbook/core-modules-and-examples/exchange.md
• .gitbook/querying/querying-chain/querying-chain-permissions.md
• .gitbook/core-modules-and-examples/staking.md
• .gitbook/querying/querying-api/querying-indexer-account.md
• .gitbook/transactions/web3-gateway.md
• .gitbook/core-modules-and-examples/bank.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcBankApi.html
• .gitbook/core-modules-and-examples/feegrant.md
• .gitbook/building-dapps/bridge.md
• .gitbook/building-dapps/dapps-examples/README.md
• .gitbook/querying/querying-api/querying-indexer-spot.md
• .gitbook/core-modules-and-examples/permissions.md
• docs/classes/_injectivelabs_sdk_ts.BaseAccount.html
• .gitbook/getting-started/application-concepts/calculations/min-quantity-tick-size.md
• .gitbook/wallets/wallet-wallet-strategy.md
• .gitbook/building-dapps/smart-contract.md
• .gitbook/smart-contracts/contracts/injective-name-service.md
• .gitbook/getting-started/application-concepts/README.md
• .gitbook/querying/querying-api/README.md
• .gitbook/core-modules-and-examples/wasm.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcDistributionApi.html
• bundle-analysis/results.json
• .gitbook/querying/querying-chain/querying-chain-staking.md
• .gitbook/querying/querying-api/querying-indexer-insurance-funds.md
• .gitbook/querying/querying-ethereum.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcExchangeApi.html
• .gitbook/transactions/private-key.md
• .gitbook/transactions/ethereum.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-explorer.md
• .gitbook/querying/querying-chain/querying-chain-tendermint.md
• .gitbook/querying/querying-api/streaming/streaming-indexer-auction.md
• .gitbook/querying/querying-chain/querying-chain-governance.md
• .gitbook/getting-started/application-concepts/networks.md
• .gitbook/smart-contracts/contracts/README.md
• .gitbook/querying/querying-api/querying-indexer-oracle.md
• .gitbook.yaml
• .gitbook/core-modules-and-examples/token-factory.md
• .gitbook/getting-started/assets/creating-tokens.md
• .gitbook/wallets/offchain-arbitrary-data.md
• .rooignore
• .gitbook/querying/querying-chain/querying-chain-auth-module.md
• docs/assets/style.css
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcDistributionTransformer.html
• docs/assets/main.js
• .gitbook/querying/querying-chain/querying-chain-auction-module.md
• .gitbook/README.md
• .gitbook/bridges/wormhole.md
• .gitbook/SUMMARY.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcBankTransformer.html
• .husky/commit-msg
• .gitbook/querying/querying-api/querying-indexer-mito.md
• .gitbook/building-dapps/dapps-examples/simple-html-example-with-webpack.md
• .gitbook/querying/querying-api/querying-indexer-portfolio.md
• bundle-size/rollup.config.ts
• .gitbook/querying/querying-chain/README.md
• docs/assets/highlight.css
• .gitbook/smart-contracts/contracts/neptune-service.md
• .gitbook/building-dapps/configuring-nuxt.md
• .gitbook/wallets/wallet-connections.md
• .gitbook/querying/querying-chain/querying-chain-peggy.md
• docs/classes/_injectivelabs_sdk_ts.ChainGrpcIbcApi.html

🧰 Additional context used

🪛 actionlint (1.7.9)

.github/workflows/stable.yaml

23-23: condition "false" is always evaluated to false. remove the if: section

(if-cond)

🔇 Additional comments (6)

.gitignore (1)

204-204: LGTM: Proto generation directory properly ignored.

The addition of proto/gen/ is appropriate for the proto v2 work and aligns with the PR objectives to manage generated protobuf code.

.github/workflows/dev.yaml (5)

193-347: Well-structured package bump job dependencies.

The package bump jobs correctly gate execution to only run after successful latest releases (not canary/beta), with proper fallback for manual workflow_dispatch runs (lines 200-203). The dependency chain ensures package-bump-layer completes before dependent jobs (hub, helix, etc.) run.

The use of always() with conditional checks is the correct pattern to allow jobs to run even when the publish job is skipped.

---

17-21: Minimal and appropriate permissions for OIDC publishing.

The permissions are correctly scoped:

• id-token: write enables OIDC trusted publishing
• contents: write allows pushing tags back to the repository

This is a security improvement over the deprecated workflow that used long-lived NPM_TOKEN secrets.

---

66-80: Good optimization with PNPM caching and OIDC preparation.

The PNPM store caching (lines 66-76) improves workflow performance, and updating npm for OIDC trusted publishing (lines 78-80) is the correct approach for secure, token-free publishing. OIDC trusted publishing requires npm CLI version 11.5.1 or later, which the workflow properly addresses.

---

87-129: Good validation logic with clear error messages.

The publish type determination handles all three release types correctly and includes validation to prevent conflicting keywords (lines 110-112). The error messages are clear and actionable.

Note: Line 115 uses DIST_TAG="alpha" for canary releases. While this is valid, the industry standard for canary distributions is the canary tag itself. Consider whether aligning with this convention would better suit your workflow, or if your project has specific reasons for using alpha.

---

34-43: Line 43 correctly enforces automated publishing on dev branch via commits only.

The condition blocking workflow_dispatch on dev is intentional—it ensures that deployments go through code review and branch protections rather than manual override. This aligns with security best practices for CI/CD workflows. The restriction is correct as-is.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Add shebang and error handling to prevent commits with stale OFAC data.

The pre-commit hook is missing:

1. A shebang line - required for the hook to execute reliably
2. Error handling - if the OFAC fetch fails, the script continues and allows the commit with potentially stale data

This is critical for compliance/security since OFAC (Office of Foreign Assets Control) lists are used for sanctions enforcement.

