feat: account syncing various updates

[mathieuartu]

Description

This PR adds various account syncing house keeping improvements in order to be ready for re-enablement in a subsequent PR.
The number of files changed by this PR is large, but none affects a user facing feature, since account syncing is disabled in production.

• Bump @metamask/profile-sync-controller to version 1.0.2
• Add two new state keys linked to UserStorageController, isAccountSyncingReadyToBeDispatched and hasAccountSyncingSyncedAtLeastOnce
• Wait for _addAccountsWithBalance to finish adding accounts after onboarding, then set isAccountSyncingReadyToBeDispatched to true
• Use USER_STORAGE_FEATURE_NAMES exported constant from @metamask/profile-sync-controller to define user storage paths everywhere (no more magic strings)
• Add batch delete delete support for E2E util UserStorageMockttpController
• Update all account sync E2E tests in order to wait for account sync to have successfully been completed once before going on with the rest of the instructions.

⚠️ Please note that this PR does NOT re-enable account syncing in production. This will be done in a subsequent PR.

Related issues

Manual testing steps

1. Import your SRP
2. Add accounts, rename accounts
3. Uninstall & reinstall
4. Import the same SRP
5. Verify that previous updates made in step 2 are there

Screenshots/Recordings

Before

After

Pre-merge author checklist

• I've followed MetaMask Contributor Docs and MetaMask Extension Coding Standards.
• I've completed the PR template to the best of my ability
• I’ve included tests if applicable
• I’ve documented my code using JSDoc format if applicable
• I’ve applied the right labels on the PR (see labeling guidelines). Not required for external contributors.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@metamask/[email protected]	network	0	44.1 kB	lgbot
npm/@metamask/[email protected]	network	0	172 kB	metamaskbot
npm/@metamask/[email protected]	environment	+2	761 kB	metamaskbot
npm/@metamask/[email protected]	network	+2	1.85 MB	metamaskbot
npm/[email protected]	None	0	23.2 kB	lukeed
npm/[email protected]	None	0	646 kB	acemarke

🚮 Removed packages: npm/@metamask/[email protected], npm/[email protected]

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source	CI
Network access	npm/@metamask/[email protected]	Module: globalThis["fetch"] Location: Package overview	package.json yarn.lock	🚫
New author	npm/@metamask/[email protected]	New Author: lgbot Previous Author: mcmire	yarn.lock	🚫
Unstable ownership	npm/@metamask/[email protected]	Author: lgbot	yarn.lock	🚫
Network access	npm/@metamask/[email protected]	Module: globalThis["fetch"] Location: Package overview	yarn.lock	🚫

View full report↗︎

Next steps

What is network access?

This module accesses the network.

Packages should remove all network access that is functionally unnecessary. Consumers should audit network access to ensure legitimate use.

What is new author?

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Scrutinize new collaborator additions to packages because they now have the ability to publish code into your dependency tree. Packages should avoid frequent or unnecessary additions or changes to publishing rights.

What is unstable ownership?

A new collaborator has begun publishing package versions. Package stability and security risk may be elevated.

Try to reduce the amount of authors you depend on to reduce the risk to malicious actors gaining access to your supply chain. Packages should remove inactive collaborators with publishing rights from packages on npm.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/@metamask/[email protected]
• @SocketSecurity ignore npm/@metamask/[email protected]

[mathieuartu]

This whole function appears to be fully modified but it has just been wrapped in a try - catch - finally block

[mathieuartu]

In order to prevent conflicts with different actors adding accounts at the end of onboarding, we're only dispatching account syncing when _addAccountsWithBalance is done.

[mathieuartu]

@metamaskbot update-policies

[metamaskbot]

Policies updated.
👀 Please review the diff for suspicious new powers.

🧠 Learn how: https://lavamoat.github.io/guides/policy-diff/#what-to-look-for-when-reviewing-a-policy-diff

[metamaskbot]

Builds ready [32286e0]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6, 7
  • common: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (2341 ± 112 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	329	2701	1955	800	384
		domContentLoaded	1828	2689	2302	236	113
		load	1841	2702	2341	233	112
		domInteractive	32	67	48	11	5
		backgroundConnect	9	90	32	22	10
		firstReactRender	68	377	158	104	50
		getState	82	214	128	44	21
		initialActions	0	1	0	0	0
		loadScripts	1332	2061	1725	199	96
		setupStore	7	81	20	24	11
		uiStartup	2149	3244	2830	310	149

Bundle size diffs [🚀 Bundle size reduced!]

• background: 171 Bytes (0.00%)
• ui: 225 Bytes (0.00%)
• common: -55.86 KiB (-0.67%)

[metamaskbot]

Builds ready [0ed48a0]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6, 7
  • common: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (1897 ± 66 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	1644	2243	1905	135	65
		domContentLoaded	1634	2203	1857	124	59
		load	1644	2248	1897	137	66
		domInteractive	28	95	42	18	9
		backgroundConnect	13	86	40	25	12
		firstReactRender	68	387	142	92	44
		getState	45	250	114	55	26
		initialActions	0	1	0	0	0
		loadScripts	1212	1694	1400	104	50
		setupStore	6	85	22	29	14
		uiStartup	1939	2951	2327	311	149

Bundle size diffs [🚀 Bundle size reduced!]

• background: 171 Bytes (0.00%)
• ui: 225 Bytes (0.00%)
• common: -55.86 KiB (-0.66%)

[metamaskbot]

Builds ready [c2f24fd]

• builds: chrome, firefox
• builds (beta): chrome
• builds (flask): chrome, firefox
• builds (MMI): chrome, firefox
• builds (test): chrome, firefox
• builds (test-flask): chrome, firefox
• build viz: Build System
• mv3: Background Module Init Stats
• mv3: UI Init Stats
• mv3: Module Load Stats
• mv3: Bundle Size Stats
• mv2: E2e Actions Stats
• code coverage: Report
• storybook: Storybook
• typescript migration: Dashboard
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6, 7
  • common: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9
  • content-script: 0
  • offscreen: 0
  • ui: 0, 1, 10, 11, 12, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (2110 ± 64 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	523	2341	2031	370	178
		domContentLoaded	1793	2243	2048	123	59
		load	1871	2355	2110	134	64
		domInteractive	15	172	47	33	16
		backgroundConnect	10	198	61	43	21
		firstReactRender	66	366	127	77	37
		getState	48	204	110	46	22
		initialActions	0	0	0	0	0
		loadScripts	1283	1713	1548	117	56
		setupStore	6	39	10	7	3
		uiStartup	2165	3021	2517	199	96

Bundle size diffs [🚀 Bundle size reduced!]

• background: 412 Bytes (0.01%)
• ui: 225 Bytes (0.00%)
• common: -55.79 KiB (-0.66%)

[cmd-ob]

Look good! Thanks for sorting.