fix: Only reject approvals if subject has `endowment:caip25` permission revoked by FrederikBolding · Pull Request #40139 · MetaMask/metamask-extension

FrederikBolding · 2026-02-16T12:37:28Z

Description

Rejecting all approvals caused strange behavior when installing Snaps from the Snaps Directory because the directory page uses wallet_revokePermissions. This PR fixes it by only rejecting pending approvals from the origin if the revoked permission is endowment:caip25.

Changelog

CHANGELOG entry: Fixed an issue where approvals would be closed too soon

Related issues

Fixes: #40112

Manual testing steps

See attached issue

Note

Low Risk
Small conditional change in RPC middleware behavior with targeted test update; low risk aside from potential behavioral differences in edge cases around permission key selection.

Overview
Updates wallet_revokePermissions so it only calls rejectApprovalRequestsForOrigin when the revoke set includes endowment:caip25, instead of rejecting approvals for any permission revocation.

Adjusts the corresponding unit test to trigger approval rejection via a CAIP-25-equivalent permission (eth_accounts) rather than an explicit endowment:caip25 entry.

^{Written by Cursor Bugbot for commit e5caae2. This will update automatically on new commits. Configure here.}

metamaskbotv2 · 2026-02-16T12:38:11Z

✨ Files requiring CODEOWNER review ✨

👨‍🔧 @MetaMask/wallet-integrations (2 files, +5 -2)

📁 app/
- 📁 scripts/
  - 📁 lib/
    - 📁 rpc-method-middleware/
      - 📁 handlers/
        
        📄 wallet-revokePermissions.test.ts +1 -1
        
        📄 wallet-revokePermissions.ts +4 -1

FrederikBolding · 2026-02-16T13:06:38Z

app/scripts/lib/rpc-method-middleware/handlers/wallet-revokePermissions.test.ts

      params: [
        {
-          [Caip25EndowmentPermissionName]: {},
+          "eth_accounts": {},


endowment:caip25 is currently only revokable if specifying a legacy permission

metamaskbotv2 · 2026-02-16T13:40:02Z

Builds ready [a9615f1]

builds: chrome, firefox
builds (beta): chrome, firefox
builds (flask): chrome, firefox
builds (test): chrome, firefox
builds (test-flask): chrome, firefox
bundle size: Bundle Size Stats
user-actions-benchmark: User Actions Stats
storybook: Storybook
typescript migration: Dashboard
all artifacts
bundle viz:
- background: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9
- common: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17
- ui: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20
- content-script: 0
- offscreen: 0

UI Startup Metrics (1397 ± 100 ms)

