fix chain id and swap token by Dargon789 · Pull Request #483 · Uniswap/sdks

Dargon789 · 2026-01-08T05:28:50Z

PR Scope

Please title your PR according to the following types and scopes following conventional commits:

fix(SDK name): will trigger a patch version
chore(<type>): will not trigger any release and should be used for internal repo changes
<type>(public): will trigger a patch version for non-code changes (e.g. README changes)
feat(SDK name): will trigger a minor version
feat(breaking): will trigger a major version for a breaking change

Description

[Summary of the change, motivation, and context]

How Has This Been Tested?

[e.g. Manually, E2E tests, unit tests, Storybook]

Are there any breaking changes?

[e.g. Type definitions, API definitions]

If there are breaking changes, please ensure you bump the major version Bump the major version (by using the title feat(breaking): ...), post a notice in #eng-sdks, and explicitly notify all Uniswap Labs consumers of the SDK.

(Optional) Feedback Focus

[Specific parts of this PR you'd like feedback on, or that reviewers should pay closer attention to]

(Optional) Follow Ups

[Things that weren't addressed in this PR, ways you plan to build on this work, or other ways this work could be extended]

Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com>

Bumps the npm_and_yarn group with 1 update in the / directory: [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts). Updates `@openzeppelin/contracts` from 4.7.0 to 4.9.6 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v4.7.0...v4.9.6) --- updated-dependencies: - dependency-name: "@openzeppelin/contracts" dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…dates (#2) Bumps the npm_and_yarn group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts) | `4.9.6` | `5.0.2` | | [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.3` | `1.15.9` | | [secp256k1](https://github.com/cryptocoinjs/secp256k1-node) | `4.0.3` | `4.0.4` | | [tar](https://github.com/isaacs/node-tar) | `6.2.0` | `6.2.1` | | [undici](https://github.com/nodejs/undici) | `5.28.2` | `5.28.4` | Updates `@openzeppelin/contracts` from 4.9.6 to 5.0.2 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v4.9.6...v5.0.2) Updates `follow-redirects` from 1.15.3 to 1.15.9 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.3...v1.15.9) Updates `secp256k1` from 4.0.3 to 4.0.4 - [Release notes](https://github.com/cryptocoinjs/secp256k1-node/releases) - [Commits](cryptocoinjs/secp256k1-node@v4.0.3...v4.0.4) Updates `tar` from 6.2.0 to 6.2.1 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v6.2.0...v6.2.1) Updates `undici` from 5.28.2 to 5.28.4 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.28.2...v5.28.4) --- updated-dependencies: - dependency-name: "@openzeppelin/contracts" dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: secp256k1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: undici dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps the npm_and_yarn group with 1 update in the / directory: [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts). Updates `@openzeppelin/contracts` from 5.0.2 to 5.1.0 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v5.0.2...v5.1.0) --- updated-dependencies: - dependency-name: "@openzeppelin/contracts" dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com>

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8720086 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577916 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577917 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577918 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8172694 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-WS-7266574 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

…ties (#5) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8720086 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8187303 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577916 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577917 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577918 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACES-6838727 - https://snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230 - https://snyk.io/vuln/SNYK-JS-WS-7266574 - https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728 - https://snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873 - https://snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660 - https://snyk.io/vuln/SNYK-JS-REQUEST-3361831 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACES-6838727 - https://snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230 - https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728 - https://snyk.io/vuln/SNYK-JS-REQUEST-3361831 - https://snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873 - https://snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660 - https://snyk.io/vuln/SNYK-JS-WS-7266574 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

…#16) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PBKDF2-10495496 - https://snyk.io/vuln/SNYK-JS-PBKDF2-10495498 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

