feat(STX-583): move STX allowed RPC hosts config to flags

[rarquevaux]

Description

Move to LD flag for allowed RPC host for STX.

• Keep the current ones as hardcoded defaults
• Allow for more generic public hosts like mainnet.base.org and rpc.linea.build to be added to mechanically increase smart-transaction availability for users.
• True custom RPC providers remain excluded

Changelog

CHANGELOG entry: null

Related issues

Fixes:

Manual testing steps

Feature: my feature name

  Scenario: user [verb for user action]
    Given [describe expected initial app state]

    When user [verb for user action]
    Then [describe expected outcome]

Screenshots/Recordings

Before

After

Pre-merge author checklist

• I've followed MetaMask Contributor Docs and MetaMask Mobile Coding Standards.
• I've completed the PR template to the best of my ability
• I've included tests if applicable
• I've documented my code using JSDoc format if applicable
• I've applied the right labels on the PR (see labeling guidelines). Not required for external contributors.

Performance checks (if applicable)

• I've tested on Android
  • Ideally on a mid-range device; emulator is acceptable
• I've tested with a power user scenario
  • Use these power-user SRPs to import wallets with many accounts and tokens
• I've instrumented key operations with Sentry traces for production performance metrics
  • See trace() for usage and addToken for an example

For performance guidelines and tooling, see the Performance Guide.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.

---

Note

Medium Risk
Production smart-transaction eligibility now depends on a remotely updatable RPC host list; misconfiguration could enable or disable STX for large user segments on specific networks.

Overview
Smart transactions allowed RPC hosts move from hardcoded Infura/Binance suffix checks to the remote flag smartTransactionsAllowedRpcHosts, with client defaults .infura.io and .binance.org when the flag is missing or invalid.

A new selector resolves the host list and selectSmartTransactionsEnabled passes it into getIsAllowedRpcUrlForSmartTransactions, which now takes an explicit allowlist: entries starting with . match host suffixes; other entries require an exact hostname match (so related subdomains like developer-access hosts are not implied). Non-production builds still allow any RPC URL.

The change is wired into the feature-flag registry, CI known-flag constants, and unit tests for the selector and RPC helper.

^{Reviewed by Cursor Bugbot for commit eee03bb. Bugbot is set up for automated code reviews on this repo. Configure here.}

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit abe1250. Configure here.}

[weitingsun]

mobile-platform codeowner file .github/scripts/known-feature-flag-constants.ts LGTM

[github-actions]

🔍 Smart E2E Test Selection

• Selected E2E tags: SmokeSwap, SmokeConfirmations
• Selected Performance tags: None (no tests recommended)
• Risk Level: medium
• AI Confidence: 85%

click to see 🤖 AI reasoning details

E2E Test Selection:
The changes make the Smart Transactions (STX) RPC host allowlist dynamically configurable via remote feature flags instead of hardcoded values. Key impacts:

1. getIsAllowedRpcUrlForSmartTransactions now takes a dynamic allowedHosts array - this is the core function that gates whether STX is enabled for a given RPC URL.

2. selectSmartTransactionsEnabled now incorporates selectAllowedSmartTransactionsRpcHosts from the new feature flag selector - this selector is used across swap, bridge, and confirmation flows.

3. Feature flag registry updated with smartTransactionsAllowedRpcHosts - E2E tests will now mock this flag with production defaults ['.infura.io', '.binance.org'], preserving existing behavior.

4. SmokeSwap is directly impacted: gasless-swap.spec.ts, swap-action-smoke.spec.ts, and bridge-action-smoke.spec.ts all use setupSmartTransactionsMocks which relies on STX being enabled. The new feature flag path must work correctly for these tests to pass.

5. SmokeConfirmations is impacted: advanced-details-row.tsx uses selectSmartTransactionsEnabled, and gas-fee-tokens-eip-7702 tests explicitly call .withDisabledSmartTransactions(). The STX enablement logic change could affect confirmation UI behavior.

The default behavior is preserved (same hosts as before), so risk is medium rather than high. The feature flag registry update ensures E2E tests get production-accurate defaults. No other areas (accounts, identity, network, browser, snaps) are affected by this change.

Performance Test Selection:
The changes are to the Smart Transactions RPC host allowlist logic and feature flag configuration. While this affects the STX enablement selector, it does not introduce new rendering, data loading, or UI performance concerns. The logic change is a simple selector computation with no performance-sensitive operations (no new API calls, no list rendering changes, no animation changes). Performance tests are not warranted.

View GitHub Actions results