Platform	BuildType	Page	Metric	Mean (ms)	Min (ms)	Max (ms)	Std Dev (ms)	P 75 (ms)	P 95 (ms)
Chrome	Browserify	Standard Home	uiStartup	1397	1190	1849	100	1449	1569
			load	1204	1023	1535	90	1262	1349
			domContentLoaded	1198	1018	1527	90	1255	1342
			domInteractive	28	17	97	18	25	77
			firstPaint	159	69	1034	116	203	304
			backgroundConnect	253	232	414	22	257	284
			firstReactRender	16	10	36	4	18	25
			initialActions	1	0	4	1	1	2
			loadScripts	962	777	1285	90	1017	1106
			setupStore	12	5	43	6	14	21
			numNetworkReqs	23	15	86	20	15	80
	Browserify	Power User Home	uiStartup	1761	1452	2464	167	1790	2122
			load	1190	1057	1818	165	1167	1669
			domContentLoaded	1174	1051	1758	159	1152	1658
			domInteractive	37	19	180	28	34	115
			firstPaint	177	73	510	86	241	316
			backgroundConnect	343	305	426	25	354	390
			firstReactRender	22	17	43	5	24	32
			initialActions	1	0	5	1	1	2
			loadScripts	910	793	1476	156	887	1351
			setupStore	15	7	33	5	18	27
			numNetworkReqs	122	47	260	47	143	217
	Webpack	Standard Home	uiStartup	831	711	1189	94	870	1013
			load	721	628	1047	87	766	879
			domContentLoaded	715	624	1041	86	761	872
			domInteractive	27	16	98	19	24	81
			firstPaint	114	64	349	56	142	236
			backgroundConnect	27	17	44	7	32	39
			firstReactRender	16	10	32	5	19	27
			initialActions	1	0	2	1	1	2
			loadScripts	712	622	1039	85	759	865
			setupStore	11	6	23	3	12	19
			numNetworkReqs	23	15	97	21	15	84
	Webpack	Power User Home	uiStartup	1301	938	2027	179	1372	1684
			load	743	650	1365	127	734	1095
			domContentLoaded	733	643	1357	127	721	1087
			domInteractive	40	20	189	35	34	132
			firstPaint	154	70	435	85	191	325
			backgroundConnect	172	133	378	50	186	279
			firstReactRender	24	19	33	3	26	31
			initialActions	1	0	4	1	1	1
			loadScripts	730	641	1346	125	719	1076
			setupStore	14	5	47	7	15	21
			numNetworkReqs	117	48	285	55	146	264
Firefox	Browserify	Standard Home	uiStartup	1506	1308	2211	188	1534	1980
			load	1299	1147	1911	148	1330	1589
			domContentLoaded	1298	1144	1906	148	1329	1589
			domInteractive	62	32	346	42	85	125
			firstPaint	-	-	-	-	-	-
			backgroundConnect	54	28	205	24	58	84
			firstReactRender	12	10	23	2	12	14
			initialActions	1	0	2	0	1	2
			loadScripts	1273	1122	1845	141	1308	1569
			setupStore	16	6	173	23	12	40
			numNetworkReqs	24	12	97	21	17	85
	Browserify	Power User Home	uiStartup	2730	2139	4551	430	2764	3515
			load	1553	1258	2269	251	1610	2170
			domContentLoaded	1552	1253	2268	251	1610	2166
			domInteractive	112	34	459	93	112	361
			firstPaint	-	-	-	-	-	-
			backgroundConnect	342	116	960	278	502	899
			firstReactRender	18	14	66	6	18	22
			initialActions	1	0	3	1	2	2
			loadScripts	1513	1237	2194	233	1571	2112
			setupStore	103	7	778	157	85	434
			numNetworkReqs	67	33	148	34	90	137
	Webpack	Standard Home	uiStartup	1654	1410	2096	138	1701	1977
			load	1428	1229	1805	108	1471	1611
			domContentLoaded	1428	1229	1805	108	1470	1611
			domInteractive	96	30	235	46	132	151
			firstPaint	-	-	-	-	-	-
			backgroundConnect	55	22	239	33	57	116
			firstReactRender	15	11	44	4	14	24
			initialActions	1	0	3	1	1	2
			loadScripts	1402	1211	1778	104	1450	1588
			setupStore	16	6	167	23	13	49
			numNetworkReqs	23	12	89	19	17	75
	Webpack	Power User Home	uiStartup	2752	1933	3778	448	2987	3599
			load	1579	1301	2317	285	1717	2155
			domContentLoaded	1578	1301	2316	285	1717	2154
			domInteractive	126	31	743	148	114	554
			firstPaint	-	-	-	-	-	-
			backgroundConnect	339	122	1315	268	397	913
			firstReactRender	22	15	56	6	25	31
			initialActions	2	1	3	1	2	2
			loadScripts	1514	1183	2239	250	1675	2023
			setupStore	161	8	791	211	177	680
			numNetworkReqs	65	35	138	31	91	127

📊 Page Load Benchmark Results

Current Commit: a9615f1 | Date: 2/16/2026

📄 Localhost MetaMask Test Dapp

Samples: 100

Summary

pageLoadTime-> current mean value: 1.05s (±46ms) 🟡 | historical mean value: 1.04s ⬆️ (historical data)
domContentLoaded-> current mean value: 739ms (±43ms) 🟢 | historical mean value: 736ms ⬆️ (historical data)
firstContentfulPaint-> current mean value: 81ms (±19ms) 🟢 | historical mean value: 86ms ⬇️ (historical data)

📈 Detailed Results

Metric	Mean	Std Dev	Min	Max	P95	P99
pageLoadTime	1.05s	46ms	1.02s	1.43s	1.08s	1.43s
domContentLoaded	739ms	43ms	714ms	1.09s	757ms	1.09s
firstPaint	81ms	19ms	64ms	256ms	88ms	256ms
firstContentfulPaint	81ms	19ms	64ms	256ms	88ms	256ms
largestContentfulPaint	0ms	0ms	0ms	0ms	0ms	0ms

Bundle size diffs [🚀 Bundle size reduced!]

background: 103 Bytes (0%)
ui: -1.31 KiB (-0.02%)
common: -294 Bytes (0%)

adonesky1

LGTM!

