@metamask/snaps-controllers 15.0.2 → 16.1.0

package/dist/snaps/SnapController.cjs

@@ -83,20 +83,20 @@ class SnapController extends base_controller_1.BaseController {
     #preinstalledSnaps;
     #trackEvent;
     #trackSnapExport;
-    constructor({ closeAllConnections, messenger, state, dynamicPermissions = ['eth_accounts'], environmentEndowmentPermissions = [], excludedPermissions = {}, idleTimeCheckInterval = (0, utils_1.inMilliseconds)(5, utils_1.Duration.Second), maxIdleTime = (0, utils_1.inMilliseconds)(30, utils_1.Duration.Second), maxRequestTime = (0, utils_1.inMilliseconds)(60, utils_1.Duration.Second), fetchFunction = globalThis.fetch.bind(undefined), featureFlags = {}, detectSnapLocation: detectSnapLocationFunction = location_1.detectSnapLocation, preinstalledSnaps = null, encryptor, getMnemonicSeed, getFeatureFlags = () => ({}), clientCryptography, trackEvent, }) {
+    constructor({ closeAllConnections, messenger, state, dynamicPermissions = ['endowment:caip25', 'wallet_snap'], environmentEndowmentPermissions = [], excludedPermissions = {}, idleTimeCheckInterval = (0, utils_1.inMilliseconds)(5, utils_1.Duration.Second), maxIdleTime = (0, utils_1.inMilliseconds)(30, utils_1.Duration.Second), maxRequestTime = (0, utils_1.inMilliseconds)(60, utils_1.Duration.Second), fetchFunction = globalThis.fetch.bind(undefined), featureFlags = {}, detectSnapLocation: detectSnapLocationFunction = location_1.detectSnapLocation, preinstalledSnaps = null, encryptor, getMnemonicSeed, getFeatureFlags = () => ({}), clientCryptography, trackEvent, }) {
         super({
             messenger,
             metadata: {
                 snapStates: {
                     includeInStateLogs: false,
                     persist: true,
-                    anonymous: false,
+                    includeInDebugSnapshot: false,
                     usedInUi: false,
                 },
                 unencryptedSnapStates: {
                     includeInStateLogs: false,
                     persist: true,
-                    anonymous: false,
+                    includeInDebugSnapshot: false,
                     usedInUi: false,
                 },
                 snaps: {
@@ -127,7 +127,7 @@ class SnapController extends base_controller_1.BaseController {
                             return memo;
                         }, {}));
                     },
-                    anonymous: false,
+                    includeInDebugSnapshot: false,
                     // TODO: Ensure larger snap properties are not sent to the UI
                     // Currently these are stripped out manually in the extension
                     usedInUi: true,
@@ -162,21 +162,21 @@ class SnapController extends base_controller_1.BaseController {
         this.#trackEvent = trackEvent;
         this.#pollForLastRequestStatus();
         /* eslint-disable @typescript-eslint/unbound-method */
-        this.messagingSystem.subscribe('ExecutionService:unhandledError', this._onUnhandledSnapError);
-        this.messagingSystem.subscribe('ExecutionService:outboundRequest', this._onOutboundRequest);
-        this.messagingSystem.subscribe('ExecutionService:outboundResponse', this._onOutboundResponse);
+        this.messenger.subscribe('ExecutionService:unhandledError', this._onUnhandledSnapError);
+        this.messenger.subscribe('ExecutionService:outboundRequest', this._onOutboundRequest);
+        this.messenger.subscribe('ExecutionService:outboundResponse', this._onOutboundResponse);
         /* eslint-enable @typescript-eslint/unbound-method */
-        this.messagingSystem.subscribe('SnapController:snapInstalled', ({ id }, origin) => {
+        this.messenger.subscribe('SnapController:snapInstalled', ({ id }, origin) => {
             this.#callLifecycleHook(origin, id, snaps_utils_1.HandlerType.OnInstall).catch((error) => {
                 (0, snaps_utils_1.logError)(`Error when calling \`onInstall\` lifecycle hook for snap "${id}": ${(0, snaps_sdk_1.getErrorMessage)(error)}`);
             });
         });
-        this.messagingSystem.subscribe('SnapController:snapUpdated', ({ id }, _oldVersion, origin) => {
+        this.messenger.subscribe('SnapController:snapUpdated', ({ id }, _oldVersion, origin) => {
             this.#callLifecycleHook(origin, id, snaps_utils_1.HandlerType.OnUpdate).catch((error) => {
                 (0, snaps_utils_1.logError)(`Error when calling \`onUpdate\` lifecycle hook for snap "${id}": ${(0, snaps_sdk_1.getErrorMessage)(error)}`);
             });
         });
-        this.messagingSystem.subscribe('KeyringController:lock', this.#handleLock.bind(this));
+        this.messenger.subscribe('KeyringController:lock', this.#handleLock.bind(this));
         this.#initializeStateMachine();
         this.#registerMessageHandlers();
         Object.values(this.state?.snaps ?? {}).forEach((snap) => this.#setupRuntime(snap.id));
@@ -184,7 +184,7 @@ class SnapController extends base_controller_1.BaseController {
             this.#handlePreinstalledSnaps(this.#preinstalledSnaps);
         }
         this.#trackSnapExport = (0, utils_2.throttleTracking)((snapId, handler, success, origin) => {
-            const snapMetadata = this.messagingSystem.call('SnapsRegistry:getMetadata', snapId);
+            const snapMetadata = this.messenger.call('SnapsRegistry:getMetadata', snapId);
             this.#trackEvent({
                 event: 'Snap Export Used',
                 category: 'Snaps',
@@ -267,29 +267,29 @@ class SnapController extends base_controller_1.BaseController {
      * actions.