🔎 Proposed fix with shebang and error handling

+#!/bin/sh
+set -e
+
 echo "Fetching OFAC list..."
 
 cd packages/sdk-ts && pnpm fetch:ofac && git add src/utils/ofac.ts
+
+echo "OFAC list updated successfully"

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	echo "Fetching OFAC list..."
	pnpm lint-staged
	cd packages/sdk-ts && pnpm fetch:ofac && git add src/utils/ofac.ts
	#!/bin/sh
	set -e
	echo "Fetching OFAC list..."
	cd packages/sdk-ts && pnpm fetch:ofac && git add src/utils/ofac.ts
	echo "OFAC list updated successfully"

🤖 Prompt for AI Agents

.husky/pre-commit lines 1-3: the hook lacks a shebang and proper error handling,
so failures in fetching OFAC allow commits with stale data; add a shebang (e.g.
#!/usr/bin/env bash) as the first line, enable strict failure handling (set -euo
pipefail), verify cd succeeds and run pnpm fetch:ofac, and only run git add if
the fetch command succeeded; ensure the script exits non‑zero on any failure to
block the commit.

---

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Check the contents of .husky/pre-commit
echo "=== Current .husky/pre-commit contents ==="
cat .husky/pre-commit 2>/dev/null || echo "File not found"

# Check git history of .husky/pre-commit
echo ""
echo "=== Git history of .husky/pre-commit (last 5 commits) ==="
git log --oneline -5 -- .husky/pre-commit 2>/dev/null || echo "No git history available"

# Check if lint-staged config exists
echo ""
echo "=== Checking for lint-staged configuration ==="
if [ -f "package.json" ]; then
  echo "=== Lint-staged config in package.json ==="
  grep -A 10 '"lint-staged"' package.json || echo "No lint-staged config in package.json"
fi

if [ -f ".lintstagedrc" ] || [ -f ".lintstagedrc.js" ] || [ -f ".lintstagedrc.json" ]; then
  echo "=== Found separate lint-staged config file ==="
  fd -t f "lintstagedrc"
fi

# Check if there are linting scripts in CI workflows
echo ""
echo "=== Checking CI workflows for lint commands ==="
find .github/workflows -name "*.yml" -o -name "*.yaml" 2>/dev/null | head -5

Repository: InjectiveLabs/injective-ts

Length of output: 1000

---

🏁 Script executed:

#!/bin/bash
# Check the CI workflows
echo "=== dev.yaml contents ==="
head -100 .github/workflows/dev.yaml

echo ""
echo "=== stable.yaml contents ==="
head -100 .github/workflows/stable.yaml

# Search for lint commands
echo ""
echo "=== Searching for 'lint' in workflow files ==="
grep -n "lint\|eslint\|prettier" .github/workflows/*.yaml

# Check git history with more detail
echo ""
echo "=== Full git history of .husky/pre-commit ==="
git log --all --format="%h %s" -- .husky/pre-commit | head -20

# Check when lint-staged was removed (compare with previous content)
echo ""
echo "=== Git show previous version of pre-commit ==="
git show HEAD~1:.husky/pre-commit 2>/dev/null || echo "Only one commit available"

# Search for lint-staged references in the codebase
echo ""
echo "=== Searching for lint-staged usage in codebase ==="
rg "lint-staged" --type-list | head -5

Repository: InjectiveLabs/injective-ts

Length of output: 5968

---

🏁 Script executed:

#!/bin/bash
# Get the actual changes to .husky/pre-commit
echo "=== Git log with patch for .husky/pre-commit ==="
git log -p --follow -3 -- .husky/pre-commit | head -150

# Search for lint-staged references in the codebase (fix the rg command)
echo ""
echo "=== Searching for lint-staged usage in codebase ==="
rg "lint-staged" --type js,json,yaml,yml 2>/dev/null || echo "No lint-staged references found in code"

# Check if there are any other workflow files
echo ""
echo "=== All workflow files ==="
find .github/workflows -type f -name "*.yml" -o -name "*.yaml" 2>/dev/null

# Check if lint-staged is actually being used anywhere
echo ""
echo "=== Checking if lint-staged is referenced elsewhere ==="
rg "lint-staged" . 2>/dev/null || echo "No lint-staged references"

Repository: InjectiveLabs/injective-ts

Length of output: 546

---

Code quality checks are completely disabled—pre-commit linting removed with no CI/CD equivalent.

lint-staged enforces code quality checks on files in the Git staging area, but the pre-commit hook no longer invokes it. Additionally, neither the dev.yaml nor stable.yaml CI workflows contain linting steps. This creates a critical gap: code can be committed and merged without any ESLint or Prettier checks, despite lint-staged still being configured in package.json.

Restore linting enforcement either by:

• Re-adding lint-staged to .husky/pre-commit, OR
• Adding ESLint and Prettier checks to the CI/CD pipeline (recommended for team consistency)

🤖 Prompt for AI Agents

.husky/pre-commit lines 1-3 currently only fetch the OFAC list and skip running
lint-staged, which disables pre-commit linting; restore lint enforcement by
either re-invoking lint-staged in this hook or adding ESLint/Prettier steps to
CI. To fix, update .husky/pre-commit to run lint-staged before the existing
fetch commands (e.g., run "npx lint-staged" or project-equivalent) so staged
files are validated on commit, and also add ESLint/Prettier jobs to dev.yaml and
stable.yaml CI workflows to run lint and format checks (fail the job on errors)
to ensure server-side enforcement.