chore(runway): cherry-pick chore: bump @metamask/tron-wallet-snap to 1.25.6

[runway-github]

• chore: bump @metamask/tron-wallet-snap to 1.25.6 (chore: bump @metamask/tron-wallet-snap to 1.25.6 #30200)

Description

This PR bumps @metamask/tron-wallet-snap from ^1.25.3 to ^1.25.6.

The main purpose of this update is to pull in the latest Tron snap
validation fixes, in particular a mechanism to refresh stale or invalid
expiration, ref_block_bytes and ref_block_hash before signing in
both send/broadcast paths.

Preview package:

• @metamask-previews/tron-wallet-snap@1.25.3-preview-995ddc5

Release:

• @metamask-previews/tron-wallet-snap@^1.25.6

Upstream PR:

• test: cover transaction metadata refresh before signing snap-tron-wallet#305

Changelog

CHANGELOG entry: bump the @metamask/tron-wallet-snap to ^1.25.6

Related issues

n/a

Manual testing steps

Feature: my feature name

  Scenario: user [verb for user action]
    Given [describe expected initial app state]

    When user [verb for user action]
    Then [describe expected outcome]

Screenshots/Recordings

Before

After

Pre-merge author checklist

• I've followed MetaMask Contributor
  Docs and MetaMask Mobile
  Coding
  Standards.
• I've completed the PR template to the best of my ability
• I've included tests if applicable
• I've documented my code using JSDoc format
  if applicable
• I've applied the right labels on the PR (see labeling
  guidelines).
  Not required for external contributors.

Performance checks (if applicable)

• I've tested on Android
  • Ideally on a mid-range device; emulator is acceptable
• I've tested with a power user scenario
• Use these power-user
  SRPs
  to import wallets with many accounts and tokens
• I've instrumented key operations with Sentry traces for production
  performance metrics
• See trace() for usage and
  addToken
  for an example

For performance guidelines and tooling, see the Performance
Guide.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the
  app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described
  in the ticket it closes and includes the necessary testing evidence such
  as recordings and or screenshots.

---

Note

Medium Risk
Touches Tron signing and broadcast behavior via the wallet snap; scope
is limited to a patch dependency bump with no local code edits, but
failed or incorrect ref-block handling could still affect Tron sends.

Overview
Bumps @metamask/tron-wallet-snap from ^1.25.3 to ^1.25.6 in
package.json and yarn.lock, with an Unreleased changelog entry.
There are no application source changes in this repo—the mobile app
picks up upstream snap behavior from the new package version.

Per the PR intent, 1.25.6 brings Tron transaction validation
fixes, notably refreshing stale or invalid expiration,
ref_block_bytes, and ref_block_hash before signing on send and
broadcast paths.

^{Reviewed by Cursor Bugbot for commit
b958d77. Bugbot is set up for automated
code reviews on this repo. Configure
here.}

---

Co-authored-by: gabrieledm gabriele.delmonte@proton.me
Co-authored-by: Gabriele Del Monte 37625739+gabrieledm@users.noreply.github.com 2bb066b

[github-actions]

🔍 Smart E2E Test Selection

⏭️ Smart E2E selection skipped - PR targets a release or stable branch (release/* or stable)

All E2E tests pre-selected.

View GitHub Actions results

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​@​metamask/​tron-wallet-snap@​1.25.3 ⏵ 1.25.8			+1	+1

View full report

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.