      */
     #registerMessageHandlers() {
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:init`, (...args) => this.init(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:clearSnapState`, (...args) => this.clearSnapState(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:get`, (...args) => this.get(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:getSnapState`, async (...args) => this.getSnapState(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:handleRequest`, async (...args) => this.handleRequest(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:has`, (...args) => this.has(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:updateRegistry`, async () => this.updateRegistry());
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:updateSnapState`, async (...args) => this.updateSnapState(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:enable`, (...args) => this.enableSnap(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:disable`, async (...args) => this.disableSnap(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:remove`, async (...args) => this.removeSnap(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:getPermitted`, (...args) => this.getPermittedSnaps(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:install`, async (...args) => this.installSnaps(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:getAll`, (...args) => this.getAllSnaps(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:getRunnableSnaps`, (...args) => this.getRunnableSnaps(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:incrementActiveReferences`, (...args) => this.incrementActiveReferences(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:decrementActiveReferences`, (...args) => this.decrementActiveReferences(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:disconnectOrigin`, (...args) => this.removeSnapFromSubject(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:revokeDynamicPermissions`, (...args) => this.revokeDynamicSnapPermissions(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:getFile`, async (...args) => this.getSnapFile(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:stopAllSnaps`, async (...args) => this.stopAllSnaps(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:isMinimumPlatformVersion`, (...args) => this.isMinimumPlatformVersion(...args));
-        this.messagingSystem.registerActionHandler(`${exports.controllerName}:setClientActive`, (...args) => this.setClientActive(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:init`, (...args) => this.init(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:clearSnapState`, (...args) => this.clearSnapState(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:get`, (...args) => this.get(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:getSnapState`, async (...args) => this.getSnapState(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:handleRequest`, async (...args) => this.handleRequest(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:has`, (...args) => this.has(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:updateRegistry`, async () => this.updateRegistry());
+        this.messenger.registerActionHandler(`${exports.controllerName}:updateSnapState`, async (...args) => this.updateSnapState(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:enable`, (...args) => this.enableSnap(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:disable`, async (...args) => this.disableSnap(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:remove`, async (...args) => this.removeSnap(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:getPermitted`, (...args) => this.getPermittedSnaps(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:install`, async (...args) => this.installSnaps(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:getAll`, (...args) => this.getAllSnaps(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:getRunnableSnaps`, (...args) => this.getRunnableSnaps(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:incrementActiveReferences`, (...args) => this.incrementActiveReferences(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:decrementActiveReferences`, (...args) => this.decrementActiveReferences(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:disconnectOrigin`, (...args) => this.removeSnapFromSubject(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:revokeDynamicPermissions`, (...args) => this.revokeDynamicSnapPermissions(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:getFile`, async (...args) => this.getSnapFile(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:stopAllSnaps`, async (...args) => this.stopAllSnaps(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:isMinimumPlatformVersion`, (...args) => this.isMinimumPlatformVersion(...args));
+        this.messenger.registerActionHandler(`${exports.controllerName}:setClientActive`, (...args) => this.setClientActive(...args));
     }
     /**
      * Initialise the SnapController.
