@metamask-previews/phishing-controller 12.4.0-preview-4fbfa93f → 12.4.0-preview-b08aa8e7

package/CHANGELOG.md

@@ -7,6 +7,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Fixed
+
+- Fixed an edge case in `PhishingController` where empty phishing lists could trigger API requests with invalid `-Infinity` timestamps ([#5385](https://github.com/MetaMask/core/pull/5385))
+
 ## [12.4.0]
 
 ### Added

package/dist/PhishingController.cjs

@@ -434,9 +434,12 @@ async function _PhishingController_updateStalelist() {
  * this function that prevents redundant configuration updates.
  */
 async function _PhishingController_updateHotlist() {
-    const lastDiffTimestamp = Math.max(...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated));
     let hotlistResponse;
     try {
+        if (this.state.phishingLists.length === 0) {
+            return;
+        }
+        const lastDiffTimestamp = Math.max(...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated));
         hotlistResponse = await __classPrivateFieldGet(this, _PhishingController_instances, "m", _PhishingController_queryConfig).call(this, `${exports.METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`);
     }
     finally {

package/dist/PhishingController.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"PhishingController.cjs","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAKA,+DAA2D;AAC3D,iEAGoC;AACpC,sDAA+C;AAE/C,6DAAsD;AACtD,uCAKiB;AACjB,uCAMiB;AAEJ,QAAA,wBAAwB,GACnC,+CAA+C,CAAC;AACrC,QAAA,uBAAuB,GAAG,eAAe,CAAC;AAC1C,QAAA,0BAA0B,GAAG,gBAAgB,CAAC;AAE9C,QAAA,6BAA6B,GACxC,kDAAkD,CAAC;AACxC,QAAA,4BAA4B,GAAG,uBAAuB,CAAC;AAEvD,QAAA,2BAA2B,GACtC,0CAA0C,CAAC;AAChC,QAAA,gCAAgC,GAAG,MAAM,CAAC;AAE1C,QAAA,oCAAoC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACnE,QAAA,wBAAwB,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACvD,QAAA,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,qBAAqB;AAErE,QAAA,sBAAsB,GAAG,GAAG,gCAAwB,GAAG,+BAAuB,EAAE,CAAC;AACjF,QAAA,yBAAyB,GAAG,GAAG,gCAAwB,GAAG,kCAA0B,EAAE,CAAC;AACvF,QAAA,uBAAuB,GAAG,GAAG,qCAA6B,GAAG,oCAA4B,EAAE,CAAC;AAyHzG;;;GAGG;AACH,IAAY,QAEX;AAFD,WAAY,QAAQ;IAClB,kEAAsD,CAAA;AACxD,CAAC,EAFW,QAAQ,wBAAR,QAAQ,QAEnB;AAED;;GAEG;AACH,IAAY,SAEX;AAFD,WAAY,SAAS;IACnB,kCAAqB,CAAA;AACvB,CAAC,EAFW,SAAS,yBAAT,SAAS,QAEpB;AAED;;;GAGG;AACH,MAAM,sBAAsB,GAAG;IAC7B,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,uBAAuB;CACvD,CAAC;AAEF;;;GAGG;AACU,QAAA,sBAAsB,GAAG;IACpC,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,SAAS,CAAC,QAAQ;CACvD,CAAC;AAEF,MAAM,cAAc,GAAG,oBAAoB,CAAC;AAE5C,MAAM,QAAQ,GAAG;IACf,aAAa,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAClD,SAAS,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAC9C,kBAAkB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACvD,oBAAoB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACzD,4BAA4B,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;CAClE,CAAC;AAEF;;;GAGG;AACH,MAAM,eAAe,GAAG,GAA4B,EAAE;IACpD,OAAO;QACL,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE;QACb,kBAAkB,EAAE,CAAC;QACrB,oBAAoB,EAAE,CAAC;QACvB,4BAA4B,EAAE,CAAC;KAChC,CAAC;AACJ,CAAC,CAAC;AAoEF;;GAEG;AACH,MAAa,kBAAmB,SAAQ,gCAIvC;IAiBC;;;;;;;;;OASG;IACH,YAAY,EACV,wBAAwB,GAAG,kCAA0B,EACrD,sBAAsB,GAAG,gCAAwB,EACjD,gCAAgC,GAAG,4CAAoC,EACvE,SAAS,EACT,KAAK,GAAG,EAAE,GACgB;QAC1B,KAAK,CAAC;YACJ,IAAI,EAAE,cAAc;YACpB,QAAQ;YACR,SAAS;YACT,KAAK,EAAE;gBACL,GAAG,eAAe,EAAE;gBACpB,GAAG,KAAK;aACT;SACF,CAAC,CAAC;;QAzCL,gCAAgC;QAChC,8DAA8D;QAC9D,+CAAe;QAEf,+DAAkC;QAElC,6DAAgC;QAEhC,uEAA0C;QAE1C,8DAAyC;QAEzC,gEAA2C;QAE3C,wEAAmD;QA4QnD;;;;;;WAMG;QACH,YAAO,GAAG,KAAK,EAAE,GAAW,EAAwC,EAAE;YACpE,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,IAAA,6BAAqB,EAAC,GAAG,CAAC,CAAC;YAClD,IAAI,CAAC,EAAE,EAAE;gBACP,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;YAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,mCAA2B,IAAI,wCAAgC,QAAQ,kBAAkB,CAAC,QAAQ,CAAC,EAAE,EACxG;oBACE,MAAM,EAAE,KAAK;oBACb,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;qBAC3B;iBACF,CACF,CAAC;gBACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE;oBACX,OAAO;wBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;qBACzC,CAAC;iBACH;gBACD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;YAEF,0GAA0G;YAC1G,IAAI,CAAC,WAAW,EAAE;gBAChB,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;iBAAM,IAAI,OAAO,IAAI,WAAW,EAAE;gBACjC,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;iBAC9B,CAAC;aACH;YAED,OAAO;gBACL,UAAU,EAAE,QAAQ;gBACpB,iBAAiB,EAAE,WAAW,CAAC,iBAAiB;aAClB,CAAC;QACnC,CAAC,CAAC;QA1SA,uBAAA,IAAI,gDAA6B,wBAAwB,MAAA,CAAC;QAC1D,uBAAA,IAAI,8CAA2B,sBAAsB,MAAA,CAAC;QACtD,uBAAA,IAAI,wDAAqC,gCAAgC,MAAA,CAAC;QAC1E,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,CAAC;QAEhC,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,CAAC;IAkBD;;OAEG;IACH,sBAAsB;QACpB,uBAAA,IAAI,gCAAa,IAAI,mCAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAA,CAAC;IAClE,CAAC;IAED;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAgB;QAC1C,uBAAA,IAAI,gDAA6B,QAAQ,MAAA,CAAC;IAC5C,CAAC;IAED;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAgB;QACxC,uBAAA,IAAI,8CAA2B,QAAQ,MAAA,CAAC;IAC1C,CAAC;IAED;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAgB;QAClD,uBAAA,IAAI,wDAAqC,QAAQ,MAAA,CAAC;IACpD,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB;YAChD,uBAAA,IAAI,oDAA0B,CAC/B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,kBAAkB;QAChB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB;YAC9C,uBAAA,IAAI,kDAAwB,CAC7B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,4BAA4B;QAC1B,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,4BAA4B;YACxD,uBAAA,IAAI,4DAAkC,CACvC,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,gBAAgB;QACpB,MAAM,kBAAkB,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACvD,IAAI,kBAAkB,EAAE;YACtB,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC7B,OAAO;SACR;QACD,MAAM,gBAAgB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACnD,IAAI,gBAAgB,EAAE;YACpB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;SAC5B;QACD,MAAM,0BAA0B,GAAG,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACvE,IAAI,0BAA0B,EAAE;YAC9B,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;SACtC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAc;QACjB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC;IAED;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAc;QAC7B,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,MAAM,CAAC,MAAc;QACnB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,MAAM,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC;QACjC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAClD,OAAO;SACR;QACD,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,IAAI,cAAc,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,uBAAuB;QAC3B,IAAI,uBAAA,IAAI,6DAAmC,EAAE;YAC3C,MAAM,uBAAA,IAAI,6DAAmC,CAAC;YAC9C,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,yDAAsC,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,MAAA,CAAC;YAC1E,MAAM,uBAAA,IAAI,6DAAmC,CAAC;SAC/C;gBAAS;YACR,uBAAA,IAAI,yDAAsC,SAAS,MAAA,CAAC;SACrD;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,uBAAA,IAAI,mDAAyB,EAAE;YACjC,MAAM,uBAAA,IAAI,mDAAyB,CAAC;YACpC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,+CAA4B,uBAAA,IAAI,wEAAe,MAAnB,IAAI,CAAiB,MAAA,CAAC;YACtD,MAAM,uBAAA,IAAI,mDAAyB,CAAC;SACrC;gBAAS;YACR,uBAAA,IAAI,+CAA4B,SAAS,MAAA,CAAC;SAC3C;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe;QACnB,IAAI,uBAAA,IAAI,qDAA2B,EAAE;YACnC,MAAM,uBAAA,IAAI,qDAA2B,CAAC;YACtC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,iDAA8B,uBAAA,IAAI,0EAAiB,MAArB,IAAI,CAAmB,MAAA,CAAC;YAC1D,MAAM,uBAAA,IAAI,qDAA2B,CAAC;SACvC;gBAAS;YACR,uBAAA,IAAI,iDAA8B,SAAS,MAAA,CAAC;SAC7C;IACH,CAAC;CAsPF;AAnhBD,gDAmhBC;;IAtdG,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,mBAA4B,EAC7C,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CACjC,CAAC;IAEF,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,aAAsB,EACvC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CACrB,CAAC;AACJ,CAAC;AAsRD;;;;;GAKG;AACH,KAAK;IACH,IAAI,iBAAiB,GAAgD,IAAI,CAAC;IAC1E,IAAI,oBAAoB,GAAsC,IAAI,CAAC;IACnE,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IACvE,IAAI;QACF,MAAM,gBAAgB,GAAG,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE3B,8BAAsB,CAAC,CAAC;QAE1B,MAAM,wBAAwB,GAC5B,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAAyC,+BAAuB,CAAC,CAAC;QAExE,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjE,gBAAgB;YAChB,wBAAwB;SACzB,CAAC,CAAC;QACH,yGAAyG;QACzG,8EAA8E;QAC9E,IAAI,iBAAiB,EAAE,IAAI,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,EAAE;YACrE,oBAAoB,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE/B,GAAG,iCAAyB,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;SACzE;KACF;YAAS;QACR,iGAAiG;QACjG,kEAAkE;QAClE,MAAM,OAAO,GAAG,IAAA,oBAAY,GAAE,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,oBAAoB,GAAG,OAAO,CAAC;YAC1C,UAAU,CAAC,kBAAkB,GAAG,OAAO,CAAC;YACxC,UAAU,CAAC,4BAA4B,GAAG,OAAO,CAAC;QACpD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,iBAAiB,IAAI,CAAC,oBAAoB,EAAE;QAC/C,OAAO;KACR;IAED,gFAAgF;IAChF,gEAAgE;IAChE,MAAM,EAAE,0BAA0B,EAAE,GAAG,YAAY,EAAE,GACnD,iBAAiB,CAAC,IAAI,CAAC;IAEzB,MAAM,iBAAiB,GAAsB;QAC3C,GAAG,0BAA0B;QAC7B,GAAG,YAAY;QACf,iBAAiB,EAAE,yBAAyB;YAC1C,CAAC,CAAC,yBAAyB,CAAC,aAAa;YACzC,CAAC,CAAC,EAAE;QACN,IAAI,EAAE,8BAAsB,CAAC,0BAA0B;KACxD,CAAC;IAEF,MAAM,oBAAoB,GAAsB,IAAA,kBAAU,EACxD,iBAAiB,EACjB,oBAAoB,CAAC,IAAI,EACzB,QAAQ,CAAC,uBAAuB,CACjC,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,CAAC,oBAAoB,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,MAAM,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAChC,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,WAAW,CAAC,CAClE,CAAC;IACF,IAAI,eAAkD,CAAC;IAEvD,IAAI;QACF,eAAe,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAC1B,GAAG,iCAAyB,IAAI,iBAAiB,EAAE,CACpD,CAAC;KACH;YAAS;QACR,kGAAkG;QAClG,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,kBAAkB,GAAG,IAAA,oBAAY,GAAE,CAAC;QACjD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,eAAe,EAAE,IAAI,EAAE;QAC1B,OAAO;KACR;IACD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,OAAO,EACP,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,EAAE,EACF,EAAE,CACH,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IAEvE,IAAI;QACF,yBAAyB;YACvB,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EACR,GAAG,+BAAuB,cAAc,IAAA,4BAAoB,EAC1D,IAAI,CAAC,KAAK,CAAC,4BAA4B,CACxC,EAAE,CACJ,CAAC;KACL;YAAS;QACR,4GAA4G;QAC5G,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,4BAA4B,GAAG,IAAA,oBAAY,GAAE,CAAC;QAC3D,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,yBAAyB,EAAE;QAC9B,OAAO;KACR;IAED,MAAM,sBAAsB,GAAG,yBAAyB,CAAC,aAAa,CAAC;IACvE,MAAM,wBAAwB,GAAG,yBAAyB,CAAC,eAAe,CAAC;IAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,EAAE,EACF,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,sBAAsB,EACtB,wBAAwB,CACzB,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC,oCAED,KAAK,0CACH,KAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,IAAA,gCAAa,EAClC,GAAG,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EACzC,IAAI,CACL,CAAC;IAEF,QAAQ,QAAQ,EAAE,MAAM,EAAE;QACxB,KAAK,GAAG,CAAC,CAAC;YACR,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;SAC9B;QAED,OAAO,CAAC,CAAC;YACP,OAAO,IAAI,CAAC;SACb;KACF;AACH,CAAC;AAGH,kBAAe,kBAAkB,CAAC","sourcesContent":["import type {\n  ControllerGetStateAction,\n  ControllerStateChangeEvent,\n  RestrictedMessenger,\n} from '@metamask/base-controller';\nimport { BaseController } from '@metamask/base-controller';\nimport {\n  safelyExecute,\n  safelyExecuteWithTimeout,\n} from '@metamask/controller-utils';\nimport { toASCII } from 'punycode/punycode.js';\n\nimport { PhishingDetector } from './PhishingDetector';\nimport {\n  PhishingDetectorResultType,\n  type PhishingDetectorResult,\n  type PhishingDetectionScanResult,\n  RecommendedAction,\n} from './types';\nimport {\n  applyDiffs,\n  fetchTimeNow,\n  getHostnameFromUrl,\n  roundToNearestMinute,\n  getHostnameFromWebUrl,\n} from './utils';\n\nexport const PHISHING_CONFIG_BASE_URL =\n  'https://phishing-detection.api.cx.metamask.io';\nexport const METAMASK_STALELIST_FILE = '/v1/stalelist';\nexport const METAMASK_HOTLIST_DIFF_FILE = '/v1/diffsSince';\n\nexport const CLIENT_SIDE_DETECION_BASE_URL =\n  'https://client-side-detection.api.cx.metamask.io';\nexport const C2_DOMAIN_BLOCKLIST_ENDPOINT = '/v1/request-blocklist';\n\nexport const PHISHING_DETECTION_BASE_URL =\n  'https://dapp-scanning.api.cx.metamask.io';\nexport const PHISHING_DETECTION_SCAN_ENDPOINT = 'scan';\n\nexport const C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const HOTLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const STALELIST_REFRESH_INTERVAL = 30 * 24 * 60 * 60; // 30 days in seconds\n\nexport const METAMASK_STALELIST_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_STALELIST_FILE}`;\nexport const METAMASK_HOTLIST_DIFF_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_HOTLIST_DIFF_FILE}`;\nexport const C2_DOMAIN_BLOCKLIST_URL = `${CLIENT_SIDE_DETECION_BASE_URL}${C2_DOMAIN_BLOCKLIST_ENDPOINT}`;\n\n/**\n * @type ListTypes\n *\n * Type outlining the types of lists provided by aggregating different source lists\n */\nexport type ListTypes =\n  | 'fuzzylist'\n  | 'blocklist'\n  | 'allowlist'\n  | 'c2DomainBlocklist';\n\n/**\n * @type EthPhishingResponse\n *\n * Configuration response from the eth-phishing-detect package\n * consisting of approved and unapproved website origins\n * @property blacklist - List of unapproved origins\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property version - Version number of this configuration\n * @property whitelist - List of approved origins\n */\nexport type EthPhishingResponse = {\n  blacklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  whitelist: string[];\n};\n\n/**\n * @type C2DomainBlocklistResponse\n *\n * Response for blocklist update requests\n * @property recentlyAdded - List of c2 domains recently added to the blocklist\n * @property recentlyRemoved - List of c2 domains recently removed from the blocklist\n * @property lastFetchedAt - Timestamp of the last fetch request\n */\nexport type C2DomainBlocklistResponse = {\n  recentlyAdded: string[];\n  recentlyRemoved: string[];\n  lastFetchedAt: string;\n};\n\n/**\n * @type PhishingStalelist\n *\n * type defining expected type of the stalelist.json file.\n * @property eth_phishing_detect_config - Stale list sourced from eth-phishing-detect's config.json.\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Stalelist data structure iteration.\n */\nexport type PhishingStalelist = {\n  // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n  // eslint-disable-next-line @typescript-eslint/naming-convention\n  eth_phishing_detect_config: Record<ListTypes, string[]>;\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n};\n\n/**\n * @type PhishingListState\n *\n * type defining the persisted list state. This is the persisted state that is updated frequently with `this.maybeUpdateState()`.\n * @property allowlist - List of approved origins (legacy naming \"whitelist\")\n * @property blocklist - List of unapproved origins (legacy naming \"blacklist\")\n * @property c2DomainBlocklist - List of hashed hostnames that C2 requests are blocked against.\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Version of the phishing list state.\n * @property name - Name of the list. Used for attribution.\n */\nexport type PhishingListState = {\n  allowlist: string[];\n  blocklist: string[];\n  c2DomainBlocklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n  name: ListNames;\n};\n\n/**\n * @type HotlistDiff\n *\n * type defining the expected type of the diffs in hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type HotlistDiff = {\n  url: string;\n  timestamp: number;\n  targetList: `${ListKeys}.${ListTypes}`;\n  isRemoval?: boolean;\n};\n\n// TODO: Either fix this lint violation or explain why it's necessary to ignore.\n// eslint-disable-next-line @typescript-eslint/naming-convention\nexport type DataResultWrapper<T> = {\n  data: T;\n};\n\n/**\n * @type Hotlist\n *\n * Type defining expected hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type Hotlist = HotlistDiff[];\n\n/**\n * Enum containing upstream data provider source list keys.\n * These are the keys denoting lists consumed by the upstream data provider.\n */\nexport enum ListKeys {\n  EthPhishingDetectConfig = 'eth_phishing_detect_config',\n}\n\n/**\n * Enum containing downstream client attribution names.\n */\nexport enum ListNames {\n  MetaMask = 'MetaMask',\n}\n\n/**\n * Maps from downstream client attribution name\n * to list key sourced from upstream data provider.\n */\nconst phishingListNameKeyMap = {\n  [ListNames.MetaMask]: ListKeys.EthPhishingDetectConfig,\n};\n\n/**\n * Maps from list key sourced from upstream data\n * provider to downstream client attribution name.\n */\nexport const phishingListKeyNameMap = {\n  [ListKeys.EthPhishingDetectConfig]: ListNames.MetaMask,\n};\n\nconst controllerName = 'PhishingController';\n\nconst metadata = {\n  phishingLists: { persist: true, anonymous: false },\n  whitelist: { persist: true, anonymous: false },\n  hotlistLastFetched: { persist: true, anonymous: false },\n  stalelistLastFetched: { persist: true, anonymous: false },\n  c2DomainBlocklistLastFetched: { persist: true, anonymous: false },\n};\n\n/**\n * Get a default empty state for the controller.\n * @returns The default empty state.\n */\nconst getDefaultState = (): PhishingControllerState => {\n  return {\n    phishingLists: [],\n    whitelist: [],\n    hotlistLastFetched: 0,\n    stalelistLastFetched: 0,\n    c2DomainBlocklistLastFetched: 0,\n  };\n};\n\n/**\n * @type PhishingControllerState\n *\n * Phishing controller state\n * @property phishing - eth-phishing-detect configuration\n * @property whitelist - array of temporarily-approved origins\n */\nexport type PhishingControllerState = {\n  phishingLists: PhishingListState[];\n  whitelist: string[];\n  hotlistLastFetched: number;\n  stalelistLastFetched: number;\n  c2DomainBlocklistLastFetched: number;\n};\n\n/**\n * @type PhishingControllerOptions\n *\n * Phishing controller options\n * @property stalelistRefreshInterval - Polling interval used to fetch stale list.