fix(ramps-controller): expose circuit breaker error key#8596
Merged
saustrie-consensys merged 7 commits intomainfrom Apr 30, 2026
Merged
Conversation
saustrie-consensys
had a problem deploying
to
default-branch
GitHub Actions
Failure
saustrie-consensys
changed the title
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
10 tasks
Contributor
Author
|
Follow-up pushed in The main change in thinking here is that the circuit breaker is an internal service-policy signal, not provider copy. This follow-up tightens that contract in two ways:
That keeps the mobile side decoupled from |
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit cbe9a86. Configure here.
Contributor
|
Can you please publish a preview of this PR and use that to create a mobile PR to see if anything breaks? |
Contributor
Author
|
@metamaskbot publish-previews |
Contributor
|
Preview builds have been published. Learn how to use preview builds in other projects. Expand for full list of packages and versions. |
Contributor
Author
|
Published the preview and wired it into a dedicated draft mobile validation PR. Preview build used:
Mobile validation PR: A useful thing this surfaced immediately: switching mobile to the published preview introduced a second Local validation on that branch:
I kept this separate from the main mobile companion PR on purpose so the preview-consumer plumbing stays isolated and easy to drop once we’re done validating the packaged artifact. |
amitabh94
approved these changes
Apr 30, 2026
amitabh94
approved these changes
Apr 30, 2026
saustrie-consensys
deleted the
saustrie-consensys/TRAM-3475-circuit-breaker-open-error
branch
Merged
Merged
pull Bot
pushed a commit
to dmrazzy/core
that referenced
this pull request
May 5, 2026
## Summary This release PR publishes `@metamask/ramps-controller@13.3.0`, which includes the circuit-breaker error-key fix from [MetaMask#8596](MetaMask#8596) and the other unreleased ramps-controller changes accumulated since `13.2.0`. ## Why this is separate This is the successor to [MetaMask#8692](MetaMask#8692). That PR was originally cut as `Release/958.0.0`, but [MetaMask#8691](MetaMask#8691) merged first and consumed `958.0.0`, so this re-cuts the same content as `Release/959.0.0` from current `main`. ## What changed - bump the monorepo release version to `959.0.0` - publish `@metamask/ramps-controller@13.3.0` - move the current ramps-controller unreleased entries into the `13.3.0` changelog section - update `@metamask/transaction-pay-controller` to depend on `@metamask/ramps-controller@^13.3.0` ## Why the transaction-pay-controller range update is included `transaction-pay-controller` is the in-repo consumer of `@metamask/ramps-controller`. Once ramps-controller is versioned to `13.3.0`, the monorepo dependency constraints require the internal dependency range to move from `^13.2.0` to `^13.3.0` as well. This keeps the repo internally consistent without broadening the published package scope. ## Validation - `yarn install` (regenerates `yarn.lock`) - `yarn constraints` - `yarn lint:dependencies` - `yarn lint:misc:check` - `yarn workspace @metamask/ramps-controller changelog:validate` - `yarn workspace @metamask/transaction-pay-controller changelog:validate` - `yarn workspace @metamask/ramps-controller build` 🤖 Generated with [Claude Code](https://claude.com/claude-code) <!-- CURSOR_SUMMARY --> --- > [!NOTE] > **Low Risk** > Low risk release bookkeeping: version bumps, changelog cut, and an internal dependency range update with no functional code changes in this diff. > > **Overview** > Bumps the monorepo version to `959.0.0` and publishes `@metamask/ramps-controller@13.3.0` by cutting the existing *Unreleased* changelog entries into a new `13.3.0` section. > > Updates `@metamask/transaction-pay-controller` to depend on `@metamask/ramps-controller@^13.3.0`, with corresponding `yarn.lock` changes to keep workspace constraints consistent. > > <sup>Reviewed by [Cursor Bugbot](https://cursor.com/bugbot) for commit 90e73f1. Bugbot is set up for automated code reviews on this repo. Configure [here](https://www.cursor.com/dashboard/bugbot).</sup> <!-- /CURSOR_SUMMARY --> --------- Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
pull Bot
pushed a commit
to dmrazzy/core
that referenced
this pull request
May 5, 2026
> [!NOTE] > This is a repeat of MetaMask#8698 because the release workflow was not triggered correctly. ## Summary This release PR publishes `@metamask/ramps-controller@13.3.0`, which includes the circuit-breaker error-key fix from [MetaMask#8596](MetaMask#8596) and the other unreleased ramps-controller changes accumulated since `13.2.0`. ## Why this is separate This is the successor to [MetaMask#8692](MetaMask#8692). That PR was originally cut as `Release/958.0.0`, but [MetaMask#8691](MetaMask#8691) merged first and consumed `958.0.0`, so this re-cuts the same content as `Release/959.0.0` from current `main`. ## What changed - bump the monorepo release version to `959.0.0` - publish `@metamask/ramps-controller@13.3.0` - move the current ramps-controller unreleased entries into the `13.3.0` changelog section - update `@metamask/transaction-pay-controller` to depend on `@metamask/ramps-controller@^13.3.0` ## Why the transaction-pay-controller range update is included `transaction-pay-controller` is the in-repo consumer of `@metamask/ramps-controller`. Once ramps-controller is versioned to `13.3.0`, the monorepo dependency constraints require the internal dependency range to move from `^13.2.0` to `^13.3.0` as well. This keeps the repo internally consistent without broadening the published package scope. ## Validation - `yarn install` (regenerates `yarn.lock`) - `yarn constraints` - `yarn lint:dependencies` - `yarn lint:misc:check` - `yarn workspace @metamask/ramps-controller changelog:validate` - `yarn workspace @metamask/transaction-pay-controller changelog:validate` - `yarn workspace @metamask/ramps-controller build` 🤖 Generated with [Claude Code](https://claude.com/claude-code) <!