Bump @metamask/snaps-controllers from 13.1.0 to 15.0.0

[dependabot]

Bumps @metamask/snaps-controllers from 13.1.0 to 15.0.0.

Commits

• 93f69e5 release: 126.0.0 (#3662)
• 604e87b chore!: Make interface actions synchronous (#3361)
• 8b4369d perf: Reduce JSON validation during state updates (#3660)
• 0c693f0 perf: Simplify JSON-RPC failure validation (#3661)
• 56e8b0a chore: Bump @​lavamoat/webpack from 1.2.0 to 1.5.0 (#3659)
• f3e64c7 feat!: Remove useCaip25Permission feature flag and enable behaviour by defa...
• 8571a4d perf: Move request inspection outside of the executor (#3356)
• 222928d chore: Bump @​metamask/eth-block-tracker from 12.0.1 to 12.1.0 (#3654)
• 36f2212 chore: Bump @​lavamoat/allow-scripts from 3.3.5 to 3.4.0 (#3651)
• a566abd chore: Fix broken coverage script (#3657)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Note

Upgrade @metamask/snaps-controllers to 15.0.0 with cascading updates to related MetaMask packages and peers.

• Dependencies:
  • Upgrade @metamask/snaps-controllers to ^15.0.0 in package.json.
  • Cascade updates in yarn.lock:
    • Core libs: @metamask/base-controller (^8.4.0), @metamask/controller-utils (^11.11.0), immer (^9.0.21).
    • JSON-RPC stack: @metamask/json-rpc-engine (^10.1.0), @metamask/rpc-errors (^7.0.3), @metamask/providers (^22.1.1).
    • Snaps ecosystem: @metamask/phishing-controller (^13.1.0), @metamask/snaps-rpc-methods (^13.5.2), @metamask/snaps-sdk (^10.0.0), @metamask/snaps-utils (^11.6.0).
    • Utilities: @metamask/utils (^11.8.1), @metamask/slip44 (^4.3.0), ses (^1.14.0) and related @endo/* packages.

^{Written by Cursor Bugbot for commit f2ae42d. This will update automatically on new commits. Configure here.}

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​metamask/​messenger@​0.3.0
	@​metamask/​base-controller@​8.4.0
	@​metamask/​phishing-controller@​12.6.0 ⏵ 13.1.0	+1		+1
	@​types/​lodash@​4.17.20
	@​endo/​cache-map@​1.1.0
	@​metamask/​rpc-errors@​7.0.3
	@​endo/​immutable-arraybuffer@​1.1.2
	@​endo/​env-options@​1.1.11
	@​metamask/​slip44@​4.3.0
	ses@​1.14.0
	@​metamask/​json-rpc-engine@​10.0.3 ⏵ 10.1.0				+5
	@​metamask/​providers@​22.1.1
	@​metamask/​snaps-sdk@​10.0.0
	@​metamask/​snaps-utils@​11.6.0
	@​metamask/​snaps-controllers@​13.1.0 ⏵ 15.0.0	+4		+27	+3	+50
	@​metamask/​snaps-rpc-methods@​13.1.0 ⏵ 13.5.2	+2		+27	+3	+50

View full report

[dependabot]

Superseded by #1362.