@@ -359,10 +359,10 @@ class SnapController extends base_controller_1.BaseController {
             this.#setupRuntime(snapId);
             // Emit events
             if (isUpdate) {
-                this.messagingSystem.publish('SnapController:snapUpdated', this.getTruncatedExpect(snapId), existingSnap.version, constants_1.METAMASK_ORIGIN, true);
+                this.messenger.publish('SnapController:snapUpdated', this.getTruncatedExpect(snapId), existingSnap.version, constants_1.METAMASK_ORIGIN, true);
             }
             else {
-                this.messagingSystem.publish('SnapController:snapInstalled', this.getTruncatedExpect(snapId), constants_1.METAMASK_ORIGIN, true);
+                this.messenger.publish('SnapController:snapInstalled', this.getTruncatedExpect(snapId), constants_1.METAMASK_ORIGIN, true);
             }
         }
     }
@@ -384,8 +384,8 @@ class SnapController extends base_controller_1.BaseController {
      */
     async updateRegistry() {
         this.#assertCanUsePlatform();
-        await this.messagingSystem.call('SnapsRegistry:update');
-        const blockedSnaps = await this.messagingSystem.call('SnapsRegistry:get', Object.values(this.state.snaps).reduce((blockListArg, snap) => {
+        await this.messenger.call('SnapsRegistry:update');
+        const blockedSnaps = await this.messenger.call('SnapsRegistry:get', Object.values(this.state.snaps).reduce((blockListArg, snap) => {
             blockListArg[snap.id] = {
                 version: snap.version,
                 checksum: snap.manifest.source.shasum,
@@ -412,6 +412,7 @@ class SnapController extends base_controller_1.BaseController {
                     versionRange: resolvedVersion,
                     fetch: this.#fetchFunction,
                     allowLocal: false,
+                    useNpmProxy: true,
                 });
                 await this.#updateSnap({
                     origin: approval_controller_1.ORIGIN_METAMASK,
@@ -444,7 +445,7 @@ class SnapController extends base_controller_1.BaseController {
         catch (error) {
             (0, snaps_utils_1.logError)(`Encountered error when stopping blocked snap "${snapId}".`, error);
         }
-        this.messagingSystem.publish(`${exports.controllerName}:snapBlocked`, snapId, blockedSnapInfo);
+        this.messenger.publish(`${exports.controllerName}:snapBlocked`, snapId, blockedSnapInfo);
     }
     /**
      * Unblocks a snap so that it can be enabled and started again. Emits
@@ -461,10 +462,10 @@ class SnapController extends base_controller_1.BaseController {
             state.snaps[snapId].blocked = false;
             delete state.snaps[snapId].blockInformation;
         });
-        this.messagingSystem.publish(`${exports.controllerName}:snapUnblocked`, snapId);
+        this.messenger.publish(`${exports.controllerName}:snapUnblocked`, snapId);
     }
     async #assertIsInstallAllowed(snapId, { platformVersion, ...snapInfo }) {
-        const results = await this.messagingSystem.call('SnapsRegistry:get', {
+        const results = await this.messenger.call('SnapsRegistry:get', {
             [snapId]: snapInfo,
         });
         const result = results[snapId];
@@ -581,7 +582,7 @@ class SnapController extends base_controller_1.BaseController {
         this.update((state) => {
             state.snaps[snapId].enabled = true;
         });
-        this.messagingSystem.publish('SnapController:snapEnabled', this.getTruncatedExpect(snapId));
+        this.messenger.publish('SnapController:snapEnabled', this.getTruncatedExpect(snapId));
     }
     /**
      * Disables the given snap. A snap can only be started if it is enabled.
@@ -599,7 +600,7 @@ class SnapController extends base_controller_1.BaseController {
         if (this.isRunning(snapId)) {
             await this.stopSnap(snapId, snaps_utils_1.SnapStatusEvents.Stop);
         }
-        this.messagingSystem.publish('SnapController:snapDisabled', this.getTruncatedExpect(snapId));
+        this.messenger.publish('SnapController:snapDisabled', this.getTruncatedExpect(snapId));
     }
     /**
      * Stops the given snap, removes all hooks, closes all connections, and
@@ -659,7 +660,7 @@ class SnapController extends base_controller_1.BaseController {
      * @param snapId - The snap to terminate.
      */
     async #terminateSnap(snapId) {
-        await this.messagingSystem.call('ExecutionService:terminateSnap', snapId);
+        await this.messenger.call('ExecutionService:terminateSnap', snapId);
         // Hack to give up execution for a bit to let gracefully terminating Snaps return.
         await new Promise((resolve) => setTimeout(resolve, 1));
         const runtime = this.#getRuntimeExpect(snapId);
@@ -669,7 +670,7 @@ class SnapController extends base_controller_1.BaseController {
             .forEach((pendingRequest) => pendingRequest.timer.finish());
         // Hack to give up execution for a bit to let timed out requests return.
         await new Promise((resolve) => setTimeout(resolve, 1));
-        this.messagingSystem.publish('SnapController:snapTerminated', this.getTruncatedExpect(snapId));
+        this.messenger.publish('SnapController:snapTerminated', this.getTruncatedExpect(snapId));
     }
     /**
      * Returns whether the given snap is running.
@@ -1054,7 +1055,7 @@ class SnapController extends base_controller_1.BaseController {
             });
             // If the snap has been fully installed before, also emit snapUninstalled.
             if (snap.status !== snaps_utils_1.SnapStatus.Installing) {
-                this.messagingSystem.publish(`SnapController:snapUninstalled`, truncated);
+                this.messenger.publish(`SnapController:snapUninstalled`, truncated);
             }
         }));
     }
@@ -1070,7 +1071,7 @@ class SnapController extends base_controller_1.BaseController {
         }
     }
     #addSnapToSubject(origin, snapId) {
-        const subjectPermissions = this.messagingSystem.call('PermissionController:getPermissions', origin);
+        const subjectPermissions = this.messenger.call('PermissionController:getPermissions', origin);
         const existingCaveat = subjectPermissions?.[snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY]?.caveats?.find((caveat) => caveat.type === snaps_utils_1.SnapCaveatType.SnapIds);
         const subjectHasSnap = Boolean(existingCaveat?.value?.[snapId]);
         // If the subject is already connected to the snap, this is a no-op.