\n * @property hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * @property c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n */\nexport type PhishingControllerOptions = {\n  stalelistRefreshInterval?: number;\n  hotlistRefreshInterval?: number;\n  c2DomainBlocklistRefreshInterval?: number;\n  messenger: PhishingControllerMessenger;\n  state?: Partial<PhishingControllerState>;\n};\n\nexport type MaybeUpdateState = {\n  type: `${typeof controllerName}:maybeUpdateState`;\n  handler: PhishingController['maybeUpdateState'];\n};\n\nexport type TestOrigin = {\n  type: `${typeof controllerName}:testOrigin`;\n  handler: PhishingController['test'];\n};\n\nexport type PhishingControllerGetStateAction = ControllerGetStateAction<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerActions =\n  | PhishingControllerGetStateAction\n  | MaybeUpdateState\n  | TestOrigin;\n\nexport type PhishingControllerStateChangeEvent = ControllerStateChangeEvent<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerEvents = PhishingControllerStateChangeEvent;\n\nexport type PhishingControllerMessenger = RestrictedMessenger<\n  typeof controllerName,\n  PhishingControllerActions,\n  PhishingControllerEvents,\n  never,\n  never\n>;\n\n/**\n * Controller that manages community-maintained lists of approved and unapproved website origins.\n */\nexport class PhishingController extends BaseController<\n  typeof controllerName,\n  PhishingControllerState,\n  PhishingControllerMessenger\n> {\n  // TODO: Replace `any` with type\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  #detector: any;\n\n  #stalelistRefreshInterval: number;\n\n  #hotlistRefreshInterval: number;\n\n  #c2DomainBlocklistRefreshInterval: number;\n\n  #inProgressHotlistUpdate?: Promise<void>;\n\n  #inProgressStalelistUpdate?: Promise<void>;\n\n  #isProgressC2DomainBlocklistUpdate?: Promise<void>;\n\n  /**\n   * Construct a Phishing Controller.\n   *\n   * @param config - Initial options used to configure this controller.\n   * @param config.stalelistRefreshInterval - Polling interval used to fetch stale list.\n   * @param config.hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n   * @param config.c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n   * @param config.messenger - The controller restricted messenger.\n   * @param config.state - Initial state to set on this controller.\n   */\n  constructor({\n    stalelistRefreshInterval = STALELIST_REFRESH_INTERVAL,\n    hotlistRefreshInterval = HOTLIST_REFRESH_INTERVAL,\n    c2DomainBlocklistRefreshInterval = C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL,\n    messenger,\n    state = {},\n  }: PhishingControllerOptions) {\n    super({\n      name: controllerName,\n      metadata,\n      messenger,\n      state: {\n        ...getDefaultState(),\n        ...state,\n      },\n    });\n\n    this.#stalelistRefreshInterval = stalelistRefreshInterval;\n    this.#hotlistRefreshInterval = hotlistRefreshInterval;\n    this.#c2DomainBlocklistRefreshInterval = c2DomainBlocklistRefreshInterval;\n    this.#registerMessageHandlers();\n\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Constructor helper for registering this controller's messaging system\n   * actions.\n   */\n  #registerMessageHandlers(): void {\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:maybeUpdateState` as const,\n      this.maybeUpdateState.bind(this),\n    );\n\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:testOrigin` as const,\n      this.test.bind(this),\n    );\n  }\n\n  /**\n   * Updates this.detector with an instance of PhishingDetector using the current state.\n   */\n  updatePhishingDetector() {\n    this.#detector = new PhishingDetector(this.state.phishingLists);\n  }\n\n  /**\n   * Set the interval at which the stale phishing list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateStalelist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setStalelistRefreshInterval(interval: number) {\n    this.#stalelistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the hot list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setHotlistRefreshInterval(interval: number) {\n    this.#hotlistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the C2 domain blocklist will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setC2DomainBlocklistRefreshInterval(interval: number) {\n    this.#c2DomainBlocklistRefreshInterval = interval;\n  }\n\n  /**\n   * Determine if an update to the stalelist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isStalelistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.stalelistLastFetched >=\n      this.#stalelistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the hotlist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isHotlistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.hotlistLastFetched >=\n      this.#hotlistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the C2 domain blocklist is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isC2DomainBlocklistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.c2DomainBlocklistLastFetched >=\n      this.#c2DomainBlocklistRefreshInterval\n    );\n  }\n\n  /**\n   * Conditionally update the phishing configuration.\n   *\n   * If the stalelist configuration is out of date, this function will call `updateStalelist`\n   * to update the configuration. This will automatically grab the hotlist,\n   * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n   *\n   */\n  async maybeUpdateState() {\n    const staleListOutOfDate = this.isStalelistOutOfDate();\n    if (staleListOutOfDate) {\n      await this.updateStalelist();\n      return;\n    }\n    const hotlistOutOfDate = this.isHotlistOutOfDate();\n    if (hotlistOutOfDate) {\n      await this.updateHotlist();\n    }\n    const c2DomainBlocklistOutOfDate = this.isC2DomainBlocklistOutOfDate();\n    if (c2DomainBlocklistOutOfDate) {\n      await this.updateC2DomainBlocklist();\n    }\n  }\n\n  /**\n   * Determines if a given origin is unapproved.\n   *\n   * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n   * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n   * by calling {@link updateStalelist} or {@link updateHotlist}.\n   *\n   * @param origin - Domain origin of a website.\n   * @returns Whether the origin is an unapproved origin.\n   */\n  test(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.check(punycodeOrigin);\n  }\n\n  /**\n   * Checks if a request URL's domain is blocked against the request blocklist.\n   *\n   * This method is used to determine if a specific request URL is associated with a malicious\n   * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n   * blocklist of known malicious domains.\n   *\n   * @param origin - The full request URL to be checked.\n   * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n   */\n  isBlockedRequest(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.isMaliciousC2Domain(punycodeOrigin);\n  }\n\n  /**\n   * Temporarily marks a given origin as approved.\n   *\n   * @param origin - The origin to mark as approved.\n   */\n  bypass(origin: string) {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    const { whitelist } = this.state;\n    if (whitelist.includes(hostname || punycodeOrigin)) {\n      return;\n    }\n    this.update((draftState) => {\n      draftState.whitelist.push(hostname || punycodeOrigin);\n    });\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateC2DomainBlocklist() {\n    if (this.#isProgressC2DomainBlocklistUpdate) {\n      await this.#isProgressC2DomainBlocklistUpdate;\n      return;\n    }\n\n    try {\n      this.#isProgressC2DomainBlocklistUpdate = this.#updateC2DomainBlocklist();\n      await this.#isProgressC2DomainBlocklistUpdate;\n    } finally {\n      this.#isProgressC2DomainBlocklistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the hotlist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateHotlist() {\n    if (this.#inProgressHotlistUpdate) {\n      await this.#inProgressHotlistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressHotlistUpdate = this.#updateHotlist();\n      await this.#inProgressHotlistUpdate;\n    } finally {\n      this.#inProgressHotlistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the stalelist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateStalelist() {\n    if (this.#inProgressStalelistUpdate) {\n      await this.#inProgressStalelistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressStalelistUpdate = this.#updateStalelist();\n      await this.#inProgressStalelistUpdate;\n    } finally {\n      this.#inProgressStalelistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n   * web URLs.\n   *\n   * @param url - The URL to scan.\n   * @returns The phishing detection scan result.\n   */\n  scanUrl = async (url: string): Promise<PhishingDetectionScanResult> => {\n    const [hostname, ok] = getHostnameFromWebUrl(url);\n    if (!ok) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'url is not a valid web URL',\n      };\n    }\n\n    const apiResponse = await safelyExecuteWithTimeout(\n      async () => {\n        const res = await fetch(\n          `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(hostname)}`,\n          {\n            method: 'GET',\n            headers: {\n              Accept: 'application/json',\n            },\n          },\n        );\n        if (!res.ok) {\n          return {\n            error: `${res.status} ${res.statusText}`,\n          };\n        }\n        const data = await res.json();\n        return data;\n      },\n      true,\n      8000,\n    );\n\n    // Need to do it this way because safelyExecuteWithTimeout returns undefined for both timeouts and errors.\n    if (!apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'timeout of 8000ms exceeded',\n      };\n    } else if ('error' in apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: apiResponse.error,\n      };\n    }\n\n    return {\n      domainName: hostname,\n      recommendedAction: apiResponse.recommendedAction,\n    } as PhishingDetectionScanResult;\n  };\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateStalelist() {\n    let stalelistResponse: DataResultWrapper<PhishingStalelist> | null = null;\n    let hotlistDiffsResponse: DataResultWrapper<Hotlist> | null = null;\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n    try {\n      const stalelistPromise = this.#queryConfig<\n        DataResultWrapper<PhishingStalelist>\n      >(METAMASK_STALELIST_URL);\n\n      const c2DomainBlocklistPromise =\n        this.#queryConfig<C2DomainBlocklistResponse>(C2_DOMAIN_BLOCKLIST_URL);\n\n      [stalelistResponse, c2DomainBlocklistResponse] = await Promise.all([\n        stalelistPromise,\n        c2DomainBlocklistPromise,\n      ]);\n      // Fetching hotlist diffs relies on having a lastUpdated timestamp to do `GET /v1/diffsSince/:timestamp`,\n      // so it doesn't make sense to call if there is not a timestamp to begin with.\n      if (stalelistResponse?.data && stalelistResponse.data.lastUpdated > 0) {\n        hotlistDiffsResponse = await this.#queryConfig<\n          DataResultWrapper<Hotlist>\n        >(`${METAMASK_HOTLIST_DIFF_URL}/${stalelistResponse.data.lastUpdated}`);\n      }\n    } finally {\n      // Set `stalelistLastFetched` and `hotlistLastFetched` even for failed requests to prevent server\n      // from being overwhelmed with traffic after a network disruption.\n      const timeNow = fetchTimeNow();\n      this.update((draftState) => {\n        draftState.stalelistLastFetched = timeNow;\n        draftState.hotlistLastFetched = timeNow;\n        draftState.c2DomainBlocklistLastFetched = timeNow;\n      });\n    }\n\n    if (!stalelistResponse || !hotlistDiffsResponse) {\n      return;\n    }\n\n    // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n    // eslint-disable-next-line @typescript-eslint/naming-convention\n    const { eth_phishing_detect_config, ...partialState } =\n      stalelistResponse.data;\n\n    const metamaskListState: PhishingListState = {\n      ...eth_phishing_detect_config,\n      ...partialState,\n      c2DomainBlocklist: c2DomainBlocklistResponse\n        ? c2DomainBlocklistResponse.recentlyAdded\n        : [],\n      name: phishingListKeyNameMap.eth_phishing_detect_config,\n    };\n\n    const newMetaMaskListState: PhishingListState = applyDiffs(\n      metamaskListState,\n      hotlistDiffsResponse.data,\n      ListKeys.EthPhishingDetectConfig,\n    );\n\n    this.update((draftState) => {\n      draftState.phishingLists = [newMetaMaskListState];\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateHotlist() {\n    const lastDiffTimestamp = Math.max(\n      ...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated),\n    );\n    let hotlistResponse: DataResultWrapper<Hotlist> | null;\n\n    try {\n      hotlistResponse = await this.#queryConfig<DataResultWrapper<Hotlist>>(\n        `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`,\n      );\n    } finally {\n      // Set `hotlistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.hotlistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!hotlistResponse?.data) {\n      return;\n    }\n    const hotlist = hotlistResponse.data;\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        hotlist,\n        phishingListNameKeyMap[phishingList.name],\n        [],\n        [],\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * This should only be called from the `updateC2DomainBlocklist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateC2DomainBlocklist() {\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n\n    try {\n      c2DomainBlocklistResponse =\n        await this.#queryConfig<C2DomainBlocklistResponse>(\n          `${C2_DOMAIN_BLOCKLIST_URL}?timestamp=${roundToNearestMinute(\n            this.state.c2DomainBlocklistLastFetched,\n          )}`,\n        );\n    } finally {\n      // Set `c2DomainBlocklistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.c2DomainBlocklistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!c2DomainBlocklistResponse) {\n      return;\n    }\n\n    const recentlyAddedC2Domains = c2DomainBlocklistResponse.recentlyAdded;\n    const recentlyRemovedC2Domains = c2DomainBlocklistResponse.recentlyRemoved;\n\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        [],\n        phishingListNameKeyMap[phishingList.name],\n        recentlyAddedC2Domains,\n        recentlyRemovedC2Domains,\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  async #queryConfig<ResponseType>(\n    input: RequestInfo,\n  ): Promise<ResponseType | null> {\n    const response = await safelyExecute(\n      () => fetch(input, { cache: 'no-cache' }),\n      true,\n    );\n\n    switch (response?.status) {\n      case 200: {\n        return await response.json();\n      }\n\n      default: {\n        return null;\n      }\n    }\n  }\n}\n\nexport default PhishingController;\n\nexport type { PhishingDetectorResult };\n"]}
+{"version":3,"file":"PhishingController.cjs","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAKA,+DAA2D;AAC3D,iEAGoC;AACpC,sDAA+C;AAE/C,6DAAsD;AACtD,uCAKiB;AACjB,uCAMiB;AAEJ,QAAA,wBAAwB,GACnC,+CAA+C,CAAC;AACrC,QAAA,uBAAuB,GAAG,eAAe,CAAC;AAC1C,QAAA,0BAA0B,GAAG,gBAAgB,CAAC;AAE9C,QAAA,6BAA6B,GACxC,kDAAkD,CAAC;AACxC,QAAA,4BAA4B,GAAG,uBAAuB,CAAC;AAEvD,QAAA,2BAA2B,GACtC,0CAA0C,CAAC;AAChC,QAAA,gCAAgC,GAAG,MAAM,CAAC;AAE1C,QAAA,oCAAoC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACnE,QAAA,wBAAwB,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACvD,QAAA,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,qBAAqB;AAErE,QAAA,sBAAsB,GAAG,GAAG,gCAAwB,GAAG,+BAAuB,EAAE,CAAC;AACjF,QAAA,yBAAyB,GAAG,GAAG,gCAAwB,GAAG,kCAA0B,EAAE,CAAC;AACvF,QAAA,uBAAuB,GAAG,GAAG,qCAA6B,GAAG,oCAA4B,EAAE,CAAC;AAyHzG;;;GAGG;AACH,IAAY,QAEX;AAFD,WAAY,QAAQ;IAClB,kEAAsD,CAAA;AACxD,CAAC,EAFW,QAAQ,wBAAR,QAAQ,QAEnB;AAED;;GAEG;AACH,IAAY,SAEX;AAFD,WAAY,SAAS;IACnB,kCAAqB,CAAA;AACvB,CAAC,EAFW,SAAS,yBAAT,SAAS,QAEpB;AAED;;;GAGG;AACH,MAAM,sBAAsB,GAAG;IAC7B,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,uBAAuB;CACvD,CAAC;AAEF;;;GAGG;AACU,QAAA,sBAAsB,GAAG;IACpC,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,SAAS,CAAC,QAAQ;CACvD,CAAC;AAEF,MAAM,cAAc,GAAG,oBAAoB,CAAC;AAE5C,MAAM,QAAQ,GAAG;IACf,aAAa,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAClD,SAAS,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAC9C,kBAAkB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACvD,oBAAoB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACzD,4BAA4B,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;CAClE,CAAC;AAEF;;;GAGG;AACH,MAAM,eAAe,GAAG,GAA4B,EAAE;IACpD,OAAO;QACL,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE;QACb,kBAAkB,EAAE,CAAC;QACrB,oBAAoB,EAAE,CAAC;QACvB,4BAA4B,EAAE,CAAC;KAChC,CAAC;AACJ,CAAC,CAAC;AAoEF;;GAEG;AACH,MAAa,kBAAmB,SAAQ,gCAIvC;IAiBC;;;;;;;;;OASG;IACH,YAAY,EACV,wBAAwB,GAAG,kCAA0B,EACrD,sBAAsB,GAAG,gCAAwB,EACjD,gCAAgC,GAAG,4CAAoC,EACvE,SAAS,EACT,KAAK,GAAG,EAAE,GACgB;QAC1B,KAAK,CAAC;YACJ,IAAI,EAAE,cAAc;YACpB,QAAQ;YACR,SAAS;YACT,KAAK,EAAE;gBACL,GAAG,eAAe,EAAE;gBACpB,GAAG,KAAK;aACT;SACF,CAAC,CAAC;;QAzCL,gCAAgC;QAChC,8DAA8D;QAC9D,+CAAe;QAEf,+DAAkC;QAElC,6DAAgC;QAEhC,uEAA0C;QAE1C,8DAAyC;QAEzC,gEAA2C;QAE3C,wEAAmD;QA4QnD;;;;;;WAMG;QACH,YAAO,GAAG,KAAK,EAAE,GAAW,EAAwC,EAAE;YACpE,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,IAAA,6BAAqB,EAAC,GAAG,CAAC,CAAC;YAClD,IAAI,CAAC,EAAE,EAAE;gBACP,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;YAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,mCAA2B,IAAI,wCAAgC,QAAQ,kBAAkB,CAAC,QAAQ,CAAC,EAAE,EACxG;oBACE,MAAM,EAAE,KAAK;oBACb,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;qBAC3B;iBACF,CACF,CAAC;gBACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE;oBACX,OAAO;wBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;qBACzC,CAAC;iBACH;gBACD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;YAEF,0GAA0G;YAC1G,IAAI,CAAC,WAAW,EAAE;gBAChB,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;iBAAM,IAAI,OAAO,IAAI,WAAW,EAAE;gBACjC,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;iBAC9B,CAAC;aACH;YAED,OAAO;gBACL,UAAU,EAAE,QAAQ;gBACpB,iBAAiB,EAAE,WAAW,CAAC,iBAAiB;aAClB,CAAC;QACnC,CAAC,CAAC;QA1SA,uBAAA,IAAI,gDAA6B,wBAAwB,MAAA,CAAC;QAC1D,uBAAA,IAAI,8CAA2B,sBAAsB,MAAA,CAAC;QACtD,uBAAA,IAAI,wDAAqC,gCAAgC,MAAA,CAAC;QAC1E,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,CAAC;QAEhC,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,CAAC;IAkBD;;OAEG;IACH,sBAAsB;QACpB,uBAAA,IAAI,gCAAa,IAAI,mCAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAA,CAAC;IAClE,CAAC;IAED;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAgB;QAC1C,uBAAA,IAAI,gDAA6B,QAAQ,MAAA,CAAC;IAC5C,CAAC;IAED;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAgB;QACxC,uBAAA,IAAI,8CAA2B,QAAQ,MAAA,CAAC;IAC1C,CAAC;IAED;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAgB;QAClD,uBAAA,IAAI,wDAAqC,QAAQ,MAAA,CAAC;IACpD,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB;YAChD,uBAAA,IAAI,oDAA0B,CAC/B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,kBAAkB;QAChB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB;YAC9C,uBAAA,IAAI,kDAAwB,CAC7B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,4BAA4B;QAC1B,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,4BAA4B;YACxD,uBAAA,IAAI,4DAAkC,CACvC,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,gBAAgB;QACpB,MAAM,kBAAkB,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACvD,IAAI,kBAAkB,EAAE;YACtB,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC7B,OAAO;SACR;QACD,MAAM,gBAAgB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACnD,IAAI,gBAAgB,EAAE;YACpB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;SAC5B;QACD,MAAM,0BAA0B,GAAG,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACvE,IAAI,0BAA0B,EAAE;YAC9B,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;SACtC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAc;QACjB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC;IAED;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAc;QAC7B,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,MAAM,CAAC,MAAc;QACnB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,MAAM,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC;QACjC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAClD,OAAO;SACR;QACD,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,IAAI,cAAc,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,uBAAuB;QAC3B,IAAI,uBAAA,IAAI,6DAAmC,EAAE;YAC3C,MAAM,uBAAA,IAAI,6DAAmC,CAAC;YAC9C,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,yDAAsC,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,MAAA,CAAC;YAC1E,MAAM,uBAAA,IAAI,6DAAmC,CAAC;SAC/C;gBAAS;YACR,uBAAA,IAAI,yDAAsC,SAAS,MAAA,CAAC;SACrD;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,uBAAA,IAAI,mDAAyB,EAAE;YACjC,MAAM,uBAAA,IAAI,mDAAyB,CAAC;YACpC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,+CAA4B,uBAAA,IAAI,wEAAe,MAAnB,IAAI,CAAiB,MAAA,CAAC;YACtD,MAAM,uBAAA,IAAI,mDAAyB,CAAC;SACrC;gBAAS;YACR,uBAAA,IAAI,+CAA4B,SAAS,MAAA,CAAC;SAC3C;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe;QACnB,IAAI,uBAAA,IAAI,qDAA2B,EAAE;YACnC,MAAM,uBAAA,IAAI,qDAA2B,CAAC;YACtC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,iDAA8B,uBAAA,IAAI,0EAAiB,MAArB,IAAI,CAAmB,MAAA,CAAC;YAC1D,MAAM,uBAAA,IAAI,qDAA2B,CAAC;SACvC;gBAAS;YACR,uBAAA,IAAI,iDAA8B,SAAS,MAAA,CAAC;SAC7C;IACH,CAAC;CA2PF;AAxhBD,gDAwhBC;;IA3dG,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,mBAA4B,EAC7C,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CACjC,CAAC;IAEF,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,aAAsB,EACvC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CACrB,CAAC;AACJ,CAAC;AAsRD;;;;;GAKG;AACH,KAAK;IACH,IAAI,iBAAiB,GAAgD,IAAI,CAAC;IAC1E,IAAI,oBAAoB,GAAsC,IAAI,CAAC;IACnE,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IACvE,IAAI;QACF,MAAM,gBAAgB,GAAG,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE3B,8BAAsB,CAAC,CAAC;QAE1B,MAAM,wBAAwB,GAC5B,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAAyC,+BAAuB,CAAC,CAAC;QAExE,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjE,gBAAgB;YAChB,wBAAwB;SACzB,CAAC,CAAC;QACH,yGAAyG;QACzG,8EAA8E;QAC9E,IAAI,iBAAiB,EAAE,IAAI,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,EAAE;YACrE,oBAAoB,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE/B,GAAG,iCAAyB,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;SACzE;KACF;YAAS;QACR,iGAAiG;QACjG,kEAAkE;QAClE,MAAM,OAAO,GAAG,IAAA,oBAAY,GAAE,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,oBAAoB,GAAG,OAAO,CAAC;YAC1C,UAAU,CAAC,kBAAkB,GAAG,OAAO,CAAC;YACxC,UAAU,CAAC,4BAA4B,GAAG,OAAO,CAAC;QACpD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,iBAAiB,IAAI,CAAC,oBAAoB,EAAE;QAC/C,OAAO;KACR;IAED,gFAAgF;IAChF,gEAAgE;IAChE,MAAM,EAAE,0BAA0B,EAAE,GAAG,YAAY,EAAE,GACnD,iBAAiB,CAAC,IAAI,CAAC;IAEzB,MAAM,iBAAiB,GAAsB;QAC3C,GAAG,0BAA0B;QAC7B,GAAG,YAAY;QACf,iBAAiB,EAAE,yBAAyB;YAC1C,CAAC,CAAC,yBAAyB,CAAC,aAAa;YACzC,CAAC,CAAC,EAAE;QACN,IAAI,EAAE,8BAAsB,CAAC,0BAA0B;KACxD,CAAC;IAEF,MAAM,oBAAoB,GAAsB,IAAA,kBAAU,EACxD,iBAAiB,EACjB,oBAAoB,CAAC,IAAI,EACzB,QAAQ,CAAC,uBAAuB,CACjC,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,CAAC,oBAAoB,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,eAAkD,CAAC;IAEvD,IAAI;QACF,IAAI,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE;YACzC,OAAO;SACR;QAED,MAAM,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAChC,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,WAAW,CAAC,CAClE,CAAC;QAEF,eAAe,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAC1B,GAAG,iCAAyB,IAAI,iBAAiB,EAAE,CACpD,CAAC;KACH;YAAS;QACR,kGAAkG;QAClG,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,kBAAkB,GAAG,IAAA,oBAAY,GAAE,CAAC;QACjD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,eAAe,EAAE,IAAI,EAAE;QAC1B,OAAO;KACR;IACD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,OAAO,EACP,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,EAAE,EACF,EAAE,CACH,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IAEvE,IAAI;QACF,yBAAyB;YACvB,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EACR,GAAG,+BAAuB,cAAc,IAAA,4BAAoB,EAC1D,IAAI,CAAC,KAAK,CAAC,4BAA4B,CACxC,EAAE,CACJ,CAAC;KACL;YAAS;QACR,4GAA4G;QAC5G,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,4BAA4B,GAAG,IAAA,oBAAY,GAAE,CAAC;QAC3D,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,yBAAyB,EAAE;QAC9B,OAAO;KACR;IAED,MAAM,sBAAsB,GAAG,yBAAyB,CAAC,aAAa,CAAC;IACvE,MAAM,wBAAwB,GAAG,yBAAyB,CAAC,eAAe,CAAC;IAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,EAAE,EACF,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,sBAAsB,EACtB,wBAAwB,CACzB,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC,oCAED,KAAK,0CACH,KAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,IAAA,gCAAa,EAClC,GAAG,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EACzC,IAAI,CACL,CAAC;IAEF,QAAQ,QAAQ,EAAE,MAAM,EAAE;QACxB,KAAK,GAAG,CAAC,CAAC;YACR,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;SAC9B;QAED,OAAO,CAAC,CAAC;YACP,OAAO,IAAI,CAAC;SACb;KACF;AACH,CAAC;AAGH,kBAAe,kBAAkB,CAAC","sourcesContent":["import type {\n  ControllerGetStateAction,\n  ControllerStateChangeEvent,\n  RestrictedMessenger,\n} from '@metamask/base-controller';\nimport { BaseController } from '@metamask/base-controller';\nimport {\n  safelyExecute,\n  safelyExecuteWithTimeout,\n} from '@metamask/controller-utils';\nimport { toASCII } from 'punycode/punycode.js';\n\nimport { PhishingDetector } from './PhishingDetector';\nimport {\n  PhishingDetectorResultType,\n  type PhishingDetectorResult,\n  type PhishingDetectionScanResult,\n  RecommendedAction,\n} from './types';\nimport {\n  applyDiffs,\n  fetchTimeNow,\n  getHostnameFromUrl,\n  roundToNearestMinute,\n  getHostnameFromWebUrl,\n} from './utils';\n\nexport const PHISHING_CONFIG_BASE_URL =\n  'https://phishing-detection.api.cx.metamask.io';\nexport const METAMASK_STALELIST_FILE = '/v1/stalelist';\nexport const METAMASK_HOTLIST_DIFF_FILE = '/v1/diffsSince';\n\nexport const CLIENT_SIDE_DETECION_BASE_URL =\n  'https://client-side-detection.api.cx.metamask.io';\nexport const C2_DOMAIN_BLOCKLIST_ENDPOINT = '/v1/request-blocklist';\n\nexport const PHISHING_DETECTION_BASE_URL =\n  'https://dapp-scanning.api.cx.metamask.io';\nexport const PHISHING_DETECTION_SCAN_ENDPOINT = 'scan';\n\nexport const C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const HOTLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const STALELIST_REFRESH_INTERVAL = 30 * 24 * 60 * 60; // 30 days in seconds\n\nexport const METAMASK_STALELIST_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_STALELIST_FILE}`;\nexport const METAMASK_HOTLIST_DIFF_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_HOTLIST_DIFF_FILE}`;\nexport const C2_DOMAIN_BLOCKLIST_URL = `${CLIENT_SIDE_DETECION_BASE_URL}${C2_DOMAIN_BLOCKLIST_ENDPOINT}`;\n\n/**\n * @type ListTypes\n *\n * Type outlining the types of lists provided by aggregating different source lists\n */\nexport type ListTypes =\n  | 'fuzzylist'\n  | 'blocklist'\n  | 'allowlist'\n  | 'c2DomainBlocklist';\n\n/**\n * @type EthPhishingResponse\n *\n * Configuration response from the eth-phishing-detect package\n * consisting of approved and unapproved website origins\n * @property blacklist - List of unapproved origins\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property version - Version number of this configuration\n * @property whitelist - List of approved origins\n */\nexport type EthPhishingResponse = {\n  blacklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  whitelist: string[];\n};\n\n/**\n * @type C2DomainBlocklistResponse\n *\n * Response for blocklist update requests\n * @property recentlyAdded - List of c2 domains recently added to the blocklist\n * @property recentlyRemoved - List of c2 domains recently removed from the blocklist\n * @property lastFetchedAt - Timestamp of the last fetch request\n */\nexport type C2DomainBlocklistResponse = {\n  recentlyAdded: string[];\n  recentlyRemoved: string[];\n  lastFetchedAt: string;\n};\n\n/**\n * @type PhishingStalelist\n *\n * type defining expected type of the stalelist.json file.\n * @property eth_phishing_detect_config - Stale list sourced from eth-phishing-detect's config.json.\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Stalelist data structure iteration.\n */\nexport type PhishingStalelist = {\n  // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n  // eslint-disable-next-line @typescript-eslint/naming-convention\n  eth_phishing_detect_config: Record<ListTypes, string[]>;\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n};\n\n/**\n * @type PhishingListState\n *\n * type defining the persisted list state. This is the persisted state that is updated frequently with `this.maybeUpdateState()`.\n * @property allowlist - List of approved origins (legacy naming \"whitelist\")\n * @property blocklist - List of unapproved origins (legacy naming \"blacklist\")\n * @property c2DomainBlocklist - List of hashed hostnames that C2 requests are blocked against.\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Version of the phishing list state.\n * @property name - Name of the list. Used for attribution.\n */\nexport type PhishingListState = {\n  allowlist: string[];\n  blocklist: string[];\n  c2DomainBlocklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n  name: ListNames;\n};\n\n/**\n * @type HotlistDiff\n *\n * type defining the expected type of the diffs in hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type HotlistDiff = {\n  url: string;\n  timestamp: number;\n  targetList: `${ListKeys}.${ListTypes}`;\n  isRemoval?: boolean;\n};\n\n// TODO: Either fix this lint violation or explain why it's necessary to ignore.\n// eslint-disable-next-line @typescript-eslint/naming-convention\nexport type DataResultWrapper<T> = {\n  data: T;\n};\n\n/**\n * @type Hotlist\n *\n * Type defining expected hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type Hotlist = HotlistDiff[];\n\n/**\n * Enum containing upstream data provider source list keys.\n * These are the keys denoting lists consumed by the upstream data provider.\n */\nexport enum ListKeys {\n  EthPhishingDetectConfig = 'eth_phishing_detect_config',\n}\n\n/**\n * Enum containing downstream client attribution names.\n */\nexport enum ListNames {\n  MetaMask = 'MetaMask',\n}\n\n/**\n * Maps from downstream client attribution name\n * to list key sourced from upstream data provider.\n */\nconst phishingListNameKeyMap = {\n  [ListNames.MetaMask]: ListKeys.EthPhishingDetectConfig,\n};\n\n/**\n * Maps from list key sourced from upstream data\n * provider to downstream client attribution name.\n */\nexport const phishingListKeyNameMap = {\n  [ListKeys.EthPhishingDetectConfig]: ListNames.MetaMask,\n};\n\nconst controllerName = 'PhishingController';\n\nconst metadata = {\n  phishingLists: { persist: true, anonymous: false },\n  whitelist: { persist: true, anonymous: false },\n  hotlistLastFetched: { persist: true, anonymous: false },\n  stalelistLastFetched: { persist: true, anonymous: false },\n  c2DomainBlocklistLastFetched: { persist: true, anonymous: false },\n};\n\n/**\n * Get a default empty state for the controller.\n * @returns The default empty state.\n */\nconst getDefaultState = (): PhishingControllerState => {\n  return {\n    phishingLists: [],\n    whitelist: [],\n    hotlistLastFetched: 0,\n    stalelistLastFetched: 0,\n    c2DomainBlocklistLastFetched: 0,\n  };\n};\n\n/**\n * @type PhishingControllerState\n *\n * Phishing controller state\n * @property phishing - eth-phishing-detect configuration\n * @property whitelist - array of temporarily-approved origins\n */\nexport type PhishingControllerState = {\n  phishingLists: PhishingListState[];\n  whitelist: string[];\n  hotlistLastFetched: number;\n  stalelistLastFetched: number;\n  c2DomainBlocklistLastFetched: number;\n};\n\n/**\n * @type PhishingControllerOptions\n *\n * Phishing controller options\n * @property stalelistRefreshInterval - Polling interval used to fetch stale list.\n * @property hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * @property c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n */\nexport type PhishingControllerOptions = {\n  stalelistRefreshInterval?: number;\n  hotlistRefreshInterval?: number;\n  c2DomainBlocklistRefreshInterval?: number;\n  messenger: PhishingControllerMessenger;\n  state?: Partial<PhishingControllerState>;\n};\n\nexport type MaybeUpdateState = {\n  type: `${typeof controllerName}:maybeUpdateState`;\n  handler: PhishingController['maybeUpdateState'];\n};\n\nexport type TestOrigin = {\n  type: `${typeof controllerName}:testOrigin`;\n  handler: PhishingController['test'];\n};\n\nexport type PhishingControllerGetStateAction = ControllerGetStateAction<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerActions =\n  | PhishingControllerGetStateAction\n  | MaybeUpdateState\n  | TestOrigin;\n\nexport type PhishingControllerStateChangeEvent = ControllerStateChangeEvent<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerEvents = PhishingControllerStateChangeEvent;\n\nexport type PhishingControllerMessenger = RestrictedMessenger<\n  typeof controllerName,\n  PhishingControllerActions,\n  PhishingControllerEvents,\n  never,\n  never\n>;\n\n/**\n * Controller that manages community-maintained lists of approved and unapproved website origins.\n */\nexport class PhishingController extends BaseController<\n  typeof controllerName,\n  PhishingControllerState,\n  PhishingControllerMessenger\n> {\n  // TODO: Replace `any` with type\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  #detector: any;\n\n  #stalelistRefreshInterval: number;\n\n  #hotlistRefreshInterval: number;\n\n  #c2DomainBlocklistRefreshInterval: number;\n\n  #inProgressHotlistUpdate?: Promise<void>;\n\n  #inProgressStalelistUpdate?: Promise<void>;\n\n  #isProgressC2DomainBlocklistUpdate?: Promise<void>;\n\n  /**\n   * Construct a Phishing Controller.\n   *\n   * @param config - Initial options used to configure this controller.\n   * @param config.stalelistRefreshInterval - Polling interval used to fetch stale list.\n   * @param config.hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n   * @param config.c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n   * @param config.messenger - The controller restricted messenger.\n   * @param config.state - Initial state to set on this controller.\n   */\n  constructor({\n    stalelistRefreshInterval = STALELIST_REFRESH_INTERVAL,\n    hotlistRefreshInterval = HOTLIST_REFRESH_INTERVAL,\n    c2DomainBlocklistRefreshInterval = C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL,\n    messenger,\n    state = {},\n  }: PhishingControllerOptions) {\n    super({\n      name: controllerName,\n      metadata,\n      messenger,\n      state: {\n        ...getDefaultState(),\n        ...state,\n      },\n    });\n\n    this.#stalelistRefreshInterval = stalelistRefreshInterval;\n    this.#hotlistRefreshInterval = hotlistRefreshInterval;\n    this.#c2DomainBlocklistRefreshInterval = c2DomainBlocklistRefreshInterval;\n    this.#registerMessageHandlers();\n\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Constructor helper for registering this controller's messaging system\n   * actions.\n   */\n  #registerMessageHandlers(): void {\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:maybeUpdateState` as const,\n      this.maybeUpdateState.bind(this),\n    );\n\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:testOrigin` as const,\n      this.test.bind(this),\n    );\n  }\n\n  /**\n   * Updates this.detector with an instance of PhishingDetector using the current state.\n   */\n  updatePhishingDetector() {\n    this.#detector = new PhishingDetector(this.state.phishingLists);\n  }\n\n  /**\n   * Set the interval at which the stale phishing list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateStalelist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setStalelistRefreshInterval(interval: number) {\n    this.#stalelistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the hot list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setHotlistRefreshInterval(interval: number) {\n    this.#hotlistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the C2 domain blocklist will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setC2DomainBlocklistRefreshInterval(interval: number) {\n    this.#c2DomainBlocklistRefreshInterval = interval;\n  }\n\n  /**\n   * Determine if an update to the stalelist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isStalelistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.stalelistLastFetched >=\n      this.#stalelistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the hotlist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isHotlistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.hotlistLastFetched >=\n      this.#hotlistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the C2 domain blocklist is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isC2DomainBlocklistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.c2DomainBlocklistLastFetched >=\n      this.