…on revoked (#40139)  ## **Description** Rejecting all approvals caused strange behavior when installing Snaps from the Snaps Directory because the directory page uses `wallet_revokePermissions`. This PR fixes it by only rejecting pending approvals from the origin if the revoked permission is `endowment:caip25`. [![Open in GitHub Codespaces](https://github.com/codespaces/badge.svg)](https://codespaces.new/MetaMask/metamask-extension/pull/40139?quickstart=1) ## **Changelog**  CHANGELOG entry: Fixed an issue where approvals would be closed too soon ## **Related issues** Fixes: #40112 ## **Manual testing steps** See attached issue  --- > [!NOTE] > **Low Risk** > Small, well-scoped conditional change to approval rejection behavior with accompanying test update; low risk aside from potentially altering when pending confirmations are closed. > > **Overview** > Updates `wallet_revokePermissions` middleware to **only call** `rejectApprovalRequestsForOrigin` when the revocation set includes `endowment:caip25`, instead of rejecting approvals for any permission revocation. > > Adjusts the unit test to trigger approval rejection via revoking a CAIP-25-equivalent permission (e.g. `eth_accounts`) that causes `endowment:caip25` to be revoked. > > <sup>Written by [Cursor Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit a9615f1. This will update automatically on new commits. Configure [here](https://cursor.com/dashboard?tab=bugbot).</sup>

metamaskbotv2 · 2026-02-18T12:41:46Z

Builds ready [e5caae2]

builds: chrome, firefox
builds (beta): chrome, firefox
builds (flask): chrome, firefox
builds (test): chrome, firefox
builds (test-flask): chrome, firefox
bundle size: Bundle Size Stats
user-actions-benchmark: User Actions Stats
storybook: Storybook
typescript migration: Dashboard
all artifacts
bundle viz:
- background: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9
- common: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17
- ui: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20
- content-script: 0
- offscreen: 0

UI Startup Metrics (1447 ± 112 ms)