@@ -1079,7 +1080,7 @@ class SnapController extends base_controller_1.BaseController {
         }
         // If an existing caveat exists, we add the snap to that.
         if (existingCaveat) {
-            this.messagingSystem.call('PermissionController:updateCaveat', origin, snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY, snaps_utils_1.SnapCaveatType.SnapIds, { ...existingCaveat.value, [snapId]: {} });
+            this.messenger.call('PermissionController:updateCaveat', origin, snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY, snaps_utils_1.SnapCaveatType.SnapIds, { ...existingCaveat.value, [snapId]: {} });
             return;
         }
         const approvedPermissions = {
@@ -1094,7 +1095,7 @@ class SnapController extends base_controller_1.BaseController {
                 ],
             },
         };
-        this.messagingSystem.call('PermissionController:grantPermissions', {
+        this.messenger.call('PermissionController:grantPermissions', {
             approvedPermissions,
             subject: { origin },
         });
@@ -1106,7 +1107,7 @@ class SnapController extends base_controller_1.BaseController {
      * @param snapId - The id of the snap to remove.
      */
     removeSnapFromSubject(origin, snapId) {
-        const subjectPermissions = this.messagingSystem.call('PermissionController:getPermissions', origin);
+        const subjectPermissions = this.messenger.call('PermissionController:getPermissions', origin);
         const snapIdsCaveat = subjectPermissions?.[snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY]?.caveats?.find((caveat) => caveat.type === snaps_utils_1.SnapCaveatType.SnapIds);
         if (!snapIdsCaveat) {
             return;
@@ -1118,10 +1119,10 @@ class SnapController extends base_controller_1.BaseController {
             };
             delete newCaveatValue[snapId];
             if (Object.keys(newCaveatValue).length > 0) {
-                this.messagingSystem.call('PermissionController:updateCaveat', origin, snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY, snaps_utils_1.SnapCaveatType.SnapIds, newCaveatValue);
+                this.messenger.call('PermissionController:updateCaveat', origin, snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY, snaps_utils_1.SnapCaveatType.SnapIds, newCaveatValue);
             }
             else {
-                this.messagingSystem.call('PermissionController:revokePermissions', {
+                this.messenger.call('PermissionController:revokePermissions', {
                     [origin]: [snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY],
                 });
             }
@@ -1136,7 +1137,7 @@ class SnapController extends base_controller_1.BaseController {
      */
     revokeDynamicSnapPermissions(snapId, permissionNames) {
         (0, utils_1.assert)(permissionNames.every((permissionName) => this.#dynamicPermissions.includes(permissionName)), 'Non-dynamic permissions cannot be revoked');
-        this.messagingSystem.call('PermissionController:revokePermissions', {
+        this.messenger.call('PermissionController:revokePermissions', {
             [snapId]: permissionNames,
         });
     }
@@ -1146,7 +1147,7 @@ class SnapController extends base_controller_1.BaseController {
      * @param snapId - The id of the Snap.
      */
     #removeSnapFromSubjects(snapId) {
-        const subjects = this.messagingSystem.call('PermissionController:getSubjectNames');
+        const subjects = this.messenger.call('PermissionController:getSubjectNames');
         for (const subject of subjects) {
             this.removeSnapFromSubject(subject, snapId);
         }
@@ -1157,8 +1158,8 @@ class SnapController extends base_controller_1.BaseController {
      * @param snapId - The snap ID.
      */
     #revokeAllSnapPermissions(snapId) {
-        if (this.messagingSystem.call('PermissionController:hasPermissions', snapId)) {
-            this.messagingSystem.call('PermissionController:revokeAllPermissions', snapId);
+        if (this.messenger.call('PermissionController:hasPermissions', snapId)) {
+            this.messenger.call('PermissionController:revokeAllPermissions', snapId);
         }
     }
     /**
@@ -1203,7 +1204,7 @@ class SnapController extends base_controller_1.BaseController {
      * @returns The serialized permitted snaps for the origin.
      */
     getPermittedSnaps(origin) {
-        const permissions = this.messagingSystem.call('PermissionController:getPermissions', origin) ?? {};
+        const permissions = this.messenger.call('PermissionController:getPermissions', origin) ?? {};
         const snaps = permissions[snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY]?.caveats?.find((caveat) => caveat.type === snaps_utils_1.SnapCaveatType.SnapIds)?.value ?? {};
         return Object.keys(snaps).reduce((permittedSnaps, snapId) => {
             const snap = this.get(snapId);
@@ -1266,8 +1267,8 @@ class SnapController extends base_controller_1.BaseController {
                 result[snapId] = await this.#processRequestedSnap(origin, snapId, location, version);
             }
             // Once we finish all installs / updates, emit events.