Fix witness typestring generation to omit final closing parenthesis per The Compact spec, and add comprehensive tests validating complex nested mandate structures like those used in Tribunal. Changes: - Fix buildWitnessTypestring to remove final closing paren - Add 8 new tests for complex nested mandate types - Test simple nested structures - Test arrays in nested structures - Test alphabetical sorting of multiple nested types - Test Tribunal-like deeply nested structures with recursive refs - Test full Tribunal-style mandate with 5 nested types - Test bytes vs bytes32 in nested structures Added comprehensive tests to validate SDK mandate encoding against Tribunal's reference implementation: - Nested custom types (Mandate_*) - Arrays of nested types (Mandate_Fill[]) - Recursive type references (Mandate_Compact contains Mandate) - Complex multi-level nesting (up to 5 nested types) - Mandate typehash matches Tribunal's MANDATE_TYPEHASH constant - Mandate_Fill typehash matches MANDATE_FILL_TYPEHASH - Mandate_FillComponent typehash matches MANDATE_FILL_COMPONENT_TYPEHASH - Mandate_Lock typehash matches MANDATE_LOCK_TYPEHASH - All typehashes computed from typestrings match Tribunal contract constants - Full Tribunal mandate encoding test case from TribunalBasicTest.sol - Validates encoding structure (address + fillsHash = 64 bytes) - Verifies hash computation is deterministic These tests ensure the SDK's EIP-712 encoding is compatible with Tribunal's on-chain mandate derivation functions (deriveMandateHash, deriveFillHash).

@param

1) Add collectCoverageFrom and coverage reporting configuration to enable test coverage measurement. Includes text, text-summary, and HTML reporters. 2) Add complete parameter and return type documentation to all functions: Price Curve Library: - Document all parameters with types and descriptions - Add return type documentation with value ranges - Clarify scaling factor semantics (1e18 = neutral) - Document error conditions and edge cases Tribunal Builders: - Full @param documentation for all builder methods - Document chaining behavior with @returns - Add class-level documentation with usage examples - Document build() method preconditions Convenience Functions: - Complete parameter documentation for createSameChainFill() - Full parameter docs for createCrossChainFill() - Clarify cross-chain callback semantics 3) Add many new test cases for claim and batch claim functionality

…lders Add extensive class-level and method documentation to all builder classes in compact.ts and claim.ts, improving API discoverability and usage examples.

Replace basic README with comprehensive documentation covering all aspects of the SDK usage, from installation to advanced patterns.

Add functional e2e tests using Supersim for testing against forked chains

…eriods Add E2E test demonstrating batch compacts covering multiple resource locks with different reset periods, processed in a single batch claim transaction.

Add a simpler `fromCompact()` method to BaseBatchClaimBuilder that pre-fills sponsor, nonce, expires, and signature from a BatchCompact struct without requiring ids/amounts upfront. This provides a cleaner API for building batch claims: Before: ClaimBuilder.batch(domain) .sponsor(compact.sponsor) .nonce(compact.nonce) .expires(compact.expires) .addClaim()... After: ClaimBuilder.batch(domain) .fromCompact({ compact, signature }) .addClaim()... The method is inherited by BatchClaimBuilder, BatchMultichainClaimBuilder, and ExogenousBatchMultichainClaimBuilder, providing consistent API across all batch claim builder types.

…in permissions (#50) Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ESLINT-15102420 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

…updates (#48) Bumps the npm_and_yarn group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.18.9` | `7.26.10` | | [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts) | `4.7.0` | `4.9.6` | | [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` | | [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` | | [tar](https://github.com/isaacs/node-tar) | `7.5.1` | `7.5.7` | Bumps the npm_and_yarn group with 1 update in the /sdks/universal-router-sdk directory: [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts). Updates `@babel/runtime` from 7.18.9 to 7.26.10 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.26.10/packages/babel-runtime) Updates `@openzeppelin/contracts` from 4.7.0 to 4.9.6 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v4.7.0...v4.9.6) Updates `js-yaml` from 3.14.1 to 3.14.2 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](nodeca/js-yaml@3.14.1...3.14.2) Updates `jws` from 3.2.2 to 3.2.3 - [Release notes](https://github.com/brianloveswords/node-jws/releases) - [Changelog](https://github.com/auth0/node-jws/blob/master/CHANGELOG.md) - [Commits](auth0/node-jws@v3.2.2...v3.2.3) Updates `tar` from 7.5.1 to 7.5.7 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v7.5.1...v7.5.7) Updates `@openzeppelin/contracts` from 4.7.0 to 4.9.6 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v4.7.0...v4.9.6) Updates `@openzeppelin/contracts` from 4.7.0 to 4.9.6 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v4.7.0...v4.9.6) Updates `@openzeppelin/contracts` from 4.7.0 to 4.9.6 - [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases) - [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md) - [Commits](OpenZeppelin/openzeppelin-contracts@v4.7.0...v4.9.6) --- updated-dependencies: - dependency-name: "@babel/runtime" dependency-version: 7.26.10 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@openzeppelin/contracts" dependency-version: 4.9.6 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: js-yaml dependency-version: 3.14.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: jws dependency-version: 3.2.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-version: 7.5.7 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@openzeppelin/contracts" dependency-version: 4.9.6 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@openzeppelin/contracts" dependency-version: 4.9.6 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@openzeppelin/contracts" dependency-version: 4.9.6 dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