#c2DomainBlocklistRefreshInterval\n    );\n  }\n\n  /**\n   * Conditionally update the phishing configuration.\n   *\n   * If the stalelist configuration is out of date, this function will call `updateStalelist`\n   * to update the configuration. This will automatically grab the hotlist,\n   * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n   *\n   */\n  async maybeUpdateState() {\n    const staleListOutOfDate = this.isStalelistOutOfDate();\n    if (staleListOutOfDate) {\n      await this.updateStalelist();\n      return;\n    }\n    const hotlistOutOfDate = this.isHotlistOutOfDate();\n    if (hotlistOutOfDate) {\n      await this.updateHotlist();\n    }\n    const c2DomainBlocklistOutOfDate = this.isC2DomainBlocklistOutOfDate();\n    if (c2DomainBlocklistOutOfDate) {\n      await this.updateC2DomainBlocklist();\n    }\n  }\n\n  /**\n   * Determines if a given origin is unapproved.\n   *\n   * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n   * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n   * by calling {@link updateStalelist} or {@link updateHotlist}.\n   *\n   * @param origin - Domain origin of a website.\n   * @returns Whether the origin is an unapproved origin.\n   */\n  test(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.check(punycodeOrigin);\n  }\n\n  /**\n   * Checks if a request URL's domain is blocked against the request blocklist.\n   *\n   * This method is used to determine if a specific request URL is associated with a malicious\n   * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n   * blocklist of known malicious domains.\n   *\n   * @param origin - The full request URL to be checked.\n   * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n   */\n  isBlockedRequest(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.isMaliciousC2Domain(punycodeOrigin);\n  }\n\n  /**\n   * Temporarily marks a given origin as approved.\n   *\n   * @param origin - The origin to mark as approved.\n   */\n  bypass(origin: string) {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    const { whitelist } = this.state;\n    if (whitelist.includes(hostname || punycodeOrigin)) {\n      return;\n    }\n    this.update((draftState) => {\n      draftState.whitelist.push(hostname || punycodeOrigin);\n    });\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateC2DomainBlocklist() {\n    if (this.#isProgressC2DomainBlocklistUpdate) {\n      await this.#isProgressC2DomainBlocklistUpdate;\n      return;\n    }\n\n    try {\n      this.#isProgressC2DomainBlocklistUpdate = this.#updateC2DomainBlocklist();\n      await this.#isProgressC2DomainBlocklistUpdate;\n    } finally {\n      this.#isProgressC2DomainBlocklistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the hotlist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateHotlist() {\n    if (this.#inProgressHotlistUpdate) {\n      await this.#inProgressHotlistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressHotlistUpdate = this.#updateHotlist();\n      await this.#inProgressHotlistUpdate;\n    } finally {\n      this.#inProgressHotlistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the stalelist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateStalelist() {\n    if (this.#inProgressStalelistUpdate) {\n      await this.#inProgressStalelistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressStalelistUpdate = this.#updateStalelist();\n      await this.#inProgressStalelistUpdate;\n    } finally {\n      this.#inProgressStalelistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n   * web URLs.\n   *\n   * @param url - The URL to scan.\n   * @returns The phishing detection scan result.\n   */\n  scanUrl = async (url: string): Promise<PhishingDetectionScanResult> => {\n    const [hostname, ok] = getHostnameFromWebUrl(url);\n    if (!ok) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'url is not a valid web URL',\n      };\n    }\n\n    const apiResponse = await safelyExecuteWithTimeout(\n      async () => {\n        const res = await fetch(\n          `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(hostname)}`,\n          {\n            method: 'GET',\n            headers: {\n              Accept: 'application/json',\n            },\n          },\n        );\n        if (!res.ok) {\n          return {\n            error: `${res.status} ${res.statusText}`,\n          };\n        }\n        const data = await res.json();\n        return data;\n      },\n      true,\n      8000,\n    );\n\n    // Need to do it this way because safelyExecuteWithTimeout returns undefined for both timeouts and errors.\n    if (!apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'timeout of 8000ms exceeded',\n      };\n    } else if ('error' in apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: apiResponse.error,\n      };\n    }\n\n    return {\n      domainName: hostname,\n      recommendedAction: apiResponse.recommendedAction,\n    } as PhishingDetectionScanResult;\n  };\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateStalelist() {\n    let stalelistResponse: DataResultWrapper<PhishingStalelist> | null = null;\n    let hotlistDiffsResponse: DataResultWrapper<Hotlist> | null = null;\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n    try {\n      const stalelistPromise = this.#queryConfig<\n        DataResultWrapper<PhishingStalelist>\n      >(METAMASK_STALELIST_URL);\n\n      const c2DomainBlocklistPromise =\n        this.#queryConfig<C2DomainBlocklistResponse>(C2_DOMAIN_BLOCKLIST_URL);\n\n      [stalelistResponse, c2DomainBlocklistResponse] = await Promise.all([\n        stalelistPromise,\n        c2DomainBlocklistPromise,\n      ]);\n      // Fetching hotlist diffs relies on having a lastUpdated timestamp to do `GET /v1/diffsSince/:timestamp`,\n      // so it doesn't make sense to call if there is not a timestamp to begin with.\n      if (stalelistResponse?.data && stalelistResponse.data.lastUpdated > 0) {\n        hotlistDiffsResponse = await this.#queryConfig<\n          DataResultWrapper<Hotlist>\n        >(`${METAMASK_HOTLIST_DIFF_URL}/${stalelistResponse.data.lastUpdated}`);\n      }\n    } finally {\n      // Set `stalelistLastFetched` and `hotlistLastFetched` even for failed requests to prevent server\n      // from being overwhelmed with traffic after a network disruption.\n      const timeNow = fetchTimeNow();\n      this.update((draftState) => {\n        draftState.stalelistLastFetched = timeNow;\n        draftState.hotlistLastFetched = timeNow;\n        draftState.c2DomainBlocklistLastFetched = timeNow;\n      });\n    }\n\n    if (!stalelistResponse || !hotlistDiffsResponse) {\n      return;\n    }\n\n    // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n    // eslint-disable-next-line @typescript-eslint/naming-convention\n    const { eth_phishing_detect_config, ...partialState } =\n      stalelistResponse.data;\n\n    const metamaskListState: PhishingListState = {\n      ...eth_phishing_detect_config,\n      ...partialState,\n      c2DomainBlocklist: c2DomainBlocklistResponse\n        ? c2DomainBlocklistResponse.recentlyAdded\n        : [],\n      name: phishingListKeyNameMap.eth_phishing_detect_config,\n    };\n\n    const newMetaMaskListState: PhishingListState = applyDiffs(\n      metamaskListState,\n      hotlistDiffsResponse.data,\n      ListKeys.EthPhishingDetectConfig,\n    );\n\n    this.update((draftState) => {\n      draftState.phishingLists = [newMetaMaskListState];\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateHotlist() {\n    let hotlistResponse: DataResultWrapper<Hotlist> | null;\n\n    try {\n      if (this.state.phishingLists.length === 0) {\n        return;\n      }\n\n      const lastDiffTimestamp = Math.max(\n        ...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated),\n      );\n\n      hotlistResponse = await this.#queryConfig<DataResultWrapper<Hotlist>>(\n        `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`,\n      );\n    } finally {\n      // Set `hotlistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.hotlistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!hotlistResponse?.data) {\n      return;\n    }\n    const hotlist = hotlistResponse.data;\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        hotlist,\n        phishingListNameKeyMap[phishingList.name],\n        [],\n        [],\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * This should only be called from the `updateC2DomainBlocklist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateC2DomainBlocklist() {\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n\n    try {\n      c2DomainBlocklistResponse =\n        await this.#queryConfig<C2DomainBlocklistResponse>(\n          `${C2_DOMAIN_BLOCKLIST_URL}?timestamp=${roundToNearestMinute(\n            this.state.c2DomainBlocklistLastFetched,\n          )}`,\n        );\n    } finally {\n      // Set `c2DomainBlocklistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.c2DomainBlocklistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!c2DomainBlocklistResponse) {\n      return;\n    }\n\n    const recentlyAddedC2Domains = c2DomainBlocklistResponse.recentlyAdded;\n    const recentlyRemovedC2Domains = c2DomainBlocklistResponse.recentlyRemoved;\n\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        [],\n        phishingListNameKeyMap[phishingList.name],\n        recentlyAddedC2Domains,\n        recentlyRemovedC2Domains,\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  async #queryConfig<ResponseType>(\n    input: RequestInfo,\n  ): Promise<ResponseType | null> {\n    const response = await safelyExecute(\n      () => fetch(input, { cache: 'no-cache' }),\n      true,\n    );\n\n    switch (response?.status) {\n      case 200: {\n        return await response.json();\n      }\n\n      default: {\n        return null;\n      }\n    }\n  }\n}\n\nexport default PhishingController;\n\nexport type { PhishingDetectorResult };\n"]}

package/dist/PhishingController.d.cts.map

@@ -1 +1 @@
-{"version":3,"file":"PhishingController.d.cts","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,wBAAwB,EACxB,0BAA0B,EAC1B,mBAAmB,EACpB,kCAAkC;AACnC,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAQ3D,OAAO,EAEL,KAAK,sBAAsB,EAC3B,KAAK,2BAA2B,EAEjC,oBAAgB;AASjB,eAAO,MAAM,wBAAwB,kDACY,CAAC;AAClD,eAAO,MAAM,uBAAuB,kBAAkB,CAAC;AACvD,eAAO,MAAM,0BAA0B,mBAAmB,CAAC;AAE3D,eAAO,MAAM,6BAA6B,qDACU,CAAC;AACrD,eAAO,MAAM,4BAA4B,0BAA0B,CAAC;AAEpE,eAAO,MAAM,2BAA2B,6CACI,CAAC;AAC7C,eAAO,MAAM,gCAAgC,SAAS,CAAC;AAEvD,eAAO,MAAM,oCAAoC,QAAS,CAAC;AAC3D,eAAO,MAAM,wBAAwB,QAAS,CAAC;AAC/C,eAAO,MAAM,0BAA0B,QAAoB,CAAC;AAE5D,eAAO,MAAM,sBAAsB,+DAA0D,CAAC;AAC9F,eAAO,MAAM,yBAAyB,gEAA6D,CAAC;AACpG,eAAO,MAAM,uBAAuB,0EAAoE,CAAC;AAEzG;;;;GAIG;AACH,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,WAAW,GACX,WAAW,GACX,mBAAmB,CAAC;AAExB;;;;;;;;;;GAUG;AACH,MAAM,MAAM,mBAAmB,GAAG;IAChC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAG9B,0BAA0B,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,CAAC,CAAC;IACxD,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,SAAS,CAAC;CACjB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,WAAW,GAAG;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC;IACvC,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,CAAC;AAIF,MAAM,MAAM,iBAAiB,CAAC,CAAC,IAAI;IACjC,IAAI,EAAE,CAAC,CAAC;CACT,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;AAEpC;;;GAGG;AACH,oBAAY,QAAQ;IAClB,uBAAuB,+BAA+B;CACvD;AAED;;GAEG;AACH,oBAAY,SAAS;IACnB,QAAQ,aAAa;CACtB;AAUD;;;GAGG;AACH,eAAO,MAAM,sBAAsB;;CAElC,CAAC;AAEF,QAAA,MAAM,cAAc,uBAAuB,CAAC;AAwB5C;;;;;;GAMG;AACH,MAAM,MAAM,uBAAuB,GAAG;IACpC,aAAa,EAAE,iBAAiB,EAAE,CAAC;IACnC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,4BAA4B,EAAE,MAAM,CAAC;CACtC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gCAAgC,CAAC,EAAE,MAAM,CAAC;IAC1C,SAAS,EAAE,2BAA2B,CAAC;IACvC,KAAK,CAAC,EAAE,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC1C,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,IAAI,EAAE,GAAG,OAAO,cAAc,mBAAmB,CAAC;IAClD,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,IAAI,EAAE,GAAG,OAAO,cAAc,aAAa,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,MAAM,CAAC,CAAC;CACrC,CAAC;AAEF,MAAM,MAAM,gCAAgC,GAAG,wBAAwB,CACrE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,yBAAyB,GACjC,gCAAgC,GAChC,gBAAgB,GAChB,UAAU,CAAC;AAEf,MAAM,MAAM,kCAAkC,GAAG,0BAA0B,CACzE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG,kCAAkC,CAAC;AAE1E,MAAM,MAAM,2BAA2B,GAAG,mBAAmB,CAC3D,OAAO,cAAc,EACrB,yBAAyB,EACzB,wBAAwB,EACxB,KAAK,EACL,KAAK,CACN,CAAC;AAEF;;GAEG;AACH,qBAAa,kBAAmB,SAAQ,cAAc,CACpD,OAAO,cAAc,EACrB,uBAAuB,EACvB,2BAA2B,CAC5B;;IAiBC;;;;;;;;;OASG;gBACS,EACV,wBAAqD,EACrD,sBAAiD,EACjD,gCAAuE,EACvE,SAAS,EACT,KAAU,GACX,EAAE,yBAAyB;IAmC5B;;OAEG;IACH,sBAAsB;IAItB;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAQ,EAAE,MAAM;IAI5C;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAQ,EAAE,MAAM;IAI1C;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAQ,EAAE,MAAM;IAIpD;;;;OAIG;IACH,oBAAoB;IAOpB;;;;OAIG;IACH,kBAAkB;IAOlB;;;;OAIG;IACH,4BAA4B;IAO5B;;;;;;;OAOG;IACG,gBAAgB;IAgBtB;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IAS5C;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IASxD;;;;OAIG;IACH,MAAM,CAAC,MAAM,EAAE,MAAM;IAYrB;;;;;OAKG;IACG,uBAAuB;IAc7B;;;;;OAKG;IACG,aAAa;IAcnB;;;;;OAKG;IACG,eAAe;IAcrB;;;;;;OAMG;IACH,OAAO,QAAe,MAAM,KAAG,QAAQ,2BAA2B,CAAC,CAoDjE;CAyLH;AAED,eAAe,kBAAkB,CAAC;AAElC,YAAY,EAAE,sBAAsB,EAAE,CAAC"}
+{"version":3,"file":"PhishingController.d.cts","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,wBAAwB,EACxB,0BAA0B,EAC1B,mBAAmB,EACpB,kCAAkC;AACnC,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAQ3D,OAAO,EAEL,KAAK,sBAAsB,EAC3B,KAAK,2BAA2B,EAEjC,oBAAgB;AASjB,eAAO,MAAM,wBAAwB,kDACY,CAAC;AAClD,eAAO,MAAM,uBAAuB,kBAAkB,CAAC;AACvD,eAAO,MAAM,0BAA0B,mBAAmB,CAAC;AAE3D,eAAO,MAAM,6BAA6B,qDACU,CAAC;AACrD,eAAO,MAAM,4BAA4B,0BAA0B,CAAC;AAEpE,eAAO,MAAM,2BAA2B,6CACI,CAAC;AAC7C,eAAO,MAAM,gCAAgC,SAAS,CAAC;AAEvD,eAAO,MAAM,oCAAoC,QAAS,CAAC;AAC3D,eAAO,MAAM,wBAAwB,QAAS,CAAC;AAC/C,eAAO,MAAM,0BAA0B,QAAoB,CAAC;AAE5D,eAAO,MAAM,sBAAsB,+DAA0D,CAAC;AAC9F,eAAO,MAAM,yBAAyB,gEAA6D,CAAC;AACpG,eAAO,MAAM,uBAAuB,0EAAoE,CAAC;AAEzG;;;;GAIG;AACH,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,WAAW,GACX,WAAW,GACX,mBAAmB,CAAC;AAExB;;;;;;;;;;GAUG;AACH,MAAM,MAAM,mBAAmB,GAAG;IAChC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAG9B,0BAA0B,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,CAAC,CAAC;IACxD,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,SAAS,CAAC;CACjB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,WAAW,GAAG;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC;IACvC,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,CAAC;AAIF,MAAM,MAAM,iBAAiB,CAAC,CAAC,IAAI;IACjC,IAAI,EAAE,CAAC,CAAC;CACT,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;AAEpC;;;GAGG;AACH,oBAAY,QAAQ;IAClB,uBAAuB,+BAA+B;CACvD;AAED;;GAEG;AACH,oBAAY,SAAS;IACnB,QAAQ,aAAa;CACtB;AAUD;;;GAGG;AACH,eAAO,MAAM,sBAAsB;;CAElC,CAAC;AAEF,QAAA,MAAM,cAAc,uBAAuB,CAAC;AAwB5C;;;;;;GAMG;AACH,MAAM,MAAM,uBAAuB,GAAG;IACpC,aAAa,EAAE,iBAAiB,EAAE,CAAC;IACnC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,4BAA4B,EAAE,MAAM,CAAC;CACtC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gCAAgC,CAAC,EAAE,MAAM,CAAC;IAC1C,SAAS,EAAE,2BAA2B,CAAC;IACvC,KAAK,CAAC,EAAE,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC1C,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,IAAI,EAAE,GAAG,OAAO,cAAc,mBAAmB,CAAC;IAClD,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,IAAI,EAAE,GAAG,OAAO,cAAc,aAAa,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,MAAM,CAAC,CAAC;CACrC,CAAC;AAEF,MAAM,MAAM,gCAAgC,GAAG,wBAAwB,CACrE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,yBAAyB,GACjC,gCAAgC,GAChC,gBAAgB,GAChB,UAAU,CAAC;AAEf,MAAM,MAAM,kCAAkC,GAAG,0BAA0B,CACzE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG,kCAAkC,CAAC;AAE1E,MAAM,MAAM,2BAA2B,GAAG,mBAAmB,CAC3D,OAAO,cAAc,EACrB,yBAAyB,EACzB,wBAAwB,EACxB,KAAK,EACL,KAAK,CACN,CAAC;AAEF;;GAEG;AACH,qBAAa,kBAAmB,SAAQ,cAAc,CACpD,OAAO,cAAc,EACrB,uBAAuB,EACvB,2BAA2B,CAC5B;;IAiBC;;;;;;;;;OASG;gBACS,EACV,wBAAqD,EACrD,sBAAiD,EACjD,gCAAuE,EACvE,SAAS,EACT,KAAU,GACX,EAAE,yBAAyB;IAmC5B;;OAEG;IACH,sBAAsB;IAItB;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAQ,EAAE,MAAM;IAI5C;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAQ,EAAE,MAAM;IAI1C;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAQ,EAAE,MAAM;IAIpD;;;;OAIG;IACH,oBAAoB;IAOpB;;;;OAIG;IACH,kBAAkB;IAOlB;;;;OAIG;IACH,4BAA4B;IAO5B;;;;;;;OAOG;IACG,gBAAgB;IAgBtB;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IAS5C;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IASxD;;;;OAIG;IACH,MAAM,CAAC,MAAM,EAAE,MAAM;IAYrB;;;;;OAKG;IACG,uBAAuB;IAc7B;;;;;OAKG;IACG,aAAa;IAcnB;;;;;OAKG;IACG,eAAe;IAcrB;;;;;;OAMG;IACH,OAAO,QAAe,MAAM,KAAG,QAAQ,2BAA2B,CAAC,CAoDjE;CA8LH;AAED,eAAe,kBAAkB,CAAC;AAElC,YAAY,EAAE,sBAAsB,EAAE,CAAC"}