-            pendingInstalls.forEach((snapId) => this.messagingSystem.publish(`SnapController:snapInstalled`, this.getTruncatedExpect(snapId), origin, false));
-            pendingUpdates.forEach(({ snapId, oldVersion }) => this.messagingSystem.publish(`SnapController:snapUpdated`, this.getTruncatedExpect(snapId), oldVersion, origin, false));
+            pendingInstalls.forEach((snapId) => this.messenger.publish(`SnapController:snapInstalled`, this.getTruncatedExpect(snapId), origin, false));
+            pendingUpdates.forEach(({ snapId, oldVersion }) => this.messenger.publish(`SnapController:snapUpdated`, this.getTruncatedExpect(snapId), oldVersion, origin, false));
             snapIds.forEach((snapId) => this.#rollbackSnapshots.delete(snapId));
         }
         catch (error) {
@@ -1312,7 +1313,7 @@ class SnapController extends base_controller_1.BaseController {
             snapId,
             type: exports.SNAP_APPROVAL_INSTALL,
         });
-        this.messagingSystem.publish('SnapController:snapInstallStarted', snapId, origin, false);
+        this.messenger.publish('SnapController:snapInstallStarted', snapId, origin, false);
         // Existing snaps must be stopped before overwriting
         if (existingSnap && this.isRunning(snapId)) {
             await this.stopSnap(snapId, snaps_utils_1.SnapStatusEvents.Stop);
@@ -1353,13 +1354,13 @@ class SnapController extends base_controller_1.BaseController {
                 type: exports.SNAP_APPROVAL_INSTALL,
                 error: errorString,
             });
-            this.messagingSystem.publish('SnapController:snapInstallFailed', snapId, origin, false, errorString);
+            this.messenger.publish('SnapController:snapInstallFailed', snapId, origin, false, errorString);
             throw error;
         }
     }
     #createApproval({ origin, snapId, type, }) {
         const id = (0, nanoid_1.nanoid)();
-        const promise = this.messagingSystem.call('ApprovalController:addRequest', {
+        const promise = this.messenger.call('ApprovalController:addRequest', {
             origin,
             id,
             type,
@@ -1376,7 +1377,7 @@ class SnapController extends base_controller_1.BaseController {
     }
     #updateApproval(id, requestState) {
         try {
-            this.messagingSystem.call('ApprovalController:updateRequestState', {
+            this.messenger.call('ApprovalController:updateRequestState', {
                 id,
                 requestState,
             });
@@ -1422,7 +1423,7 @@ class SnapController extends base_controller_1.BaseController {
                 type: exports.SNAP_APPROVAL_UPDATE,
             });
         try {
-            this.messagingSystem.publish('SnapController:snapInstallStarted', snapId, origin, true);
+            this.messenger.publish('SnapController:snapInstallStarted', snapId, origin, true);
             const oldManifest = snap.manifest;
             const newSnap = await (0, utils_2.fetchSnap)(snapId, location);
             const { sourceCode: sourceCodeFile, manifest: manifestFile } = newSnap;
@@ -1530,12 +1531,12 @@ class SnapController extends base_controller_1.BaseController {
                     type: exports.SNAP_APPROVAL_UPDATE,
                 });
             }
-            this.messagingSystem.publish('SnapController:snapInstallFailed', snapId, origin, true, errorString);
+            this.messenger.publish('SnapController:snapInstallFailed', snapId, origin, true, errorString);
             throw error;
         }
     }
     async #resolveAllowlistVersion(snapId, versionRange) {
-        return await this.messagingSystem.call('SnapsRegistry:resolveVersion', snapId, versionRange);
+        return await this.messenger.call('SnapsRegistry:resolveVersion', snapId, versionRange);
     }
     /**
      * Returns a promise representing the complete installation of the requested snap.
@@ -1598,7 +1599,7 @@ class SnapController extends base_controller_1.BaseController {
         }
         try {
             const runtime = this.#getRuntimeExpect(snapId);
-            const result = await this.messagingSystem.call('ExecutionService:executeSnap', {
+            const result = await this.messenger.call('ExecutionService:executeSnap', {
                 ...snapData,
                 endowments: await this.#getEndowments(snapId),
             });
@@ -1626,8 +1627,8 @@ class SnapController extends base_controller_1.BaseController {
     async #getEndowments(snapId) {
         let allEndowments = [];
         for (const permissionName of this.#environmentEndowmentPermissions) {
-            if (this.messagingSystem.call('PermissionController:hasPermission', snapId, permissionName)) {
-                const endowments = await this.messagingSystem.call('PermissionController:getEndowments', snapId, permissionName);
+            if (this.messenger.call('PermissionController:hasPermission', snapId, permissionName)) {
+                const endowments = await this.messenger.call('PermissionController:getEndowments', snapId, permissionName);
                 if (endowments) {
                     // We don't have any guarantees about the type of the endowments
                     // value, so we have to guard at runtime.