socket-security · 2026-02-01T07:52:51Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
jest-environment-node@26.0.0
jest@26.0.0
jest@28.0.0
axios@1.13.4
@babel/runtime@7.18.9 ⏵ 7.26.10	⁺¹	⁺²	⁺¹
abortcontroller-polyfill@1.7.8
cross-fetch@4.1.0
sane@5.0.1
ethers@6.16.0
tsdx@2.0.0
ts-jest@26.5.6
@openzeppelin/contracts@4.7.0 ⏵ 4.9.6		⁺⁵⁰	⁺²		^-9
eslint@8.57.1 ⏵ 9.39.2	^-2		⁺¹	⁺⁴⁵

View full report

socket-security · 2026-02-01T07:52:53Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		High CVE: Axios is Vulnerable to Denial of Service via __proto__ Key in mergeConfig CVE: GHSA-43fc-jf86-j433 Axios is Vulnerable to Denial of Service via proto Key in mergeConfig (HIGH) Affected versions: < 1.13.5 Patched version: 1.13.5 From: sdks/the-compact-sdk/package.json → `npm/axios@1.13.4` ℹ Read more on: This package \| This alert \| What is a CVE? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Remove or replace dependencies that include known high severity CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/axios@1.13.4`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Dynamic module loading: npm `@eslint/config-array` Location: Package overview From: `?` → `npm/eslint@9.39.2` → `npm/@eslint/config-array@0.21.1` ℹ Read more on: This package \| This alert \| What is dynamic require? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should avoid dynamic imports when possible. Audit the use of dynamic require to ensure it is not executing malicious or vulnerable code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@eslint/config-array@0.21.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Dynamic module loading: npm `@sinonjs/fake-timers` Location: Package overview From: `?` → `npm/jest-environment-node@26.0.0` → `npm/@sinonjs/fake-timers@6.0.1` ℹ Read more on: This package \| This alert \| What is dynamic require? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should avoid dynamic imports when possible. Audit the use of dynamic require to ensure it is not executing malicious or vulnerable code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@sinonjs/fake-timers@6.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Dynamic module loading: npm `ethers` Location: Package overview From: sdks/permit2-sdk/package.json → `npm/ethers@6.16.0` ℹ Read more on: This package \| This alert \| What is dynamic require? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should avoid dynamic imports when possible. Audit the use of dynamic require to ensure it is not executing malicious or vulnerable code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/ethers@6.16.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

…#46) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

* fix: sdks/permit2-sdk/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 * fix: sdks/permit2-sdk/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 * fix: sdks/permit2-sdk/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 --------- Co-authored-by: snyk-bot <snyk-bot@snyk.io> Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>

…dates (#57) Bumps the npm_and_yarn group with 3 updates in the / directory: [eslint](https://github.com/eslint/eslint), [diff](https://github.com/kpdecker/jsdiff) and [lodash](https://github.com/lodash/lodash). Updates `eslint` from 8.57.1 to 9.26.0 - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/v9.26.0/CHANGELOG.md) - [Commits](eslint/eslint@v8.57.1...v9.26.0) Updates `diff` from 4.0.2 to 4.0.4 - [Changelog](https://github.com/kpdecker/jsdiff/blob/master/release-notes.md) - [Commits](kpdecker/jsdiff@v4.0.2...v4.0.4) Updates `lodash` from 4.17.21 to 4.17.23 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.21...4.17.23) --- updated-dependencies: - dependency-name: eslint dependency-version: 9.26.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: diff dependency-version: 4.0.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: lodash dependency-version: 4.17.23 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* fix: sdks/uniswapx-sdk/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 - https://snyk.io/vuln/SNYK-JS-ESLINT-15102420 * fix: sdks/uniswapx-sdk/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 - https://snyk.io/vuln/SNYK-JS-ESLINT-15102420 --------- Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io>