package/dist/PhishingController.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"PhishingController.d.mts","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,wBAAwB,EACxB,0BAA0B,EAC1B,mBAAmB,EACpB,kCAAkC;AACnC,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAQ3D,OAAO,EAEL,KAAK,sBAAsB,EAC3B,KAAK,2BAA2B,EAEjC,oBAAgB;AASjB,eAAO,MAAM,wBAAwB,kDACY,CAAC;AAClD,eAAO,MAAM,uBAAuB,kBAAkB,CAAC;AACvD,eAAO,MAAM,0BAA0B,mBAAmB,CAAC;AAE3D,eAAO,MAAM,6BAA6B,qDACU,CAAC;AACrD,eAAO,MAAM,4BAA4B,0BAA0B,CAAC;AAEpE,eAAO,MAAM,2BAA2B,6CACI,CAAC;AAC7C,eAAO,MAAM,gCAAgC,SAAS,CAAC;AAEvD,eAAO,MAAM,oCAAoC,QAAS,CAAC;AAC3D,eAAO,MAAM,wBAAwB,QAAS,CAAC;AAC/C,eAAO,MAAM,0BAA0B,QAAoB,CAAC;AAE5D,eAAO,MAAM,sBAAsB,+DAA0D,CAAC;AAC9F,eAAO,MAAM,yBAAyB,gEAA6D,CAAC;AACpG,eAAO,MAAM,uBAAuB,0EAAoE,CAAC;AAEzG;;;;GAIG;AACH,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,WAAW,GACX,WAAW,GACX,mBAAmB,CAAC;AAExB;;;;;;;;;;GAUG;AACH,MAAM,MAAM,mBAAmB,GAAG;IAChC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAG9B,0BAA0B,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,CAAC,CAAC;IACxD,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,SAAS,CAAC;CACjB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,WAAW,GAAG;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC;IACvC,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,CAAC;AAIF,MAAM,MAAM,iBAAiB,CAAC,CAAC,IAAI;IACjC,IAAI,EAAE,CAAC,CAAC;CACT,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;AAEpC;;;GAGG;AACH,oBAAY,QAAQ;IAClB,uBAAuB,+BAA+B;CACvD;AAED;;GAEG;AACH,oBAAY,SAAS;IACnB,QAAQ,aAAa;CACtB;AAUD;;;GAGG;AACH,eAAO,MAAM,sBAAsB;;CAElC,CAAC;AAEF,QAAA,MAAM,cAAc,uBAAuB,CAAC;AAwB5C;;;;;;GAMG;AACH,MAAM,MAAM,uBAAuB,GAAG;IACpC,aAAa,EAAE,iBAAiB,EAAE,CAAC;IACnC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,4BAA4B,EAAE,MAAM,CAAC;CACtC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gCAAgC,CAAC,EAAE,MAAM,CAAC;IAC1C,SAAS,EAAE,2BAA2B,CAAC;IACvC,KAAK,CAAC,EAAE,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC1C,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,IAAI,EAAE,GAAG,OAAO,cAAc,mBAAmB,CAAC;IAClD,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,IAAI,EAAE,GAAG,OAAO,cAAc,aAAa,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,MAAM,CAAC,CAAC;CACrC,CAAC;AAEF,MAAM,MAAM,gCAAgC,GAAG,wBAAwB,CACrE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,yBAAyB,GACjC,gCAAgC,GAChC,gBAAgB,GAChB,UAAU,CAAC;AAEf,MAAM,MAAM,kCAAkC,GAAG,0BAA0B,CACzE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG,kCAAkC,CAAC;AAE1E,MAAM,MAAM,2BAA2B,GAAG,mBAAmB,CAC3D,OAAO,cAAc,EACrB,yBAAyB,EACzB,wBAAwB,EACxB,KAAK,EACL,KAAK,CACN,CAAC;AAEF;;GAEG;AACH,qBAAa,kBAAmB,SAAQ,cAAc,CACpD,OAAO,cAAc,EACrB,uBAAuB,EACvB,2BAA2B,CAC5B;;IAiBC;;;;;;;;;OASG;gBACS,EACV,wBAAqD,EACrD,sBAAiD,EACjD,gCAAuE,EACvE,SAAS,EACT,KAAU,GACX,EAAE,yBAAyB;IAmC5B;;OAEG;IACH,sBAAsB;IAItB;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAQ,EAAE,MAAM;IAI5C;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAQ,EAAE,MAAM;IAI1C;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAQ,EAAE,MAAM;IAIpD;;;;OAIG;IACH,oBAAoB;IAOpB;;;;OAIG;IACH,kBAAkB;IAOlB;;;;OAIG;IACH,4BAA4B;IAO5B;;;;;;;OAOG;IACG,gBAAgB;IAgBtB;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IAS5C;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IASxD;;;;OAIG;IACH,MAAM,CAAC,MAAM,EAAE,MAAM;IAYrB;;;;;OAKG;IACG,uBAAuB;IAc7B;;;;;OAKG;IACG,aAAa;IAcnB;;;;;OAKG;IACG,eAAe;IAcrB;;;;;;OAMG;IACH,OAAO,QAAe,MAAM,KAAG,QAAQ,2BAA2B,CAAC,CAoDjE;CAyLH;AAED,eAAe,kBAAkB,CAAC;AAElC,YAAY,EAAE,sBAAsB,EAAE,CAAC"}
+{"version":3,"file":"PhishingController.d.mts","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,wBAAwB,EACxB,0BAA0B,EAC1B,mBAAmB,EACpB,kCAAkC;AACnC,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAQ3D,OAAO,EAEL,KAAK,sBAAsB,EAC3B,KAAK,2BAA2B,EAEjC,oBAAgB;AASjB,eAAO,MAAM,wBAAwB,kDACY,CAAC;AAClD,eAAO,MAAM,uBAAuB,kBAAkB,CAAC;AACvD,eAAO,MAAM,0BAA0B,mBAAmB,CAAC;AAE3D,eAAO,MAAM,6BAA6B,qDACU,CAAC;AACrD,eAAO,MAAM,4BAA4B,0BAA0B,CAAC;AAEpE,eAAO,MAAM,2BAA2B,6CACI,CAAC;AAC7C,eAAO,MAAM,gCAAgC,SAAS,CAAC;AAEvD,eAAO,MAAM,oCAAoC,QAAS,CAAC;AAC3D,eAAO,MAAM,wBAAwB,QAAS,CAAC;AAC/C,eAAO,MAAM,0BAA0B,QAAoB,CAAC;AAE5D,eAAO,MAAM,sBAAsB,+DAA0D,CAAC;AAC9F,eAAO,MAAM,yBAAyB,gEAA6D,CAAC;AACpG,eAAO,MAAM,uBAAuB,0EAAoE,CAAC;AAEzG;;;;GAIG;AACH,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,WAAW,GACX,WAAW,GACX,mBAAmB,CAAC;AAExB;;;;;;;;;;GAUG;AACH,MAAM,MAAM,mBAAmB,GAAG;IAChC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAG9B,0BAA0B,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,CAAC,CAAC;IACxD,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,SAAS,CAAC;CACjB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,WAAW,GAAG;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC;IACvC,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,CAAC;AAIF,MAAM,MAAM,iBAAiB,CAAC,CAAC,IAAI;IACjC,IAAI,EAAE,CAAC,CAAC;CACT,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;AAEpC;;;GAGG;AACH,oBAAY,QAAQ;IAClB,uBAAuB,+BAA+B;CACvD;AAED;;GAEG;AACH,oBAAY,SAAS;IACnB,QAAQ,aAAa;CACtB;AAUD;;;GAGG;AACH,eAAO,MAAM,sBAAsB;;CAElC,CAAC;AAEF,QAAA,MAAM,cAAc,uBAAuB,CAAC;AAwB5C;;;;;;GAMG;AACH,MAAM,MAAM,uBAAuB,GAAG;IACpC,aAAa,EAAE,iBAAiB,EAAE,CAAC;IACnC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,4BAA4B,EAAE,MAAM,CAAC;CACtC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gCAAgC,CAAC,EAAE,MAAM,CAAC;IAC1C,SAAS,EAAE,2BAA2B,CAAC;IACvC,KAAK,CAAC,EAAE,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC1C,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,IAAI,EAAE,GAAG,OAAO,cAAc,mBAAmB,CAAC;IAClD,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,IAAI,EAAE,GAAG,OAAO,cAAc,aAAa,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,MAAM,CAAC,CAAC;CACrC,CAAC;AAEF,MAAM,MAAM,gCAAgC,GAAG,wBAAwB,CACrE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,yBAAyB,GACjC,gCAAgC,GAChC,gBAAgB,GAChB,UAAU,CAAC;AAEf,MAAM,MAAM,kCAAkC,GAAG,0BAA0B,CACzE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG,kCAAkC,CAAC;AAE1E,MAAM,MAAM,2BAA2B,GAAG,mBAAmB,CAC3D,OAAO,cAAc,EACrB,yBAAyB,EACzB,wBAAwB,EACxB,KAAK,EACL,KAAK,CACN,CAAC;AAEF;;GAEG;AACH,qBAAa,kBAAmB,SAAQ,cAAc,CACpD,OAAO,cAAc,EACrB,uBAAuB,EACvB,2BAA2B,CAC5B;;IAiBC;;;;;;;;;OASG;gBACS,EACV,wBAAqD,EACrD,sBAAiD,EACjD,gCAAuE,EACvE,SAAS,EACT,KAAU,GACX,EAAE,yBAAyB;IAmC5B;;OAEG;IACH,sBAAsB;IAItB;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAQ,EAAE,MAAM;IAI5C;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAQ,EAAE,MAAM;IAI1C;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAQ,EAAE,MAAM;IAIpD;;;;OAIG;IACH,oBAAoB;IAOpB;;;;OAIG;IACH,kBAAkB;IAOlB;;;;OAIG;IACH,4BAA4B;IAO5B;;;;;;;OAOG;IACG,gBAAgB;IAgBtB;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IAS5C;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IASxD;;;;OAIG;IACH,MAAM,CAAC,MAAM,EAAE,MAAM;IAYrB;;;;;OAKG;IACG,uBAAuB;IAc7B;;;;;OAKG;IACG,aAAa;IAcnB;;;;;OAKG;IACG,eAAe;IAcrB;;;;;;OAMG;IACH,OAAO,QAAe,MAAM,KAAG,QAAQ,2BAA2B,CAAC,CAoDjE;CA8LH;AAED,eAAe,kBAAkB,CAAC;AAElC,YAAY,EAAE,sBAAsB,EAAE,CAAC"}

package/dist/PhishingController.mjs

@@ -431,9 +431,12 @@ async function _PhishingController_updateStalelist() {
  * this function that prevents redundant configuration updates.
  */
 async function _PhishingController_updateHotlist() {
-    const lastDiffTimestamp = Math.max(...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated));
     let hotlistResponse;
     try {
+        if (this.state.phishingLists.length === 0) {
+            return;
+        }
+        const lastDiffTimestamp = Math.max(...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated));
         hotlistResponse = await __classPrivateFieldGet(this, _PhishingController_instances, "m", _PhishingController_queryConfig).call(this, `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`);
     }
     finally {

package/dist/PhishingController.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"PhishingController.mjs","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":";;;;;;;;;;;;AAKA,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAC3D,OAAO,EACL,aAAa,EACb,wBAAwB,EACzB,mCAAmC;;;AAGpC,OAAO,EAAE,gBAAgB,EAAE,+BAA2B;AACtD,OAAO,EACL,0BAA0B,EAG1B,iBAAiB,EAClB,oBAAgB;AACjB,OAAO,EACL,UAAU,EACV,YAAY,EACZ,kBAAkB,EAClB,oBAAoB,EACpB,qBAAqB,EACtB,oBAAgB;AAEjB,MAAM,CAAC,MAAM,wBAAwB,GACnC,+CAA+C,CAAC;AAClD,MAAM,CAAC,MAAM,uBAAuB,GAAG,eAAe,CAAC;AACvD,MAAM,CAAC,MAAM,0BAA0B,GAAG,gBAAgB,CAAC;AAE3D,MAAM,CAAC,MAAM,6BAA6B,GACxC,kDAAkD,CAAC;AACrD,MAAM,CAAC,MAAM,4BAA4B,GAAG,uBAAuB,CAAC;AAEpE,MAAM,CAAC,MAAM,2BAA2B,GACtC,0CAA0C,CAAC;AAC7C,MAAM,CAAC,MAAM,gCAAgC,GAAG,MAAM,CAAC;AAEvD,MAAM,CAAC,MAAM,oCAAoC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AAChF,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACpE,MAAM,CAAC,MAAM,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,qBAAqB;AAElF,MAAM,CAAC,MAAM,sBAAsB,GAAG,GAAG,wBAAwB,GAAG,uBAAuB,EAAE,CAAC;AAC9F,MAAM,CAAC,MAAM,yBAAyB,GAAG,GAAG,wBAAwB,GAAG,0BAA0B,EAAE,CAAC;AACpG,MAAM,CAAC,MAAM,uBAAuB,GAAG,GAAG,6BAA6B,GAAG,4BAA4B,EAAE,CAAC;AAyHzG;;;GAGG;AACH,MAAM,CAAN,IAAY,QAEX;AAFD,WAAY,QAAQ;IAClB,kEAAsD,CAAA;AACxD,CAAC,EAFW,QAAQ,KAAR,QAAQ,QAEnB;AAED;;GAEG;AACH,MAAM,CAAN,IAAY,SAEX;AAFD,WAAY,SAAS;IACnB,kCAAqB,CAAA;AACvB,CAAC,EAFW,SAAS,KAAT,SAAS,QAEpB;AAED;;;GAGG;AACH,MAAM,sBAAsB,GAAG;IAC7B,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,uBAAuB;CACvD,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,SAAS,CAAC,QAAQ;CACvD,CAAC;AAEF,MAAM,cAAc,GAAG,oBAAoB,CAAC;AAE5C,MAAM,QAAQ,GAAG;IACf,aAAa,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAClD,SAAS,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAC9C,kBAAkB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACvD,oBAAoB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACzD,4BAA4B,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;CAClE,CAAC;AAEF;;;GAGG;AACH,MAAM,eAAe,GAAG,GAA4B,EAAE;IACpD,OAAO;QACL,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE;QACb,kBAAkB,EAAE,CAAC;QACrB,oBAAoB,EAAE,CAAC;QACvB,4BAA4B,EAAE,CAAC;KAChC,CAAC;AACJ,CAAC,CAAC;AAoEF;;GAEG;AACH,MAAM,OAAO,kBAAmB,SAAQ,cAIvC;IAiBC;;;;;;;;;OASG;IACH,YAAY,EACV,wBAAwB,GAAG,0BAA0B,EACrD,sBAAsB,GAAG,wBAAwB,EACjD,gCAAgC,GAAG,oCAAoC,EACvE,SAAS,EACT,KAAK,GAAG,EAAE,GACgB;QAC1B,KAAK,CAAC;YACJ,IAAI,EAAE,cAAc;YACpB,QAAQ;YACR,SAAS;YACT,KAAK,EAAE;gBACL,GAAG,eAAe,EAAE;gBACpB,GAAG,KAAK;aACT;SACF,CAAC,CAAC;;QAzCL,gCAAgC;QAChC,8DAA8D;QAC9D,+CAAe;QAEf,+DAAkC;QAElC,6DAAgC;QAEhC,uEAA0C;QAE1C,8DAAyC;QAEzC,gEAA2C;QAE3C,wEAAmD;QA4QnD;;;;;;WAMG;QACH,YAAO,GAAG,KAAK,EAAE,GAAW,EAAwC,EAAE;YACpE,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,qBAAqB,CAAC,GAAG,CAAC,CAAC;YAClD,IAAI,CAAC,EAAE,EAAE;gBACP,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,iBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;YAED,MAAM,WAAW,GAAG,MAAM,wBAAwB,CAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,2BAA2B,IAAI,gCAAgC,QAAQ,kBAAkB,CAAC,QAAQ,CAAC,EAAE,EACxG;oBACE,MAAM,EAAE,KAAK;oBACb,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;qBAC3B;iBACF,CACF,CAAC;gBACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE;oBACX,OAAO;wBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;qBACzC,CAAC;iBACH;gBACD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;YAEF,0GAA0G;YAC1G,IAAI,CAAC,WAAW,EAAE;gBAChB,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,iBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;iBAAM,IAAI,OAAO,IAAI,WAAW,EAAE;gBACjC,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,iBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;iBAC9B,CAAC;aACH;YAED,OAAO;gBACL,UAAU,EAAE,QAAQ;gBACpB,iBAAiB,EAAE,WAAW,CAAC,iBAAiB;aAClB,CAAC;QACnC,CAAC,CAAC;QA1SA,uBAAA,IAAI,gDAA6B,wBAAwB,MAAA,CAAC;QAC1D,uBAAA,IAAI,8CAA2B,sBAAsB,MAAA,CAAC;QACtD,uBAAA,IAAI,wDAAqC,gCAAgC,MAAA,CAAC;QAC1E,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,CAAC;QAEhC,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,CAAC;IAkBD;;OAEG;IACH,sBAAsB;QACpB,uBAAA,IAAI,gCAAa,IAAI,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAA,CAAC;IAClE,CAAC;IAED;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAgB;QAC1C,uBAAA,IAAI,gDAA6B,QAAQ,MAAA,CAAC;IAC5C,CAAC;IAED;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAgB;QACxC,uBAAA,IAAI,8CAA2B,QAAQ,MAAA,CAAC;IAC1C,CAAC;IAED;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAgB;QAClD,uBAAA,IAAI,wDAAqC,QAAQ,MAAA,CAAC;IACpD,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,OAAO,CACL,YAAY,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB;YAChD,uBAAA,IAAI,oDAA0B,CAC/B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,kBAAkB;QAChB,OAAO,CACL,YAAY,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB;YAC9C,uBAAA,IAAI,kDAAwB,CAC7B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,4BAA4B;QAC1B,OAAO,CACL,YAAY,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,4BAA4B;YACxD,uBAAA,IAAI,4DAAkC,CACvC,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,gBAAgB;QACpB,MAAM,kBAAkB,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACvD,IAAI,kBAAkB,EAAE;YACtB,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC7B,OAAO;SACR;QACD,MAAM,gBAAgB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACnD,IAAI,gBAAgB,EAAE;YACpB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;SAC5B;QACD,MAAM,0BAA0B,GAAG,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACvE,IAAI,0BAA0B,EAAE;YAC9B,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;SACtC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAc;QACjB,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,0BAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC;IAED;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAc;QAC7B,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,0BAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,MAAM,CAAC,MAAc;QACnB,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,cAAc,CAAC,CAAC;QACpD,MAAM,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC;QACjC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAClD,OAAO;SACR;QACD,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,IAAI,cAAc,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,uBAAuB;QAC3B,IAAI,uBAAA,IAAI,6DAAmC,EAAE;YAC3C,MAAM,uBAAA,IAAI,6DAAmC,CAAC;YAC9C,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,yDAAsC,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,MAAA,CAAC;YAC1E,MAAM,uBAAA,IAAI,6DAAmC,CAAC;SAC/C;gBAAS;YACR,uBAAA,IAAI,yDAAsC,SAAS,MAAA,CAAC;SACrD;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,uBAAA,IAAI,mDAAyB,EAAE;YACjC,MAAM,uBAAA,IAAI,mDAAyB,CAAC;YACpC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,+CAA4B,uBAAA,IAAI,wEAAe,MAAnB,IAAI,CAAiB,MAAA,CAAC;YACtD,MAAM,uBAAA,IAAI,mDAAyB,CAAC;SACrC;gBAAS;YACR,uBAAA,IAAI,+CAA4B,SAAS,MAAA,CAAC;SAC3C;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe;QACnB,IAAI,uBAAA,IAAI,qDAA2B,EAAE;YACnC,MAAM,uBAAA,IAAI,qDAA2B,CAAC;YACtC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,iDAA8B,uBAAA,IAAI,0EAAiB,MAArB,IAAI,CAAmB,MAAA,CAAC;YAC1D,MAAM,uBAAA,IAAI,qDAA2B,CAAC;SACvC;gBAAS;YACR,uBAAA,IAAI,iDAA8B,SAAS,MAAA,CAAC;SAC7C;IACH,CAAC;CAsPF;;IAtdG,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,mBAA4B,EAC7C,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CACjC,CAAC;IAEF,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,aAAsB,EACvC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CACrB,CAAC;AACJ,CAAC;AAsRD;;;;;GAKG;AACH,KAAK;IACH,IAAI,iBAAiB,GAAgD,IAAI,CAAC;IAC1E,IAAI,oBAAoB,GAAsC,IAAI,CAAC;IACnE,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IACvE,IAAI;QACF,MAAM,gBAAgB,GAAG,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE3B,sBAAsB,CAAC,CAAC;QAE1B,MAAM,wBAAwB,GAC5B,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAAyC,uBAAuB,CAAC,CAAC;QAExE,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjE,gBAAgB;YAChB,wBAAwB;SACzB,CAAC,CAAC;QACH,yGAAyG;QACzG,8EAA8E;QAC9E,IAAI,iBAAiB,EAAE,IAAI,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,EAAE;YACrE,oBAAoB,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE/B,GAAG,yBAAyB,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;SACzE;KACF;YAAS;QACR,iGAAiG;QACjG,kEAAkE;QAClE,MAAM,OAAO,GAAG,YAAY,EAAE,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,oBAAoB,GAAG,OAAO,CAAC;YAC1C,UAAU,CAAC,kBAAkB,GAAG,OAAO,CAAC;YACxC,UAAU,CAAC,4BAA4B,GAAG,OAAO,CAAC;QACpD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,iBAAiB,IAAI,CAAC,oBAAoB,EAAE;QAC/C,OAAO;KACR;IAED,gFAAgF;IAChF,gEAAgE;IAChE,MAAM,EAAE,0BAA0B,EAAE,GAAG,YAAY,EAAE,GACnD,iBAAiB,CAAC,IAAI,CAAC;IAEzB,MAAM,iBAAiB,GAAsB;QAC3C,GAAG,0BAA0B;QAC7B,GAAG,YAAY;QACf,iBAAiB,EAAE,yBAAyB;YAC1C,CAAC,CAAC,yBAAyB,CAAC,aAAa;YACzC,CAAC,CAAC,EAAE;QACN,IAAI,EAAE,sBAAsB,CAAC,0BAA0B;KACxD,CAAC;IAEF,MAAM,oBAAoB,GAAsB,UAAU,CACxD,iBAAiB,EACjB,oBAAoB,CAAC,IAAI,EACzB,QAAQ,CAAC,uBAAuB,CACjC,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,CAAC,oBAAoB,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,MAAM,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAChC,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,WAAW,CAAC,CAClE,CAAC;IACF,IAAI,eAAkD,CAAC;IAEvD,IAAI;QACF,eAAe,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAC1B,GAAG,yBAAyB,IAAI,iBAAiB,EAAE,CACpD,CAAC;KACH;YAAS;QACR,kGAAkG;QAClG,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,kBAAkB,GAAG,YAAY,EAAE,CAAC;QACjD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,eAAe,EAAE,IAAI,EAAE;QAC1B,OAAO;KACR;IACD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,UAAU,CAC5B,YAAY,EACZ,OAAO,EACP,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,EAAE,EACF,EAAE,CACH,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IAEvE,IAAI;QACF,yBAAyB;YACvB,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EACR,GAAG,uBAAuB,cAAc,oBAAoB,CAC1D,IAAI,CAAC,KAAK,CAAC,4BAA4B,CACxC,EAAE,CACJ,CAAC;KACL;YAAS;QACR,4GAA4G;QAC5G,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,4BAA4B,GAAG,YAAY,EAAE,CAAC;QAC3D,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,yBAAyB,EAAE;QAC9B,OAAO;KACR;IAED,MAAM,sBAAsB,GAAG,yBAAyB,CAAC,aAAa,CAAC;IACvE,MAAM,wBAAwB,GAAG,yBAAyB,CAAC,eAAe,CAAC;IAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,UAAU,CAC5B,YAAY,EACZ,EAAE,EACF,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,sBAAsB,EACtB,wBAAwB,CACzB,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC,oCAED,KAAK,0CACH,KAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,aAAa,CAClC,GAAG,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EACzC,IAAI,CACL,CAAC;IAEF,QAAQ,QAAQ,EAAE,MAAM,EAAE;QACxB,KAAK,GAAG,CAAC,CAAC;YACR,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;SAC9B;QAED,OAAO,CAAC,CAAC;YACP,OAAO,IAAI,CAAC;SACb;KACF;AACH,CAAC;AAGH,eAAe,kBAAkB,CAAC","sourcesContent":["import type {\n  ControllerGetStateAction,\n  ControllerStateChangeEvent,\n  RestrictedMessenger,\n} from '@metamask/base-controller';\nimport { BaseController } from '@metamask/base-controller';\nimport {\n  safelyExecute,\n  safelyExecuteWithTimeout,\n} from '@metamask/controller-utils';\nimport { toASCII } from 'punycode/punycode.js';\n\nimport { PhishingDetector } from './PhishingDetector';\nimport {\n  PhishingDetectorResultType,\n  type PhishingDetectorResult,\n  type PhishingDetectionScanResult,\n  RecommendedAction,\n} from './types';\nimport {\n  applyDiffs,\n  fetchTimeNow,\n  getHostnameFromUrl,\n  roundToNearestMinute,\n  getHostnameFromWebUrl,\n} from './utils';\n\nexport const PHISHING_CONFIG_BASE_URL =\n  'https://phishing-detection.api.cx.metamask.io';\nexport const METAMASK_STALELIST_FILE = '/v1/stalelist';\nexport const METAMASK_HOTLIST_DIFF_FILE = '/v1/diffsSince';\n\nexport const CLIENT_SIDE_DETECION_BASE_URL =\n  'https://client-side-detection.api.cx.metamask.io';\nexport const C2_DOMAIN_BLOCKLIST_ENDPOINT = '/v1/request-blocklist';\n\nexport const PHISHING_DETECTION_BASE_URL =\n  'https://dapp-scanning.api.cx.metamask.io';\nexport const PHISHING_DETECTION_SCAN_ENDPOINT = 'scan';\n\nexport const C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const HOTLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const STALELIST_REFRESH_INTERVAL = 30 * 24 * 60 * 60; // 30 days in seconds\n\nexport const METAMASK_STALELIST_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_STALELIST_FILE}`;\nexport const METAMASK_HOTLIST_DIFF_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_HOTLIST_DIFF_FILE}`;\nexport const C2_DOMAIN_BLOCKLIST_URL = `${CLIENT_SIDE_DETECION_BASE_URL}${C2_DOMAIN_BLOCKLIST_ENDPOINT}`;\n\n/**\n * @type ListTypes\n *\n * Type outlining the types of lists provided by aggregating different source lists\n */\nexport type ListTypes =\n  | 'fuzzylist'\n  | 'blocklist'\n  | 'allowlist'\n  | 'c2DomainBlocklist';\n\n/**\n * @type EthPhishingResponse\n *\n * Configuration response from the eth-phishing-detect package\n * consisting of approved and unapproved website origins\n * @property blacklist - List of unapproved origins\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property version - Version number of this configuration\n * @property whitelist - List of approved origins\n */\nexport type EthPhishingResponse = {\n  blacklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  whitelist: string[];\n};\n\n/**\n * @type C2DomainBlocklistResponse\n *\n * Response for blocklist update requests\n * @property recentlyAdded - List of c2 domains recently added to the blocklist\n * @property recentlyRemoved - List of c2 domains recently removed from the blocklist\n * @property lastFetchedAt - Timestamp of the last fetch request\n */\nexport type C2DomainBlocklistResponse = {\n  recentlyAdded: string[];\n  recentlyRemoved: string[];\n  lastFetchedAt: string;\n};\n\n/**\n * @type PhishingStalelist\n *\n * type defining expected type of the stalelist.json file.