@@ -1727,7 +1728,7 @@ class SnapController extends base_controller_1.BaseController {
         // In case the Snap uses a localized manifest, we need to get the
         // proposed name from the localized manifest.
         const { proposedName } = (0, snaps_utils_1.getLocalizedSnapManifest)(manifest.result, 'en', localizedFiles);
-        this.messagingSystem.call('SubjectMetadataController:addSubjectMetadata', {
+        this.messenger.call('SubjectMetadataController:addSubjectMetadata', {
             subjectType: permission_controller_1.SubjectType.Snap,
             name: proposedName,
             origin: snap.id,
@@ -1813,11 +1814,11 @@ class SnapController extends base_controller_1.BaseController {
             clearTimeout(this.#timeoutForLastRequestStatus);
         }
         /* eslint-disable @typescript-eslint/unbound-method */
-        this.messagingSystem.unsubscribe('ExecutionService:unhandledError', this._onUnhandledSnapError);
-        this.messagingSystem.unsubscribe('ExecutionService:outboundRequest', this._onOutboundRequest);
-        this.messagingSystem.unsubscribe('ExecutionService:outboundResponse', this._onOutboundResponse);
-        this.messagingSystem.clearEventSubscriptions('SnapController:snapInstalled');
-        this.messagingSystem.clearEventSubscriptions('SnapController:snapUpdated');
+        this.messenger.unsubscribe('ExecutionService:unhandledError', this._onUnhandledSnapError);
+        this.messenger.unsubscribe('ExecutionService:outboundRequest', this._onOutboundRequest);
+        this.messenger.unsubscribe('ExecutionService:outboundResponse', this._onOutboundResponse);
+        this.messenger.clearEventSubscriptions('SnapController:snapInstalled');
+        this.messenger.clearEventSubscriptions('SnapController:snapUpdated');
         /* eslint-enable @typescript-eslint/unbound-method */
     }
     /**
@@ -1843,7 +1844,7 @@ class SnapController extends base_controller_1.BaseController {
         (0, utils_1.assertIsJsonRpcRequest)(request);
         const permissionName = snaps_rpc_methods_1.handlerEndowments[handlerType];
         (0, utils_1.assert)(typeof permissionName === 'string' || permissionName === null, "'permissionName' must be either a string or null.");
-        const permissions = this.messagingSystem.call('PermissionController:getPermissions', snapId);
+        const permissions = this.messenger.call('PermissionController:getPermissions', snapId);
         // If permissionName is null, the handler does not require a permission.
         if (permissionName !== null &&
             (!permissions || !(0, utils_1.hasProperty)(permissions, permissionName))) {
@@ -1855,7 +1856,7 @@ class SnapController extends base_controller_1.BaseController {
         if (permissionName === snaps_rpc_methods_1.SnapEndowments.Rpc ||
             permissionName === snaps_rpc_methods_1.SnapEndowments.Keyring) {
             (0, utils_1.assert)(handlerPermissions);
-            const subject = this.messagingSystem.call('SubjectMetadataController:getSubjectMetadata', origin);
+            const subject = this.messenger.call('SubjectMetadataController:getSubjectMetadata', origin);
             const origins = permissionName === snaps_rpc_methods_1.SnapEndowments.Rpc
                 ? (0, snaps_rpc_methods_1.getRpcCaveatOrigins)(handlerPermissions)
                 : (0, snaps_rpc_methods_1.getKeyringCaveatOrigins)(handlerPermissions);
@@ -1893,7 +1894,7 @@ class SnapController extends base_controller_1.BaseController {
         const transformedRequest = this.#transformSnapRpcRequest(snapId, handlerType, request);
         const timer = new Timer_1.Timer(timeout);
         this.#recordSnapRpcRequestStart(snapId, transformedRequest.id, timer);
-        const handleRpcRequestPromise = this.messagingSystem.call('ExecutionService:handleRpcRequest', snapId, { origin, handler: handlerType, request: transformedRequest });
+        const handleRpcRequestPromise = this.messenger.call('ExecutionService:handleRpcRequest', snapId, { origin, handler: handlerType, request: transformedRequest });
         // This will either get the result or reject due to the timeout.
         try {
             const result = await (0, utils_2.withTimeout)(handleRpcRequestPromise, timer);
@@ -1957,11 +1958,11 @@ class SnapController extends base_controller_1.BaseController {
      * @returns An identifier that can be used to identify the interface.
      */
     async #createInterface(snapId, content, contentType) {
-        return this.messagingSystem.call('SnapInterfaceController:createInterface', snapId, content, undefined, contentType);
+        return this.messenger.call('SnapInterfaceController:createInterface', snapId, content, undefined, contentType);
     }
     #assertInterfaceExists(snapId, id) {
         // This will throw if the interface isn't accessible, but we assert nevertheless.