* fix: sdks/uniswapx-sdk/integration/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 * fix: sdks/uniswapx-sdk/integration/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 --------- Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io>

jsy1218 and others added 30 commits July 3, 2024 05:51

chore(v3-sdk): annotate FACTORY_ADDRESS as deprecated

44ce99e

chore(v3-sdk): annotate FACTORY_ADDRESS as deprecated

4a782ab

remove .idea artifact

5b1d575

Create SECURITY.md

f710d17

Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com>

Update issue templates

ab77e0b

Create jekyll-gh-pages.yml

eb292e1

Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com>

Create google.yml

cd30a6a

Signed-off-by: Legion's <64915515+Dargon789@users.noreply.github.com>

Merge branch 'Uniswap:main' into main

46a4e99

fix: sdks/uniswapx-sdk/package.json to reduce vulnerabilities (#7)

3a0a9b9

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-WS-7266574 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

Merge branch 'Uniswap:main' into main

ee3f44b

Add .circleci/config.yml (#9)

95e718a

fix: sdks/universal-router-sdk/package.json to reduce vulnerabilities (…

8d5e38f

…#16) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PBKDF2-10495496 - https://snyk.io/vuln/SNYK-JS-PBKDF2-10495498 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

feat(client): complete ArbiterClient with multichain support and TSDoc

ac8439a

test(client): add comprehensive unit tests

d09d24c

chore(test, doc): update to jest 29.x, add comprehensive TSDoc to bui…

b8562e2

…lders Add extensive class-level and method documentation to all builder classes in compact.ts and claim.ts, improving API discoverability and usage examples.

docs: create comprehensive README with detailed SDK usage guide

261d1f5

Replace basic README with comprehensive documentation covering all aspects of the SDK usage, from installation to advanced patterns.

feat(e2e): add comprehensive end-to-end integration test suite

5415672

Add functional e2e tests using Supersim for testing against forked chains

test(e2e): add comprehensive batch compact test with multiple reset p…

e91ebea

…eriods Add E2E test demonstrating batch compacts covering multiple resource locks with different reset periods, processed in a single batch claim transaction.

chore(docs): update E2E_TESTING.md

b2577f8

Update README.md

c8b42fb

Dargon789 and others added 5 commits February 1, 2026 08:57

Merge remote-tracking branch 'origin/sdks/main'

545a091

Potential fix for code scanning alert no. 14: Workflow does not conta…

e3baf06

…in permissions (#50) Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Update google.yml (#52)

ad9b274

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

fix: package.json to reduce vulnerabilities (#49)

3263434

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ESLINT-15102420 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

Dargon789 and others added 9 commits February 1, 2026 14:53

fix: sdks/uniswapx-sdk/package.json to reduce vulnerabilities (#47)

25e1820

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

fix: sdks/universal-router-sdk/package.json to reduce vulnerabilities (…

7370ee1

…#46) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 Co-authored-by: snyk-bot <snyk-bot@snyk.io>

Merge branch 'Uniswap:main' into chore(v3-sdk)-annotate-FACTORY_ADDRESS-

919ccdf

Merge branch 'main' into wip(indexing)-add-tribunal-indexer-client

232f5e7

Merge branch 'chore(v3-sdk)-annotate-FACTORY_ADDRESS-'

cfe8b3c

Merge remote-tracking branch 'upstream/add-claude-md'

58e426c

Dargon789 requested review from a team as code owners February 1, 2026 11:22

Dargon789 requested review from 0x00101010, cgkol, charlesma4, eugene-uniswap, kailuo-uniswap, paranoiacblack and trianglesphere February 1, 2026 11:22

dependabot bot and others added 5 commits February 1, 2026 18:49

Merge branch 'Uniswap:main' into main

48ac757

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix chain id and swap token #483

fix chain id and swap token #483
Dargon789 wants to merge 96 commits intoUniswap:mainfrom
Dargon789:main

Dargon789 commented Jan 8, 2026

Uh oh!

socket-security bot commented Feb 1, 2026 •

edited

Loading

Uh oh!

socket-security bot commented Feb 1, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Conversation

Dargon789 commented Jan 8, 2026

PR Scope

Description

How Has This Been Tested?

Are there any breaking changes?

(Optional) Feedback Focus

(Optional) Follow Ups

Uh oh!

socket-security bot commented Feb 1, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security bot commented Feb 1, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

socket-security bot commented Feb 1, 2026 •

edited

Loading

socket-security bot commented Feb 1, 2026 •

edited

Loading