\n * @property eth_phishing_detect_config - Stale list sourced from eth-phishing-detect's config.json.\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Stalelist data structure iteration.\n */\nexport type PhishingStalelist = {\n  // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n  // eslint-disable-next-line @typescript-eslint/naming-convention\n  eth_phishing_detect_config: Record<ListTypes, string[]>;\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n};\n\n/**\n * @type PhishingListState\n *\n * type defining the persisted list state. This is the persisted state that is updated frequently with `this.maybeUpdateState()`.\n * @property allowlist - List of approved origins (legacy naming \"whitelist\")\n * @property blocklist - List of unapproved origins (legacy naming \"blacklist\")\n * @property c2DomainBlocklist - List of hashed hostnames that C2 requests are blocked against.\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Version of the phishing list state.\n * @property name - Name of the list. Used for attribution.\n */\nexport type PhishingListState = {\n  allowlist: string[];\n  blocklist: string[];\n  c2DomainBlocklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n  name: ListNames;\n};\n\n/**\n * @type HotlistDiff\n *\n * type defining the expected type of the diffs in hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type HotlistDiff = {\n  url: string;\n  timestamp: number;\n  targetList: `${ListKeys}.${ListTypes}`;\n  isRemoval?: boolean;\n};\n\n// TODO: Either fix this lint violation or explain why it's necessary to ignore.\n// eslint-disable-next-line @typescript-eslint/naming-convention\nexport type DataResultWrapper<T> = {\n  data: T;\n};\n\n/**\n * @type Hotlist\n *\n * Type defining expected hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type Hotlist = HotlistDiff[];\n\n/**\n * Enum containing upstream data provider source list keys.\n * These are the keys denoting lists consumed by the upstream data provider.\n */\nexport enum ListKeys {\n  EthPhishingDetectConfig = 'eth_phishing_detect_config',\n}\n\n/**\n * Enum containing downstream client attribution names.\n */\nexport enum ListNames {\n  MetaMask = 'MetaMask',\n}\n\n/**\n * Maps from downstream client attribution name\n * to list key sourced from upstream data provider.\n */\nconst phishingListNameKeyMap = {\n  [ListNames.MetaMask]: ListKeys.EthPhishingDetectConfig,\n};\n\n/**\n * Maps from list key sourced from upstream data\n * provider to downstream client attribution name.\n */\nexport const phishingListKeyNameMap = {\n  [ListKeys.EthPhishingDetectConfig]: ListNames.MetaMask,\n};\n\nconst controllerName = 'PhishingController';\n\nconst metadata = {\n  phishingLists: { persist: true, anonymous: false },\n  whitelist: { persist: true, anonymous: false },\n  hotlistLastFetched: { persist: true, anonymous: false },\n  stalelistLastFetched: { persist: true, anonymous: false },\n  c2DomainBlocklistLastFetched: { persist: true, anonymous: false },\n};\n\n/**\n * Get a default empty state for the controller.\n * @returns The default empty state.\n */\nconst getDefaultState = (): PhishingControllerState => {\n  return {\n    phishingLists: [],\n    whitelist: [],\n    hotlistLastFetched: 0,\n    stalelistLastFetched: 0,\n    c2DomainBlocklistLastFetched: 0,\n  };\n};\n\n/**\n * @type PhishingControllerState\n *\n * Phishing controller state\n * @property phishing - eth-phishing-detect configuration\n * @property whitelist - array of temporarily-approved origins\n */\nexport type PhishingControllerState = {\n  phishingLists: PhishingListState[];\n  whitelist: string[];\n  hotlistLastFetched: number;\n  stalelistLastFetched: number;\n  c2DomainBlocklistLastFetched: number;\n};\n\n/**\n * @type PhishingControllerOptions\n *\n * Phishing controller options\n * @property stalelistRefreshInterval - Polling interval used to fetch stale list.\n * @property hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * @property c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n */\nexport type PhishingControllerOptions = {\n  stalelistRefreshInterval?: number;\n  hotlistRefreshInterval?: number;\n  c2DomainBlocklistRefreshInterval?: number;\n  messenger: PhishingControllerMessenger;\n  state?: Partial<PhishingControllerState>;\n};\n\nexport type MaybeUpdateState = {\n  type: `${typeof controllerName}:maybeUpdateState`;\n  handler: PhishingController['maybeUpdateState'];\n};\n\nexport type TestOrigin = {\n  type: `${typeof controllerName}:testOrigin`;\n  handler: PhishingController['test'];\n};\n\nexport type PhishingControllerGetStateAction = ControllerGetStateAction<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerActions =\n  | PhishingControllerGetStateAction\n  | MaybeUpdateState\n  | TestOrigin;\n\nexport type PhishingControllerStateChangeEvent = ControllerStateChangeEvent<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerEvents = PhishingControllerStateChangeEvent;\n\nexport type PhishingControllerMessenger = RestrictedMessenger<\n  typeof controllerName,\n  PhishingControllerActions,\n  PhishingControllerEvents,\n  never,\n  never\n>;\n\n/**\n * Controller that manages community-maintained lists of approved and unapproved website origins.\n */\nexport class PhishingController extends BaseController<\n  typeof controllerName,\n  PhishingControllerState,\n  PhishingControllerMessenger\n> {\n  // TODO: Replace `any` with type\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  #detector: any;\n\n  #stalelistRefreshInterval: number;\n\n  #hotlistRefreshInterval: number;\n\n  #c2DomainBlocklistRefreshInterval: number;\n\n  #inProgressHotlistUpdate?: Promise<void>;\n\n  #inProgressStalelistUpdate?: Promise<void>;\n\n  #isProgressC2DomainBlocklistUpdate?: Promise<void>;\n\n  /**\n   * Construct a Phishing Controller.\n   *\n   * @param config - Initial options used to configure this controller.\n   * @param config.stalelistRefreshInterval - Polling interval used to fetch stale list.\n   * @param config.hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n   * @param config.c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n   * @param config.messenger - The controller restricted messenger.\n   * @param config.state - Initial state to set on this controller.\n   */\n  constructor({\n    stalelistRefreshInterval = STALELIST_REFRESH_INTERVAL,\n    hotlistRefreshInterval = HOTLIST_REFRESH_INTERVAL,\n    c2DomainBlocklistRefreshInterval = C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL,\n    messenger,\n    state = {},\n  }: PhishingControllerOptions) {\n    super({\n      name: controllerName,\n      metadata,\n      messenger,\n      state: {\n        ...getDefaultState(),\n        ...state,\n      },\n    });\n\n    this.#stalelistRefreshInterval = stalelistRefreshInterval;\n    this.#hotlistRefreshInterval = hotlistRefreshInterval;\n    this.#c2DomainBlocklistRefreshInterval = c2DomainBlocklistRefreshInterval;\n    this.#registerMessageHandlers();\n\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Constructor helper for registering this controller's messaging system\n   * actions.\n   */\n  #registerMessageHandlers(): void {\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:maybeUpdateState` as const,\n      this.maybeUpdateState.bind(this),\n    );\n\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:testOrigin` as const,\n      this.test.bind(this),\n    );\n  }\n\n  /**\n   * Updates this.detector with an instance of PhishingDetector using the current state.\n   */\n  updatePhishingDetector() {\n    this.#detector = new PhishingDetector(this.state.phishingLists);\n  }\n\n  /**\n   * Set the interval at which the stale phishing list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateStalelist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setStalelistRefreshInterval(interval: number) {\n    this.#stalelistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the hot list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setHotlistRefreshInterval(interval: number) {\n    this.#hotlistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the C2 domain blocklist will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setC2DomainBlocklistRefreshInterval(interval: number) {\n    this.#c2DomainBlocklistRefreshInterval = interval;\n  }\n\n  /**\n   * Determine if an update to the stalelist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isStalelistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.stalelistLastFetched >=\n      this.#stalelistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the hotlist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isHotlistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.hotlistLastFetched >=\n      this.#hotlistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the C2 domain blocklist is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isC2DomainBlocklistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.c2DomainBlocklistLastFetched >=\n      this.#c2DomainBlocklistRefreshInterval\n    );\n  }\n\n  /**\n   * Conditionally update the phishing configuration.\n   *\n   * If the stalelist configuration is out of date, this function will call `updateStalelist`\n   * to update the configuration. This will automatically grab the hotlist,\n   * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n   *\n   */\n  async maybeUpdateState() {\n    const staleListOutOfDate = this.isStalelistOutOfDate();\n    if (staleListOutOfDate) {\n      await this.updateStalelist();\n      return;\n    }\n    const hotlistOutOfDate = this.isHotlistOutOfDate();\n    if (hotlistOutOfDate) {\n      await this.updateHotlist();\n    }\n    const c2DomainBlocklistOutOfDate = this.isC2DomainBlocklistOutOfDate();\n    if (c2DomainBlocklistOutOfDate) {\n      await this.updateC2DomainBlocklist();\n    }\n  }\n\n  /**\n   * Determines if a given origin is unapproved.\n   *\n   * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n   * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n   * by calling {@link updateStalelist} or {@link updateHotlist}.\n   *\n   * @param origin - Domain origin of a website.\n   * @returns Whether the origin is an unapproved origin.\n   */\n  test(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.check(punycodeOrigin);\n  }\n\n  /**\n   * Checks if a request URL's domain is blocked against the request blocklist.\n   *\n   * This method is used to determine if a specific request URL is associated with a malicious\n   * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n   * blocklist of known malicious domains.\n   *\n   * @param origin - The full request URL to be checked.\n   * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n   */\n  isBlockedRequest(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.isMaliciousC2Domain(punycodeOrigin);\n  }\n\n  /**\n   * Temporarily marks a given origin as approved.\n   *\n   * @param origin - The origin to mark as approved.\n   */\n  bypass(origin: string) {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    const { whitelist } = this.state;\n    if (whitelist.includes(hostname || punycodeOrigin)) {\n      return;\n    }\n    this.update((draftState) => {\n      draftState.whitelist.push(hostname || punycodeOrigin);\n    });\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateC2DomainBlocklist() {\n    if (this.#isProgressC2DomainBlocklistUpdate) {\n      await this.#isProgressC2DomainBlocklistUpdate;\n      return;\n    }\n\n    try {\n      this.#isProgressC2DomainBlocklistUpdate = this.#updateC2DomainBlocklist();\n      await this.#isProgressC2DomainBlocklistUpdate;\n    } finally {\n      this.#isProgressC2DomainBlocklistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the hotlist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateHotlist() {\n    if (this.#inProgressHotlistUpdate) {\n      await this.#inProgressHotlistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressHotlistUpdate = this.#updateHotlist();\n      await this.#inProgressHotlistUpdate;\n    } finally {\n      this.#inProgressHotlistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the stalelist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateStalelist() {\n    if (this.#inProgressStalelistUpdate) {\n      await this.#inProgressStalelistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressStalelistUpdate = this.#updateStalelist();\n      await this.#inProgressStalelistUpdate;\n    } finally {\n      this.#inProgressStalelistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n   * web URLs.\n   *\n   * @param url - The URL to scan.\n   * @returns The phishing detection scan result.\n   */\n  scanUrl = async (url: string): Promise<PhishingDetectionScanResult> => {\n    const [hostname, ok] = getHostnameFromWebUrl(url);\n    if (!ok) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'url is not a valid web URL',\n      };\n    }\n\n    const apiResponse = await safelyExecuteWithTimeout(\n      async () => {\n        const res = await fetch(\n          `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(hostname)}`,\n          {\n            method: 'GET',\n            headers: {\n              Accept: 'application/json',\n            },\n          },\n        );\n        if (!res.ok) {\n          return {\n            error: `${res.status} ${res.statusText}`,\n          };\n        }\n        const data = await res.json();\n        return data;\n      },\n      true,\n      8000,\n    );\n\n    // Need to do it this way because safelyExecuteWithTimeout returns undefined for both timeouts and errors.\n    if (!apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'timeout of 8000ms exceeded',\n      };\n    } else if ('error' in apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: apiResponse.error,\n      };\n    }\n\n    return {\n      domainName: hostname,\n      recommendedAction: apiResponse.recommendedAction,\n    } as PhishingDetectionScanResult;\n  };\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateStalelist() {\n    let stalelistResponse: DataResultWrapper<PhishingStalelist> | null = null;\n    let hotlistDiffsResponse: DataResultWrapper<Hotlist> | null = null;\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n    try {\n      const stalelistPromise = this.#queryConfig<\n        DataResultWrapper<PhishingStalelist>\n      >(METAMASK_STALELIST_URL);\n\n      const c2DomainBlocklistPromise =\n        this.#queryConfig<C2DomainBlocklistResponse>(C2_DOMAIN_BLOCKLIST_URL);\n\n      [stalelistResponse, c2DomainBlocklistResponse] = await Promise.all([\n        stalelistPromise,\n        c2DomainBlocklistPromise,\n      ]);\n      // Fetching hotlist diffs relies on having a lastUpdated timestamp to do `GET /v1/diffsSince/:timestamp`,\n      // so it doesn't make sense to call if there is not a timestamp to begin with.\n      if (stalelistResponse?.data && stalelistResponse.data.lastUpdated > 0) {\n        hotlistDiffsResponse = await this.#queryConfig<\n          DataResultWrapper<Hotlist>\n        >(`${METAMASK_HOTLIST_DIFF_URL}/${stalelistResponse.data.lastUpdated}`);\n      }\n    } finally {\n      // Set `stalelistLastFetched` and `hotlistLastFetched` even for failed requests to prevent server\n      // from being overwhelmed with traffic after a network disruption.\n      const timeNow = fetchTimeNow();\n      this.update((draftState) => {\n        draftState.stalelistLastFetched = timeNow;\n        draftState.hotlistLastFetched = timeNow;\n        draftState.c2DomainBlocklistLastFetched = timeNow;\n      });\n    }\n\n    if (!stalelistResponse || !hotlistDiffsResponse) {\n      return;\n    }\n\n    // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n    // eslint-disable-next-line @typescript-eslint/naming-convention\n    const { eth_phishing_detect_config, ...partialState } =\n      stalelistResponse.data;\n\n    const metamaskListState: PhishingListState = {\n      ...eth_phishing_detect_config,\n      ...partialState,\n      c2DomainBlocklist: c2DomainBlocklistResponse\n        ? c2DomainBlocklistResponse.recentlyAdded\n        : [],\n      name: phishingListKeyNameMap.eth_phishing_detect_config,\n    };\n\n    const newMetaMaskListState: PhishingListState = applyDiffs(\n      metamaskListState,\n      hotlistDiffsResponse.data,\n      ListKeys.EthPhishingDetectConfig,\n    );\n\n    this.update((draftState) => {\n      draftState.phishingLists = [newMetaMaskListState];\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateHotlist() {\n    const lastDiffTimestamp = Math.max(\n      ...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated),\n    );\n    let hotlistResponse: DataResultWrapper<Hotlist> | null;\n\n    try {\n      hotlistResponse = await this.#queryConfig<DataResultWrapper<Hotlist>>(\n        `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`,\n      );\n    } finally {\n      // Set `hotlistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.hotlistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!hotlistResponse?.data) {\n      return;\n    }\n    const hotlist = hotlistResponse.data;\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        hotlist,\n        phishingListNameKeyMap[phishingList.name],\n        [],\n        [],\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * This should only be called from the `updateC2DomainBlocklist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateC2DomainBlocklist() {\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n\n    try {\n      c2DomainBlocklistResponse =\n        await this.#queryConfig<C2DomainBlocklistResponse>(\n          `${C2_DOMAIN_BLOCKLIST_URL}?timestamp=${roundToNearestMinute(\n            this.state.c2DomainBlocklistLastFetched,\n          )}`,\n        );\n    } finally {\n      // Set `c2DomainBlocklistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.c2DomainBlocklistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!c2DomainBlocklistResponse) {\n      return;\n    }\n\n    const recentlyAddedC2Domains = c2DomainBlocklistResponse.recentlyAdded;\n    const recentlyRemovedC2Domains = c2DomainBlocklistResponse.recentlyRemoved;\n\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        [],\n        phishingListNameKeyMap[phishingList.name],\n        recentlyAddedC2Domains,\n        recentlyRemovedC2Domains,\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  async #queryConfig<ResponseType>(\n    input: RequestInfo,\n  ): Promise<ResponseType | null> {\n    const response = await safelyExecute(\n      () => fetch(input, { cache: 'no-cache' }),\n      true,\n    );\n\n    switch (response?.status) {\n      case 200: {\n        return await response.json();\n      }\n\n      default: {\n        return null;\n      }\n    }\n  }\n}\n\nexport default PhishingController;\n\nexport type { PhishingDetectorResult };\n"]}