Platform	BuildType	Page	Metric	Mean (ms)	Min (ms)	Max (ms)	Std Dev (ms)	P 75 (ms)	P 95 (ms)
Chrome	Browserify	Standard Home	uiStartup	1447	1241	1969	112	1505	1632
			load	1244	1044	1641	102	1292	1405
			domContentLoaded	1236	1039	1621	100	1287	1397
			domInteractive	31	18	118	21	26	84
			firstPaint	188	71	1253	201	214	374
			backgroundConnect	267	238	332	15	272	296
			firstReactRender	17	10	45	5	18	26
			initialActions	1	0	6	1	1	2
			loadScripts	987	787	1366	99	1036	1141
			setupStore	14	7	115	11	15	21
			numNetworkReqs	23	15	89	20	15	81
	Browserify	Power User Home	uiStartup	2746	1481	11013	2120	2319	8654
			load	1298	1112	1842	148	1351	1618
			domContentLoaded	1278	1094	1812	146	1325	1591
			domInteractive	36	20	142	21	37	60
			firstPaint	192	81	457	81	256	327
			backgroundConnect	1043	313	9193	1960	419	6232
			firstReactRender	26	17	56	8	27	42
			initialActions	1	0	6	1	1	2
			loadScripts	1008	840	1547	140	1042	1310
			setupStore	16	7	53	8	19	32
			numNetworkReqs	101	50	227	41	127	183
	Webpack	Standard Home	uiStartup	790	643	1066	104	874	961
			load	688	574	999	99	760	871
			domContentLoaded	683	569	992	98	756	864
			domInteractive	25	15	87	17	22	75
			firstPaint	111	59	305	51	149	180
			backgroundConnect	24	15	59	8	27	38
			firstReactRender	14	9	29	4	17	22
			initialActions	1	0	2	1	1	1
			loadScripts	680	567	990	97	754	861
			setupStore	11	6	39	5	11	20
			numNetworkReqs	23	15	98	22	15	88
	Webpack	Power User Home	uiStartup	1314	879	1994	213	1389	1788
			load	762	648	1145	110	764	1051
			domContentLoaded	752	643	1136	111	754	1041
			domInteractive	38	17	168	28	36	105
			firstPaint	162	76	485	91	173	332
			backgroundConnect	183	133	734	84	175	335
			firstReactRender	22	17	38	4	23	28
			initialActions	1	0	3	1	1	1
			loadScripts	749	641	1125	108	751	1032
			setupStore	12	5	48	5	13	19
			numNetworkReqs	142	46	285	45	165	202
Firefox	Browserify	Standard Home	uiStartup	1505	1322	2234	173	1530	1898
			load	1309	1139	1912	150	1344	1617
			domContentLoaded	1307	1139	1907	150	1342	1617
			domInteractive	60	32	300	41	72	125
			firstPaint	-	-	-	-	-	-
			backgroundConnect	53	26	174	22	52	75
			firstReactRender	12	10	22	2	12	16
			initialActions	1	0	3	0	1	2
			loadScripts	1282	1116	1817	139	1319	1591
			setupStore	13	6	54	8	13	32
			numNetworkReqs	24	12	91	21	17	84
	Browserify	Power User Home	uiStartup	2843	2154	4569	406	2949	3696
			load	1608	1331	3250	299	1652	2062
			domContentLoaded	1607	1331	3250	299	1648	2062
			domInteractive	181	49	1830	223	185	612
			firstPaint	-	-	-	-	-	-
			backgroundConnect	380	120	1166	262	476	947
			firstReactRender	21	14	171	16	19	27
			initialActions	1	0	2	1	2	2
			loadScripts	1559	1304	3213	289	1605	2025
			setupStore	172	8	806	213	225	685
			numNetworkReqs	91	45	200	31	106	152
	Webpack	Standard Home	uiStartup	1658	1423	2181	147	1720	1961
			load	1435	1219	1700	104	1504	1610
			domContentLoaded	1434	1218	1700	105	1504	1610
			domInteractive	95	29	311	58	132	194
			firstPaint	-	-	-	-	-	-
			backgroundConnect	59	26	165	28	64	114
			firstReactRender	14	11	25	2	15	18
			initialActions	1	0	3	1	2	2
			loadScripts	1409	1203	1671	102	1479	1587
			setupStore	15	6	163	21	12	34
			numNetworkReqs	23	13	86	17	17	73
	Webpack	Power User Home	uiStartup	2741	2111	3826	334	2934	3267
			load	1604	1325	2622	241	1657	2177
			domContentLoaded	1604	1319	2621	241	1657	2176
			domInteractive	200	50	1095	210	207	712
			firstPaint	-	-	-	-	-	-
			backgroundConnect	303	127	1250	195	369	690
			firstReactRender	22	16	69	7	24	33
			initialActions	2	1	4	1	2	2
			loadScripts	1568	1303	2589	241	1618	2145
			setupStore	138	18	781	168	135	607
			numNetworkReqs	93	39	221	39	92	199

📊 Page Load Benchmark Results

Current Commit: e5caae2 | Date: 2/18/2026

📄 Localhost MetaMask Test Dapp

Samples: 100

Summary

pageLoadTime-> current mean value: 971ms (±76ms) 🟢 | historical mean value: 1.03s ⬇️ (historical data)
domContentLoaded-> current mean value: 688ms (±73ms) 🟢 | historical mean value: 726ms ⬇️ (historical data)
firstContentfulPaint-> current mean value: 77ms (±12ms) 🟢 | historical mean value: 82ms ⬇️ (historical data)

📈 Detailed Results

Metric	Mean	Std Dev	Min	Max	P95	P99
pageLoadTime	971ms	76ms	927ms	1.34s	1.21s	1.34s
domContentLoaded	688ms	73ms	650ms	1.04s	908ms	1.04s
firstPaint	77ms	12ms	60ms	184ms	84ms	184ms
firstContentfulPaint	77ms	12ms	60ms	184ms	84ms	184ms
largestContentfulPaint	0ms	0ms	0ms	0ms	0ms	0ms

Bundle size diffs

background: 103 Bytes (0%)
ui: 5 Bytes (0%)
common: 20 Bytes (0%)