-        (0, utils_1.assert)(this.messagingSystem.call('SnapInterfaceController:getInterface', snapId, id));
+        (0, utils_1.assert)(this.messenger.call('SnapInterfaceController:getInterface', snapId, id));
     }
     /**
      * Transform a RPC response if necessary.
@@ -2015,7 +2016,7 @@ class SnapController extends base_controller_1.BaseController {
      * @returns The transformed result.
      */
     #transformOnAssetsLookupResult(snapId, { params: requestedParams }, { assets }) {
-        const permissions = this.messagingSystem.call('PermissionController:getPermissions', snapId);
+        const permissions = this.messenger.call('PermissionController:getPermissions', snapId);
         // We know the permissions are guaranteed to be set here.
         (0, utils_1.assert)(permissions);
         const permission = permissions[snaps_rpc_methods_1.SnapEndowments.Assets];
@@ -2098,7 +2099,7 @@ class SnapController extends base_controller_1.BaseController {
             case snaps_utils_1.HandlerType.OnUserInput: {
                 (0, utils_1.assert)(request.params && (0, utils_1.hasProperty)(request.params, 'id'));
                 const interfaceId = request.params.id;
-                const { context } = this.messagingSystem.call('SnapInterfaceController:getInterface', snapId, interfaceId);
+                const { context } = this.messenger.call('SnapInterfaceController:getInterface', snapId, interfaceId);
                 return {
                     ...request,
                     params: { ...request.params, context },
@@ -2254,7 +2255,7 @@ class SnapController extends base_controller_1.BaseController {
         // Calling this in reverse order to undo the changes
         this.#handleInitialConnections(snapId, newInitialConnections ?? null, previousInitialConnections ?? {});
         const truncatedSnap = this.getTruncatedExpect(snapId);
-        this.messagingSystem.publish('SnapController:snapRolledback', truncatedSnap, rollbackSnapshot.newVersion);
+        this.messenger.publish('SnapController:snapRolledback', truncatedSnap, rollbackSnapshot.newVersion);
         this.#rollbackSnapshots.delete(snapId);
     }
     /**
@@ -2303,19 +2304,48 @@ class SnapController extends base_controller_1.BaseController {
             getStateMutex: new async_mutex_1.Mutex(),
         });
     }
+    /**
+     * Get the desired permissions including dynamic permissions. That is, if a
+     * dynamic permission was previously granted and at least one of its
+     * dependencies is still desired, it will be included in the desired
+     * permissions.
+     *
+     * @param oldPermissions - The old permissions.
+     * @param desiredPermissions - The desired permissions.
+     * @returns The desired permissions including dynamic permissions.
+     */
+    #getDesiredPermissions(oldPermissions, desiredPermissions) {
+        return Object.keys(oldPermissions).reduce((accumulator, permissionName) => {
+            if (this.#dynamicPermissions.includes(permissionName)) {
+                const hasDependencies = (0, utils_1.hasProperty)(constants_1.DYNAMIC_PERMISSION_DEPENDENCIES, permissionName);
+                const hasDependency = constants_1.DYNAMIC_PERMISSION_DEPENDENCIES[permissionName]?.some((dependency) => (0, utils_1.hasProperty)(desiredPermissions, dependency));
+                // If the permission doesn't have dependencies, or if at least one of
+                // its dependencies is desired, include it in the desired permissions.
+                // NOTE: This effectively means that any permissions granted in the manifest
+                // that are considered dynamic, will not be automatically revoked
+                // when the permission is removed from the manifest.
+                // TODO: Deal with this technical debt.
+                if (!hasDependencies || hasDependency) {
+                    accumulator[permissionName] = oldPermissions[permissionName];
+                }
+            }
+            return accumulator;
+        }, desiredPermissions);
+    }
     #calculatePermissionsChange(snapId, desiredPermissionsSet) {
-        const oldPermissions = this.messagingSystem.call('PermissionController:getPermissions', snapId) ?? {};
-        const newPermissions = (0, utils_2.permissionsDiff)(desiredPermissionsSet, oldPermissions);
-        // TODO(ritave): The assumption that these are unused only holds so long as we do not
-        //               permit dynamic permission requests.
-        const unusedPermissions = (0, utils_2.permissionsDiff)(oldPermissions, desiredPermissionsSet);
+        const oldPermissions = this.messenger.call('PermissionController:getPermissions', snapId) ?? {};
+        const desiredPermissionsSetWithDynamic = this.#getDesiredPermissions(oldPermissions, desiredPermissionsSet);
+        const newPermissions = (0, utils_2.permissionsDiff)(desiredPermissionsSetWithDynamic, oldPermissions);
+        // TODO: The assumption that these are unused only holds so long as we do
+        //  not permit dynamic permission requests.