+{"version":3,"file":"PhishingController.mjs","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":";;;;;;;;;;;;AAKA,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAC3D,OAAO,EACL,aAAa,EACb,wBAAwB,EACzB,mCAAmC;;;AAGpC,OAAO,EAAE,gBAAgB,EAAE,+BAA2B;AACtD,OAAO,EACL,0BAA0B,EAG1B,iBAAiB,EAClB,oBAAgB;AACjB,OAAO,EACL,UAAU,EACV,YAAY,EACZ,kBAAkB,EAClB,oBAAoB,EACpB,qBAAqB,EACtB,oBAAgB;AAEjB,MAAM,CAAC,MAAM,wBAAwB,GACnC,+CAA+C,CAAC;AAClD,MAAM,CAAC,MAAM,uBAAuB,GAAG,eAAe,CAAC;AACvD,MAAM,CAAC,MAAM,0BAA0B,GAAG,gBAAgB,CAAC;AAE3D,MAAM,CAAC,MAAM,6BAA6B,GACxC,kDAAkD,CAAC;AACrD,MAAM,CAAC,MAAM,4BAA4B,GAAG,uBAAuB,CAAC;AAEpE,MAAM,CAAC,MAAM,2BAA2B,GACtC,0CAA0C,CAAC;AAC7C,MAAM,CAAC,MAAM,gCAAgC,GAAG,MAAM,CAAC;AAEvD,MAAM,CAAC,MAAM,oCAAoC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AAChF,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACpE,MAAM,CAAC,MAAM,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,qBAAqB;AAElF,MAAM,CAAC,MAAM,sBAAsB,GAAG,GAAG,wBAAwB,GAAG,uBAAuB,EAAE,CAAC;AAC9F,MAAM,CAAC,MAAM,yBAAyB,GAAG,GAAG,wBAAwB,GAAG,0BAA0B,EAAE,CAAC;AACpG,MAAM,CAAC,MAAM,uBAAuB,GAAG,GAAG,6BAA6B,GAAG,4BAA4B,EAAE,CAAC;AAyHzG;;;GAGG;AACH,MAAM,CAAN,IAAY,QAEX;AAFD,WAAY,QAAQ;IAClB,kEAAsD,CAAA;AACxD,CAAC,EAFW,QAAQ,KAAR,QAAQ,QAEnB;AAED;;GAEG;AACH,MAAM,CAAN,IAAY,SAEX;AAFD,WAAY,SAAS;IACnB,kCAAqB,CAAA;AACvB,CAAC,EAFW,SAAS,KAAT,SAAS,QAEpB;AAED;;;GAGG;AACH,MAAM,sBAAsB,GAAG;IAC7B,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,uBAAuB;CACvD,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,SAAS,CAAC,QAAQ;CACvD,CAAC;AAEF,MAAM,cAAc,GAAG,oBAAoB,CAAC;AAE5C,MAAM,QAAQ,GAAG;IACf,aAAa,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAClD,SAAS,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IAC9C,kBAAkB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACvD,oBAAoB,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;IACzD,4BAA4B,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;CAClE,CAAC;AAEF;;;GAGG;AACH,MAAM,eAAe,GAAG,GAA4B,EAAE;IACpD,OAAO;QACL,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE;QACb,kBAAkB,EAAE,CAAC;QACrB,oBAAoB,EAAE,CAAC;QACvB,4BAA4B,EAAE,CAAC;KAChC,CAAC;AACJ,CAAC,CAAC;AAoEF;;GAEG;AACH,MAAM,OAAO,kBAAmB,SAAQ,cAIvC;IAiBC;;;;;;;;;OASG;IACH,YAAY,EACV,wBAAwB,GAAG,0BAA0B,EACrD,sBAAsB,GAAG,wBAAwB,EACjD,gCAAgC,GAAG,oCAAoC,EACvE,SAAS,EACT,KAAK,GAAG,EAAE,GACgB;QAC1B,KAAK,CAAC;YACJ,IAAI,EAAE,cAAc;YACpB,QAAQ;YACR,SAAS;YACT,KAAK,EAAE;gBACL,GAAG,eAAe,EAAE;gBACpB,GAAG,KAAK;aACT;SACF,CAAC,CAAC;;QAzCL,gCAAgC;QAChC,8DAA8D;QAC9D,+CAAe;QAEf,+DAAkC;QAElC,6DAAgC;QAEhC,uEAA0C;QAE1C,8DAAyC;QAEzC,gEAA2C;QAE3C,wEAAmD;QA4QnD;;;;;;WAMG;QACH,YAAO,GAAG,KAAK,EAAE,GAAW,EAAwC,EAAE;YACpE,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,qBAAqB,CAAC,GAAG,CAAC,CAAC;YAClD,IAAI,CAAC,EAAE,EAAE;gBACP,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,iBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;YAED,MAAM,WAAW,GAAG,MAAM,wBAAwB,CAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,2BAA2B,IAAI,gCAAgC,QAAQ,kBAAkB,CAAC,QAAQ,CAAC,EAAE,EACxG;oBACE,MAAM,EAAE,KAAK;oBACb,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;qBAC3B;iBACF,CACF,CAAC;gBACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE;oBACX,OAAO;wBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;qBACzC,CAAC;iBACH;gBACD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;YAEF,0GAA0G;YAC1G,IAAI,CAAC,WAAW,EAAE;gBAChB,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,iBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,4BAA4B;iBACzC,CAAC;aACH;iBAAM,IAAI,OAAO,IAAI,WAAW,EAAE;gBACjC,OAAO;oBACL,UAAU,EAAE,EAAE;oBACd,iBAAiB,EAAE,iBAAiB,CAAC,IAAI;oBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;iBAC9B,CAAC;aACH;YAED,OAAO;gBACL,UAAU,EAAE,QAAQ;gBACpB,iBAAiB,EAAE,WAAW,CAAC,iBAAiB;aAClB,CAAC;QACnC,CAAC,CAAC;QA1SA,uBAAA,IAAI,gDAA6B,wBAAwB,MAAA,CAAC;QAC1D,uBAAA,IAAI,8CAA2B,sBAAsB,MAAA,CAAC;QACtD,uBAAA,IAAI,wDAAqC,gCAAgC,MAAA,CAAC;QAC1E,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,CAAC;QAEhC,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,CAAC;IAkBD;;OAEG;IACH,sBAAsB;QACpB,uBAAA,IAAI,gCAAa,IAAI,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAA,CAAC;IAClE,CAAC;IAED;;;;;;OAMG;IACH,2BAA2B,CAAC,QAAgB;QAC1C,uBAAA,IAAI,gDAA6B,QAAQ,MAAA,CAAC;IAC5C,CAAC;IAED;;;;;;OAMG;IACH,yBAAyB,CAAC,QAAgB;QACxC,uBAAA,IAAI,8CAA2B,QAAQ,MAAA,CAAC;IAC1C,CAAC;IAED;;;;;;OAMG;IACH,mCAAmC,CAAC,QAAgB;QAClD,uBAAA,IAAI,wDAAqC,QAAQ,MAAA,CAAC;IACpD,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,OAAO,CACL,YAAY,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB;YAChD,uBAAA,IAAI,oDAA0B,CAC/B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,kBAAkB;QAChB,OAAO,CACL,YAAY,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB;YAC9C,uBAAA,IAAI,kDAAwB,CAC7B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,4BAA4B;QAC1B,OAAO,CACL,YAAY,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,4BAA4B;YACxD,uBAAA,IAAI,4DAAkC,CACvC,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,gBAAgB;QACpB,MAAM,kBAAkB,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACvD,IAAI,kBAAkB,EAAE;YACtB,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC7B,OAAO;SACR;QACD,MAAM,gBAAgB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACnD,IAAI,gBAAgB,EAAE;YACpB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;SAC5B;QACD,MAAM,0BAA0B,GAAG,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACvE,IAAI,0BAA0B,EAAE;YAC9B,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;SACtC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAc;QACjB,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,0BAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC;IAED;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAc;QAC7B,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAC7D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,0BAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;SAC9H;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,MAAM,CAAC,MAAc;QACnB,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,cAAc,CAAC,CAAC;QACpD,MAAM,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC;QACjC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE;YAClD,OAAO;SACR;QACD,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,IAAI,cAAc,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,uBAAuB;QAC3B,IAAI,uBAAA,IAAI,6DAAmC,EAAE;YAC3C,MAAM,uBAAA,IAAI,6DAAmC,CAAC;YAC9C,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,yDAAsC,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,MAAA,CAAC;YAC1E,MAAM,uBAAA,IAAI,6DAAmC,CAAC;SAC/C;gBAAS;YACR,uBAAA,IAAI,yDAAsC,SAAS,MAAA,CAAC;SACrD;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,uBAAA,IAAI,mDAAyB,EAAE;YACjC,MAAM,uBAAA,IAAI,mDAAyB,CAAC;YACpC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,+CAA4B,uBAAA,IAAI,wEAAe,MAAnB,IAAI,CAAiB,MAAA,CAAC;YACtD,MAAM,uBAAA,IAAI,mDAAyB,CAAC;SACrC;gBAAS;YACR,uBAAA,IAAI,+CAA4B,SAAS,MAAA,CAAC;SAC3C;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe;QACnB,IAAI,uBAAA,IAAI,qDAA2B,EAAE;YACnC,MAAM,uBAAA,IAAI,qDAA2B,CAAC;YACtC,OAAO;SACR;QAED,IAAI;YACF,uBAAA,IAAI,iDAA8B,uBAAA,IAAI,0EAAiB,MAArB,IAAI,CAAmB,MAAA,CAAC;YAC1D,MAAM,uBAAA,IAAI,qDAA2B,CAAC;SACvC;gBAAS;YACR,uBAAA,IAAI,iDAA8B,SAAS,MAAA,CAAC;SAC7C;IACH,CAAC;CA2PF;;IA3dG,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,mBAA4B,EAC7C,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CACjC,CAAC;IAEF,IAAI,CAAC,eAAe,CAAC,qBAAqB,CACxC,GAAG,cAAc,aAAsB,EACvC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CACrB,CAAC;AACJ,CAAC;AAsRD;;;;;GAKG;AACH,KAAK;IACH,IAAI,iBAAiB,GAAgD,IAAI,CAAC;IAC1E,IAAI,oBAAoB,GAAsC,IAAI,CAAC;IACnE,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IACvE,IAAI;QACF,MAAM,gBAAgB,GAAG,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE3B,sBAAsB,CAAC,CAAC;QAE1B,MAAM,wBAAwB,GAC5B,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAAyC,uBAAuB,CAAC,CAAC;QAExE,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjE,gBAAgB;YAChB,wBAAwB;SACzB,CAAC,CAAC;QACH,yGAAyG;QACzG,8EAA8E;QAC9E,IAAI,iBAAiB,EAAE,IAAI,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,EAAE;YACrE,oBAAoB,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE/B,GAAG,yBAAyB,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;SACzE;KACF;YAAS;QACR,iGAAiG;QACjG,kEAAkE;QAClE,MAAM,OAAO,GAAG,YAAY,EAAE,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,oBAAoB,GAAG,OAAO,CAAC;YAC1C,UAAU,CAAC,kBAAkB,GAAG,OAAO,CAAC;YACxC,UAAU,CAAC,4BAA4B,GAAG,OAAO,CAAC;QACpD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,iBAAiB,IAAI,CAAC,oBAAoB,EAAE;QAC/C,OAAO;KACR;IAED,gFAAgF;IAChF,gEAAgE;IAChE,MAAM,EAAE,0BAA0B,EAAE,GAAG,YAAY,EAAE,GACnD,iBAAiB,CAAC,IAAI,CAAC;IAEzB,MAAM,iBAAiB,GAAsB;QAC3C,GAAG,0BAA0B;QAC7B,GAAG,YAAY;QACf,iBAAiB,EAAE,yBAAyB;YAC1C,CAAC,CAAC,yBAAyB,CAAC,aAAa;YACzC,CAAC,CAAC,EAAE;QACN,IAAI,EAAE,sBAAsB,CAAC,0BAA0B;KACxD,CAAC;IAEF,MAAM,oBAAoB,GAAsB,UAAU,CACxD,iBAAiB,EACjB,oBAAoB,CAAC,IAAI,EACzB,QAAQ,CAAC,uBAAuB,CACjC,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,CAAC,oBAAoB,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,eAAkD,CAAC;IAEvD,IAAI;QACF,IAAI,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE;YACzC,OAAO;SACR;QAED,MAAM,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAChC,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,WAAW,CAAC,CAClE,CAAC;QAEF,eAAe,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAC1B,GAAG,yBAAyB,IAAI,iBAAiB,EAAE,CACpD,CAAC;KACH;YAAS;QACR,kGAAkG;QAClG,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,kBAAkB,GAAG,YAAY,EAAE,CAAC;QACjD,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,eAAe,EAAE,IAAI,EAAE;QAC1B,OAAO;KACR;IACD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,UAAU,CAC5B,YAAY,EACZ,OAAO,EACP,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,EAAE,EACF,EAAE,CACH,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IAEvE,IAAI;QACF,yBAAyB;YACvB,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EACR,GAAG,uBAAuB,cAAc,oBAAoB,CAC1D,IAAI,CAAC,KAAK,CAAC,4BAA4B,CACxC,EAAE,CACJ,CAAC;KACL;YAAS;QACR,4GAA4G;QAC5G,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,4BAA4B,GAAG,YAAY,EAAE,CAAC;QAC3D,CAAC,CAAC,CAAC;KACJ;IAED,IAAI,CAAC,yBAAyB,EAAE;QAC9B,OAAO;KACR;IAED,MAAM,sBAAsB,GAAG,yBAAyB,CAAC,aAAa,CAAC;IACvE,MAAM,wBAAwB,GAAG,yBAAyB,CAAC,eAAe,CAAC;IAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,UAAU,CAC5B,YAAY,EACZ,EAAE,EACF,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,sBAAsB,EACtB,wBAAwB,CACzB,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC,oCAED,KAAK,0CACH,KAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,aAAa,CAClC,GAAG,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EACzC,IAAI,CACL,CAAC;IAEF,QAAQ,QAAQ,EAAE,MAAM,EAAE;QACxB,KAAK,GAAG,CAAC,CAAC;YACR,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;SAC9B;QAED,OAAO,CAAC,CAAC;YACP,OAAO,IAAI,CAAC;SACb;KACF;AACH,CAAC;AAGH,eAAe,kBAAkB,CAAC","sourcesContent":["import type {\n  ControllerGetStateAction,\n  ControllerStateChangeEvent,\n  RestrictedMessenger,\n} from '@metamask/base-controller';\nimport { BaseController } from '@metamask/base-controller';\nimport {\n  safelyExecute,\n  safelyExecuteWithTimeout,\n} from '@metamask/controller-utils';\nimport { toASCII } from 'punycode/punycode.js';\n\nimport { PhishingDetector } from './PhishingDetector';\nimport {\n  PhishingDetectorResultType,\n  type PhishingDetectorResult,\n  type PhishingDetectionScanResult,\n  RecommendedAction,\n} from './types';\nimport {\n  applyDiffs,\n  fetchTimeNow,\n  getHostnameFromUrl,\n  roundToNearestMinute,\n  getHostnameFromWebUrl,\n} from './utils';\n\nexport const PHISHING_CONFIG_BASE_URL =\n  'https://phishing-detection.api.cx.metamask.io';\nexport const METAMASK_STALELIST_FILE = '/v1/stalelist';\nexport const METAMASK_HOTLIST_DIFF_FILE = '/v1/diffsSince';\n\nexport const CLIENT_SIDE_DETECION_BASE_URL =\n  'https://client-side-detection.api.cx.metamask.io';\nexport const C2_DOMAIN_BLOCKLIST_ENDPOINT = '/v1/request-blocklist';\n\nexport const PHISHING_DETECTION_BASE_URL =\n  'https://dapp-scanning.api.cx.metamask.io';\nexport const PHISHING_DETECTION_SCAN_ENDPOINT = 'scan';\n\nexport const C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const HOTLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const STALELIST_REFRESH_INTERVAL = 30 * 24 * 60 * 60; // 30 days in seconds\n\nexport const METAMASK_STALELIST_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_STALELIST_FILE}`;\nexport const METAMASK_HOTLIST_DIFF_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_HOTLIST_DIFF_FILE}`;\nexport const C2_DOMAIN_BLOCKLIST_URL = `${CLIENT_SIDE_DETECION_BASE_URL}${C2_DOMAIN_BLOCKLIST_ENDPOINT}`;\n\n/**\n * @type ListTypes\n *\n * Type outlining the types of lists provided by aggregating different source lists\n */\nexport type ListTypes =\n  | 'fuzzylist'\n  | 'blocklist'\n  | 'allowlist'\n  | 'c2DomainBlocklist';\n\n/**\n * @type EthPhishingResponse\n *\n * Configuration response from the eth-phishing-detect package\n * consisting of approved and unapproved website origins\n * @property blacklist - List of unapproved origins\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property version - Version number of this configuration\n * @property whitelist - List of approved origins\n */\nexport type EthPhishingResponse = {\n  blacklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  whitelist: string[];\n};\n\n/**\n * @type C2DomainBlocklistResponse\n *\n * Response for blocklist update requests\n * @property recentlyAdded - List of c2 domains recently added to the blocklist\n * @property recentlyRemoved - List of c2 domains recently removed from the blocklist\n * @property lastFetchedAt - Timestamp of the last fetch request\n */\nexport type C2DomainBlocklistResponse = {\n  recentlyAdded: string[];\n  recentlyRemoved: string[];\n  lastFetchedAt: string;\n};\n\n/**\n * @type PhishingStalelist\n *\n * type defining expected type of the stalelist.json file.\n * @property eth_phishing_detect_config - Stale list sourced from eth-phishing-detect's config.json.\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Stalelist data structure iteration.\n */\nexport type PhishingStalelist = {\n  // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n  // eslint-disable-next-line @typescript-eslint/naming-convention\n  eth_phishing_detect_config: Record<ListTypes, string[]>;\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n};\n\n/**\n * @type PhishingListState\n *\n * type defining the persisted list state. This is the persisted state that is updated frequently with `this.maybeUpdateState()`.\n * @property allowlist - List of approved origins (legacy naming \"whitelist\")\n * @property blocklist - List of unapproved origins (legacy naming \"blacklist\")\n * @property c2DomainBlocklist - List of hashed hostnames that C2 requests are blocked against.\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Version of the phishing list state.\n * @property name - Name of the list. Used for attribution.\n */\nexport type PhishingListState = {\n  allowlist: string[];\n  blocklist: string[];\n  c2DomainBlocklist: string[];\n  fuzzylist: string[];\n  tolerance: number;\n  version: number;\n  lastUpdated: number;\n  name: ListNames;\n};\n\n/**\n * @type HotlistDiff\n *\n * type defining the expected type of the diffs in hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type HotlistDiff = {\n  url: string;\n  timestamp: number;\n  targetList: `${ListKeys}.${ListTypes}`;\n  isRemoval?: boolean;\n};\n\n// TODO: Either fix this lint violation or explain why it's necessary to ignore.\n// eslint-disable-next-line @typescript-eslint/naming-convention\nexport type DataResultWrapper<T> = {\n  data: T;\n};\n\n/**\n * @type Hotlist\n *\n * Type defining expected hotlist.json file.\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type Hotlist = HotlistDiff[];\n\n/**\n * Enum containing upstream data provider source list keys.\n * These are the keys denoting lists consumed by the upstream data provider.\n */\nexport enum ListKeys {\n  EthPhishingDetectConfig = 'eth_phishing_detect_config',\n}\n\n/**\n * Enum containing downstream client attribution names.\n */\nexport enum ListNames {\n  MetaMask = 'MetaMask',\n}\n\n/**\n * Maps from downstream client attribution name\n * to list key sourced from upstream data provider.\n */\nconst phishingListNameKeyMap = {\n  [ListNames.MetaMask]: ListKeys.EthPhishingDetectConfig,\n};\n\n/**\n * Maps from list key sourced from upstream data\n * provider to downstream client attribution name.