FrederikBolding requested a review from a team as a code owner February 16, 2026 12:37

FrederikBolding temporarily deployed to pr-comment February 16, 2026 12:37 — with GitHub Actions Inactive

metamaskbot added the team-core-platform Core Platform team label Feb 16, 2026

metamaskbot added the INVALID-PR-TEMPLATE PR's body doesn't match template label Feb 16, 2026

github-actions bot added the size-XS label Feb 16, 2026

FrederikBolding had a problem deploying to pr-comment February 16, 2026 13:04 — with GitHub Actions Error

FrederikBolding temporarily deployed to pr-comment February 16, 2026 13:06 — with GitHub Actions Inactive

FrederikBolding commented Feb 16, 2026

View reviewed changes

FrederikBolding temporarily deployed to pr-comment February 16, 2026 13:09 — with GitHub Actions Inactive

scutuatua-crypto approved these changes Feb 16, 2026

View reviewed changes

FrederikBolding temporarily deployed to pr-comment February 16, 2026 13:35 — with GitHub Actions Inactive

Mrtenz approved these changes Feb 16, 2026

View reviewed changes

jiexi approved these changes Feb 17, 2026

View reviewed changes

adonesky1 approved these changes Feb 17, 2026

View reviewed changes

FrederikBolding added this pull request to the merge queue Feb 18, 2026

FrederikBolding removed this pull request from the merge queue due to a manual request Feb 18, 2026

FrederikBolding added 3 commits February 18, 2026 13:09

fix: Only reject approvals if subject has endowment:caip25 permission

6e8a073

Fix test

4c1cd20

Fix lint

e5caae2

FrederikBolding force-pushed the fb/reject-approvals-only-if-subject-has-caip25 branch from a9615f1 to e5caae2 Compare February 18, 2026 12:09

FrederikBolding temporarily deployed to pr-comment February 18, 2026 12:10 — with GitHub Actions Inactive

FrederikBolding enabled auto-merge February 18, 2026 12:10

FrederikBolding temporarily deployed to pr-comment February 18, 2026 12:37 — with GitHub Actions Inactive

FrederikBolding added this pull request to the merge queue Feb 18, 2026

Merged via the queue into main with commit a741bb1 Feb 18, 2026
177 checks passed

FrederikBolding deleted the fb/reject-approvals-only-if-subject-has-caip25 branch February 18, 2026 13:14

github-actions bot locked and limited conversation to collaborators Feb 18, 2026

metamaskbot added the release-13.20.0 Issue or pull request that will be included in release 13.20.0 label Feb 18, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: Only reject approvals if subject has `endowment:caip25` permission revoked#40139

fix: Only reject approvals if subject has `endowment:caip25` permission revoked#40139
FrederikBolding merged 3 commits intomainfrom
fb/reject-approvals-only-if-subject-has-caip25

FrederikBolding commented Feb 16, 2026 •

edited by cursor bot

Loading

Uh oh!

metamaskbotv2 bot commented Feb 16, 2026 •

edited

Loading

Uh oh!

FrederikBolding Feb 16, 2026

Uh oh!

metamaskbotv2 bot commented Feb 16, 2026

📄 Localhost MetaMask Test Dapp

Summary

Uh oh!

adonesky1 left a comment

Uh oh!

Uh oh!

metamaskbotv2 bot commented Feb 18, 2026

📄 Localhost MetaMask Test Dapp

Summary

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

Conversation

FrederikBolding commented Feb 16, 2026 • edited by cursor bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Description

Changelog

Related issues

Manual testing steps

Uh oh!

metamaskbotv2 bot commented Feb 16, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

✨ Files requiring CODEOWNER review ✨

Uh oh!

FrederikBolding Feb 16, 2026

Choose a reason for hiding this comment

Uh oh!

metamaskbotv2 bot commented Feb 16, 2026

📄 Localhost MetaMask Test Dapp

Summary

Uh oh!

adonesky1 left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

metamaskbotv2 bot commented Feb 18, 2026

📄 Localhost MetaMask Test Dapp

Summary

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

FrederikBolding commented Feb 16, 2026 •

edited by cursor bot

Loading

metamaskbotv2 bot commented Feb 16, 2026 •

edited

Loading