+        const unusedPermissions = (0, utils_2.permissionsDiff)(oldPermissions, desiredPermissionsSetWithDynamic);
         // It's a Set Intersection of oldPermissions and desiredPermissionsSet
         // oldPermissions ∖ (oldPermissions ∖ desiredPermissionsSet) ⟺ oldPermissions ∩ desiredPermissionsSet
         const approvedPermissions = (0, utils_2.permissionsDiff)(oldPermissions, unusedPermissions);
         return { newPermissions, unusedPermissions, approvedPermissions };
     }
     #isSubjectConnectedToSnap(snapId, origin) {
-        const subjectPermissions = this.messagingSystem.call('PermissionController:getPermissions', origin);
+        const subjectPermissions = this.messenger.call('PermissionController:getPermissions', origin);
         const existingCaveat = subjectPermissions?.[snaps_rpc_methods_1.WALLET_SNAP_PERMISSION_KEY]?.caveats?.find((caveat) => caveat.type === snaps_utils_1.SnapCaveatType.SnapIds);
         return Boolean(existingCaveat?.value?.[snapId]);
     }
@@ -2335,46 +2365,6 @@ class SnapController extends base_controller_1.BaseController {
         const approvedConnections = (0, utils_2.setDiff)(filteredOldConnections, unusedConnections);
         return { newConnections, unusedConnections, approvedConnections };
     }
-    /**
-     * Get the permissions to grant to a Snap following an install, update or
-     * rollback.
-     *
-     * @param snapId - The snap ID.
-     * @param newPermissions - The new permissions to be granted.
-     * @returns The permissions to grant to the Snap.
-     */
-    #getPermissionsToGrant(snapId, newPermissions) {
-        if (Object.keys(newPermissions).includes(snaps_rpc_methods_1.SnapEndowments.EthereumProvider)) {
-            // This will return the globally selected network if the Snap doesn't have
-            // one set.
-            const networkClientId = this.messagingSystem.call('SelectedNetworkController:getNetworkClientIdForDomain', snapId);
-            const { configuration } = this.messagingSystem.call('NetworkController:getNetworkClientById', networkClientId);
-            const chainId = (0, utils_1.hexToNumber)(configuration.chainId);
-            // This needs to be assigned to have proper type inference.
-            const modifiedPermissions = {
-                ...newPermissions,
-                'endowment:caip25': {
-                    caveats: [
-                        {
-                            type: 'authorizedScopes',
-                            value: {
-                                requiredScopes: {},
-                                optionalScopes: {
-                                    [`eip155:${chainId}`]: {
-                                        accounts: [],
-                                    },
-                                },
-                                sessionProperties: {},
-                                isMultichainOrigin: false,
-                            },
-                        },
-                    ],
-                },
-            };
-            return modifiedPermissions;
-        }
-        return newPermissions;
-    }
     /**
      * Update the permissions for a snap following an install, update or rollback.
      *
@@ -2389,14 +2379,13 @@ class SnapController extends base_controller_1.BaseController {
     #updatePermissions({ snapId, unusedPermissions = {}, newPermissions = {}, requestData, }) {
         const unusedPermissionsKeys = Object.keys(unusedPermissions);
         if ((0, utils_1.isNonEmptyArray)(unusedPermissionsKeys)) {
-            this.messagingSystem.call('PermissionController:revokePermissions', {
+            this.messenger.call('PermissionController:revokePermissions', {
                 [snapId]: unusedPermissionsKeys,
             });
         }
         if ((0, utils_1.isNonEmptyArray)(Object.keys(newPermissions))) {
-            const approvedPermissions = this.#getPermissionsToGrant(snapId, newPermissions);
-            this.messagingSystem.call('PermissionController:grantPermissions', {
-                approvedPermissions,
+            this.messenger.call('PermissionController:grantPermissions', {
+                approvedPermissions: newPermissions,
                 subject: { origin: snapId },
                 requestData,
             });
@@ -2437,7 +2426,7 @@ class SnapController extends base_controller_1.BaseController {
     #callLifecycleHooks(origin, handler) {
         const snaps = this.getRunnableSnaps();
         for (const { id } of snaps) {
-            const hasLifecycleHooksEndowment = this.messagingSystem.call('PermissionController:hasPermission', id, snaps_rpc_methods_1.SnapEndowments.LifecycleHooks);
+            const hasLifecycleHooksEndowment = this.messenger.call('PermissionController:hasPermission', id, snaps_rpc_methods_1.SnapEndowments.LifecycleHooks);
             if (!hasLifecycleHooksEndowment) {
                 continue;
             }
@@ -2460,7 +2449,7 @@ class SnapController extends base_controller_1.BaseController {
     async #callLifecycleHook(origin, snapId, handler) {
         const permissionName = snaps_rpc_methods_1.handlerEndowments[handler];
         (0, utils_1.assert)(permissionName, 'Lifecycle hook must have an endowment.');
-        const hasPermission = this.messagingSystem.call('PermissionController:hasPermission', snapId, permissionName);
+        const hasPermission = this.messenger.call('PermissionController:hasPermission', snapId, permissionName);
         if (!hasPermission) {
             return;
         }