\n */\nexport const phishingListKeyNameMap = {\n  [ListKeys.EthPhishingDetectConfig]: ListNames.MetaMask,\n};\n\nconst controllerName = 'PhishingController';\n\nconst metadata = {\n  phishingLists: { persist: true, anonymous: false },\n  whitelist: { persist: true, anonymous: false },\n  hotlistLastFetched: { persist: true, anonymous: false },\n  stalelistLastFetched: { persist: true, anonymous: false },\n  c2DomainBlocklistLastFetched: { persist: true, anonymous: false },\n};\n\n/**\n * Get a default empty state for the controller.\n * @returns The default empty state.\n */\nconst getDefaultState = (): PhishingControllerState => {\n  return {\n    phishingLists: [],\n    whitelist: [],\n    hotlistLastFetched: 0,\n    stalelistLastFetched: 0,\n    c2DomainBlocklistLastFetched: 0,\n  };\n};\n\n/**\n * @type PhishingControllerState\n *\n * Phishing controller state\n * @property phishing - eth-phishing-detect configuration\n * @property whitelist - array of temporarily-approved origins\n */\nexport type PhishingControllerState = {\n  phishingLists: PhishingListState[];\n  whitelist: string[];\n  hotlistLastFetched: number;\n  stalelistLastFetched: number;\n  c2DomainBlocklistLastFetched: number;\n};\n\n/**\n * @type PhishingControllerOptions\n *\n * Phishing controller options\n * @property stalelistRefreshInterval - Polling interval used to fetch stale list.\n * @property hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * @property c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n */\nexport type PhishingControllerOptions = {\n  stalelistRefreshInterval?: number;\n  hotlistRefreshInterval?: number;\n  c2DomainBlocklistRefreshInterval?: number;\n  messenger: PhishingControllerMessenger;\n  state?: Partial<PhishingControllerState>;\n};\n\nexport type MaybeUpdateState = {\n  type: `${typeof controllerName}:maybeUpdateState`;\n  handler: PhishingController['maybeUpdateState'];\n};\n\nexport type TestOrigin = {\n  type: `${typeof controllerName}:testOrigin`;\n  handler: PhishingController['test'];\n};\n\nexport type PhishingControllerGetStateAction = ControllerGetStateAction<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerActions =\n  | PhishingControllerGetStateAction\n  | MaybeUpdateState\n  | TestOrigin;\n\nexport type PhishingControllerStateChangeEvent = ControllerStateChangeEvent<\n  typeof controllerName,\n  PhishingControllerState\n>;\n\nexport type PhishingControllerEvents = PhishingControllerStateChangeEvent;\n\nexport type PhishingControllerMessenger = RestrictedMessenger<\n  typeof controllerName,\n  PhishingControllerActions,\n  PhishingControllerEvents,\n  never,\n  never\n>;\n\n/**\n * Controller that manages community-maintained lists of approved and unapproved website origins.\n */\nexport class PhishingController extends BaseController<\n  typeof controllerName,\n  PhishingControllerState,\n  PhishingControllerMessenger\n> {\n  // TODO: Replace `any` with type\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  #detector: any;\n\n  #stalelistRefreshInterval: number;\n\n  #hotlistRefreshInterval: number;\n\n  #c2DomainBlocklistRefreshInterval: number;\n\n  #inProgressHotlistUpdate?: Promise<void>;\n\n  #inProgressStalelistUpdate?: Promise<void>;\n\n  #isProgressC2DomainBlocklistUpdate?: Promise<void>;\n\n  /**\n   * Construct a Phishing Controller.\n   *\n   * @param config - Initial options used to configure this controller.\n   * @param config.stalelistRefreshInterval - Polling interval used to fetch stale list.\n   * @param config.hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n   * @param config.c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n   * @param config.messenger - The controller restricted messenger.\n   * @param config.state - Initial state to set on this controller.\n   */\n  constructor({\n    stalelistRefreshInterval = STALELIST_REFRESH_INTERVAL,\n    hotlistRefreshInterval = HOTLIST_REFRESH_INTERVAL,\n    c2DomainBlocklistRefreshInterval = C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL,\n    messenger,\n    state = {},\n  }: PhishingControllerOptions) {\n    super({\n      name: controllerName,\n      metadata,\n      messenger,\n      state: {\n        ...getDefaultState(),\n        ...state,\n      },\n    });\n\n    this.#stalelistRefreshInterval = stalelistRefreshInterval;\n    this.#hotlistRefreshInterval = hotlistRefreshInterval;\n    this.#c2DomainBlocklistRefreshInterval = c2DomainBlocklistRefreshInterval;\n    this.#registerMessageHandlers();\n\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Constructor helper for registering this controller's messaging system\n   * actions.\n   */\n  #registerMessageHandlers(): void {\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:maybeUpdateState` as const,\n      this.maybeUpdateState.bind(this),\n    );\n\n    this.messagingSystem.registerActionHandler(\n      `${controllerName}:testOrigin` as const,\n      this.test.bind(this),\n    );\n  }\n\n  /**\n   * Updates this.detector with an instance of PhishingDetector using the current state.\n   */\n  updatePhishingDetector() {\n    this.#detector = new PhishingDetector(this.state.phishingLists);\n  }\n\n  /**\n   * Set the interval at which the stale phishing list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateStalelist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setStalelistRefreshInterval(interval: number) {\n    this.#stalelistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the hot list will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setHotlistRefreshInterval(interval: number) {\n    this.#hotlistRefreshInterval = interval;\n  }\n\n  /**\n   * Set the interval at which the C2 domain blocklist will be refetched.\n   * Fetching will only occur on the next call to test/bypass.\n   * For immediate update to the phishing list, call {@link updateHotlist} directly.\n   *\n   * @param interval - the new interval, in ms.\n   */\n  setC2DomainBlocklistRefreshInterval(interval: number) {\n    this.#c2DomainBlocklistRefreshInterval = interval;\n  }\n\n  /**\n   * Determine if an update to the stalelist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isStalelistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.stalelistLastFetched >=\n      this.#stalelistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the hotlist configuration is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isHotlistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.hotlistLastFetched >=\n      this.#hotlistRefreshInterval\n    );\n  }\n\n  /**\n   * Determine if an update to the C2 domain blocklist is needed.\n   *\n   * @returns Whether an update is needed\n   */\n  isC2DomainBlocklistOutOfDate() {\n    return (\n      fetchTimeNow() - this.state.c2DomainBlocklistLastFetched >=\n      this.#c2DomainBlocklistRefreshInterval\n    );\n  }\n\n  /**\n   * Conditionally update the phishing configuration.\n   *\n   * If the stalelist configuration is out of date, this function will call `updateStalelist`\n   * to update the configuration. This will automatically grab the hotlist,\n   * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n   *\n   */\n  async maybeUpdateState() {\n    const staleListOutOfDate = this.isStalelistOutOfDate();\n    if (staleListOutOfDate) {\n      await this.updateStalelist();\n      return;\n    }\n    const hotlistOutOfDate = this.isHotlistOutOfDate();\n    if (hotlistOutOfDate) {\n      await this.updateHotlist();\n    }\n    const c2DomainBlocklistOutOfDate = this.isC2DomainBlocklistOutOfDate();\n    if (c2DomainBlocklistOutOfDate) {\n      await this.updateC2DomainBlocklist();\n    }\n  }\n\n  /**\n   * Determines if a given origin is unapproved.\n   *\n   * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n   * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n   * by calling {@link updateStalelist} or {@link updateHotlist}.\n   *\n   * @param origin - Domain origin of a website.\n   * @returns Whether the origin is an unapproved origin.\n   */\n  test(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.check(punycodeOrigin);\n  }\n\n  /**\n   * Checks if a request URL's domain is blocked against the request blocklist.\n   *\n   * This method is used to determine if a specific request URL is associated with a malicious\n   * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n   * blocklist of known malicious domains.\n   *\n   * @param origin - The full request URL to be checked.\n   * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n   */\n  isBlockedRequest(origin: string): PhishingDetectorResult {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n      return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n    }\n    return this.#detector.isMaliciousC2Domain(punycodeOrigin);\n  }\n\n  /**\n   * Temporarily marks a given origin as approved.\n   *\n   * @param origin - The origin to mark as approved.\n   */\n  bypass(origin: string) {\n    const punycodeOrigin = toASCII(origin);\n    const hostname = getHostnameFromUrl(punycodeOrigin);\n    const { whitelist } = this.state;\n    if (whitelist.includes(hostname || punycodeOrigin)) {\n      return;\n    }\n    this.update((draftState) => {\n      draftState.whitelist.push(hostname || punycodeOrigin);\n    });\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateC2DomainBlocklist() {\n    if (this.#isProgressC2DomainBlocklistUpdate) {\n      await this.#isProgressC2DomainBlocklistUpdate;\n      return;\n    }\n\n    try {\n      this.#isProgressC2DomainBlocklistUpdate = this.#updateC2DomainBlocklist();\n      await this.#isProgressC2DomainBlocklistUpdate;\n    } finally {\n      this.#isProgressC2DomainBlocklistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the hotlist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateHotlist() {\n    if (this.#inProgressHotlistUpdate) {\n      await this.#inProgressHotlistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressHotlistUpdate = this.#updateHotlist();\n      await this.#inProgressHotlistUpdate;\n    } finally {\n      this.#inProgressHotlistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Update the stalelist.\n   *\n   * If an update is in progress, no additional update will be made. Instead this will wait until\n   * the in-progress update has finished.\n   */\n  async updateStalelist() {\n    if (this.#inProgressStalelistUpdate) {\n      await this.#inProgressStalelistUpdate;\n      return;\n    }\n\n    try {\n      this.#inProgressStalelistUpdate = this.#updateStalelist();\n      await this.#inProgressStalelistUpdate;\n    } finally {\n      this.#inProgressStalelistUpdate = undefined;\n    }\n  }\n\n  /**\n   * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n   * web URLs.\n   *\n   * @param url - The URL to scan.\n   * @returns The phishing detection scan result.\n   */\n  scanUrl = async (url: string): Promise<PhishingDetectionScanResult> => {\n    const [hostname, ok] = getHostnameFromWebUrl(url);\n    if (!ok) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'url is not a valid web URL',\n      };\n    }\n\n    const apiResponse = await safelyExecuteWithTimeout(\n      async () => {\n        const res = await fetch(\n          `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(hostname)}`,\n          {\n            method: 'GET',\n            headers: {\n              Accept: 'application/json',\n            },\n          },\n        );\n        if (!res.ok) {\n          return {\n            error: `${res.status} ${res.statusText}`,\n          };\n        }\n        const data = await res.json();\n        return data;\n      },\n      true,\n      8000,\n    );\n\n    // Need to do it this way because safelyExecuteWithTimeout returns undefined for both timeouts and errors.\n    if (!apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: 'timeout of 8000ms exceeded',\n      };\n    } else if ('error' in apiResponse) {\n      return {\n        domainName: '',\n        recommendedAction: RecommendedAction.None,\n        fetchError: apiResponse.error,\n      };\n    }\n\n    return {\n      domainName: hostname,\n      recommendedAction: apiResponse.recommendedAction,\n    } as PhishingDetectionScanResult;\n  };\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateStalelist() {\n    let stalelistResponse: DataResultWrapper<PhishingStalelist> | null = null;\n    let hotlistDiffsResponse: DataResultWrapper<Hotlist> | null = null;\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n    try {\n      const stalelistPromise = this.#queryConfig<\n        DataResultWrapper<PhishingStalelist>\n      >(METAMASK_STALELIST_URL);\n\n      const c2DomainBlocklistPromise =\n        this.#queryConfig<C2DomainBlocklistResponse>(C2_DOMAIN_BLOCKLIST_URL);\n\n      [stalelistResponse, c2DomainBlocklistResponse] = await Promise.all([\n        stalelistPromise,\n        c2DomainBlocklistPromise,\n      ]);\n      // Fetching hotlist diffs relies on having a lastUpdated timestamp to do `GET /v1/diffsSince/:timestamp`,\n      // so it doesn't make sense to call if there is not a timestamp to begin with.\n      if (stalelistResponse?.data && stalelistResponse.data.lastUpdated > 0) {\n        hotlistDiffsResponse = await this.#queryConfig<\n          DataResultWrapper<Hotlist>\n        >(`${METAMASK_HOTLIST_DIFF_URL}/${stalelistResponse.data.lastUpdated}`);\n      }\n    } finally {\n      // Set `stalelistLastFetched` and `hotlistLastFetched` even for failed requests to prevent server\n      // from being overwhelmed with traffic after a network disruption.\n      const timeNow = fetchTimeNow();\n      this.update((draftState) => {\n        draftState.stalelistLastFetched = timeNow;\n        draftState.hotlistLastFetched = timeNow;\n        draftState.c2DomainBlocklistLastFetched = timeNow;\n      });\n    }\n\n    if (!stalelistResponse || !hotlistDiffsResponse) {\n      return;\n    }\n\n    // TODO: Either fix this lint violation or explain why it's necessary to ignore.\n    // eslint-disable-next-line @typescript-eslint/naming-convention\n    const { eth_phishing_detect_config, ...partialState } =\n      stalelistResponse.data;\n\n    const metamaskListState: PhishingListState = {\n      ...eth_phishing_detect_config,\n      ...partialState,\n      c2DomainBlocklist: c2DomainBlocklistResponse\n        ? c2DomainBlocklistResponse.recentlyAdded\n        : [],\n      name: phishingListKeyNameMap.eth_phishing_detect_config,\n    };\n\n    const newMetaMaskListState: PhishingListState = applyDiffs(\n      metamaskListState,\n      hotlistDiffsResponse.data,\n      ListKeys.EthPhishingDetectConfig,\n    );\n\n    this.update((draftState) => {\n      draftState.phishingLists = [newMetaMaskListState];\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the stalelist configuration.\n   *\n   * This should only be called from the `updateStalelist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateHotlist() {\n    let hotlistResponse: DataResultWrapper<Hotlist> | null;\n\n    try {\n      if (this.state.phishingLists.length === 0) {\n        return;\n      }\n\n      const lastDiffTimestamp = Math.max(\n        ...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated),\n      );\n\n      hotlistResponse = await this.#queryConfig<DataResultWrapper<Hotlist>>(\n        `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`,\n      );\n    } finally {\n      // Set `hotlistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.hotlistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!hotlistResponse?.data) {\n      return;\n    }\n    const hotlist = hotlistResponse.data;\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        hotlist,\n        phishingListNameKeyMap[phishingList.name],\n        [],\n        [],\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  /**\n   * Update the C2 domain blocklist.\n   *\n   * This should only be called from the `updateC2DomainBlocklist` function, which is a wrapper around\n   * this function that prevents redundant configuration updates.\n   */\n  async #updateC2DomainBlocklist() {\n    let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n\n    try {\n      c2DomainBlocklistResponse =\n        await this.#queryConfig<C2DomainBlocklistResponse>(\n          `${C2_DOMAIN_BLOCKLIST_URL}?timestamp=${roundToNearestMinute(\n            this.state.c2DomainBlocklistLastFetched,\n          )}`,\n        );\n    } finally {\n      // Set `c2DomainBlocklistLastFetched` even for failed requests to prevent server from being overwhelmed with\n      // traffic after a network disruption.\n      this.update((draftState) => {\n        draftState.c2DomainBlocklistLastFetched = fetchTimeNow();\n      });\n    }\n\n    if (!c2DomainBlocklistResponse) {\n      return;\n    }\n\n    const recentlyAddedC2Domains = c2DomainBlocklistResponse.recentlyAdded;\n    const recentlyRemovedC2Domains = c2DomainBlocklistResponse.recentlyRemoved;\n\n    const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n      const updatedList = applyDiffs(\n        phishingList,\n        [],\n        phishingListNameKeyMap[phishingList.name],\n        recentlyAddedC2Domains,\n        recentlyRemovedC2Domains,\n      );\n\n      return updatedList;\n    });\n\n    this.update((draftState) => {\n      draftState.phishingLists = newPhishingLists;\n    });\n    this.updatePhishingDetector();\n  }\n\n  async #queryConfig<ResponseType>(\n    input: RequestInfo,\n  ): Promise<ResponseType | null> {\n    const response = await safelyExecute(\n      () => fetch(input, { cache: 'no-cache' }),\n      true,\n    );\n\n    switch (response?.status) {\n      case 200: {\n        return await response.json();\n      }\n\n      default: {\n        return null;\n      }\n    }\n  }\n}\n\nexport default PhishingController;\n\nexport type { PhishingDetectorResult };\n"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@metamask-previews/phishing-controller",
-  "version": "12.4.0-preview-4fbfa93f",
+  "version": "12.4.0-preview-b08aa8e7",
   "description": "Maintains a periodically updated list of approved and unapproved website origins",
   "keywords": [
     "MetaMask",
@@ -48,7 +48,7 @@
   },
   "dependencies": {
     "@metamask/base-controller": "^8.0.0",
-    "@metamask/controller-utils": "^11.5.0",
+    "@metamask/controller-utils": "^11.6.0",
     "@noble/hashes": "^1.4.0",
     "@types/punycode": "^2.1.0",
     "ethereum-cryptography": "^2.1.2",