-- CURSOR_SUMMARY --> --- > [!NOTE] > **Low Risk** > Low risk release bookkeeping: version/changelog updates and an internal dependency range bump, with no functional code changes in this diff. > > **Overview** > Bumps the monorepo release version to `959.0.0` and publishes `@metamask/ramps-controller@13.3.0` by moving the previously *Unreleased* ramps entries into a new `13.3.0` changelog section and updating compare links. > > Updates the in-repo consumer `@metamask/transaction-pay-controller` to depend on `@metamask/ramps-controller@^13.3.0`, with corresponding `yarn.lock` adjustments. > > <sup>Reviewed by [Cursor Bugbot](https://cursor.com/bugbot) for commit 45b6091. Bugbot is set up for automated code reviews on this repo. Configure [here](https://www.cursor.com/dashboard/bugbot).</sup> <!-- /CURSOR_SUMMARY --> Co-authored-by: saustrie-consensys <shane.austrie@consensys.net> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
2 tasks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Explanation
When repeated upstream failures trip the service-policy circuit breaker,
RampsControllerreceives aBrokenCircuitErrorfrom@metamask/controller-utils. Cockatiel's default message for that condition isExecution prevented because the circuit breaker is open, which is useful for logs/debugging but not something clients should localize by string-matching.This PR keeps
coreout of copy ownership by:RAMPS_ERROR_CODES.CIRCUIT_BREAKER_OPENerrorKeymetadata to classified request/resource failureserrorKeyso clients can localize themFollow-up after review tightened the contract in two ways:
error instanceof BrokenCircuitErrorfirst, with the previous message match retained only as a compatibility fallback for wrapped/plain errors that have lost the prototypeerrorKeyacross the broader set of policy-backed Transak wrappers, so native-flow callers receive consistent metadata instead of a mix of keyed and raw infrastructure errorsThis keeps the boundary clean:
coredecides what kind of failure this is, and clients decide which localized fallback to show. Coverage now includes the sharedexecuteRequestpath, request/resource state, selector behavior, and the Transak methods used by native flows that previously rethrew raw breaker errors.The companion mobile change now uses that boundary to show a dedicated circuit-breaker fallback instead of the previous generic quote error. The copy says
about 30 minutesbecause the service-policy cooldown defaults to 30 minutes, but the current ramps error contract does not carry a live remaining-duration value.Demo Videos
These two recordings were captured by wiring the local
corecheckout into the local mobile checkout and hard-throwing the sameBrokenCircuitErrorinside theRampsController.getQuotesfetcher on both branches.GitHub sanitizes
iframemarkup in PR bodies, so the demos are embedded with HTML<video>tags backed by GitHub-hosted MP4s instead.Before (
main)before-buy-broken-circuit-main.mp4
After (this core PR + mobile PR branch)
after-buy-broken-circuit-pr-branches-rerecord.mp4
References
Testing
yarn workspace @metamask/ramps-controller testyarn workspace @metamask/ramps-controller messenger-action-types:checkyarn eslint packages/ramps-controller/src/RampsController.ts packages/ramps-controller/src/RampsController.test.ts packages/ramps-controller/src/RequestCache.ts packages/ramps-controller/src/selectors.ts packages/ramps-controller/src/selectors.test.ts packages/ramps-controller/src/index.ts packages/ramps-controller/src/rampsErrorCodes.tsyarn tsc --noEmit -p packages/ramps-controller/tsconfig.json(still fails in this checkout due existing referenced-build / monorepo type issues, includingTS6305build-artifact errors and unchanged pre-existingTransakService.tstype errors)yarn workspace @metamask/ramps-controller run jest --no-coverage src/RampsController.test.tsyarn eslint packages/ramps-controller/src/RampsController.ts packages/ramps-controller/src/RampsController.test.tsChecklist
Note
Medium Risk
Touches shared error-handling and state-shaping paths (requests/resources/selectors) and changes what gets thrown/returned on failures, which could affect downstream consumers that assume previous error shapes.
Overview
RampsControllernow classifies circuit-breaker failures and propagates a stableerrorKey(RAMPS_ERROR_CODES.CIRCUIT_BREAKER_OPEN) alongside the original error message, so clients can localize fallback copy without string-matching Cockatiel text.This threads
errorKeythrough cached request state (createErrorState/RequestState), resource state (ResourceState+ reset/clear paths), and request selectors (optionally returningerrorKey), and normalizes/rethrows errors fromexecuteRequestand multiple Transak helper methods to include the sameerrorKeyeven when the thrown value isn’t anError(string/object). Tests and changelog are updated accordingly, and an eslint suppression entry is removed forRampsController.ts.Reviewed by Cursor Bugbot for commit 7cef09c. Bugbot is set up for automated code reviews on this repo. Configure here.