feat: add Ethereum preimage signing for Merkle claims

[broody]

Overview

This PR adds support for signing Merkle claim messages using an Ethereum preimage directly, as an alternative to using external wallet connectors. This enables users to claim tokens using a preimage when external wallets are not available or preferred.

Changes

New Files

• packages/keychain/src/utils/eth-signing.ts: New utility module providing Ethereum message signing functions using viem's privateKeyToAccount
  • signMessageWithPrivateKey: Signs messages with a private key
  • getAddressFromPrivateKey: Derives Ethereum address from private key

Modified Components

claim.tsx

• Extended to support 'preimage' wallet type with a generic wallet representation
• Consumes ethereumPreimage from purchase context
• Displays appropriate wallet info for preimage mode

purchase.tsx

• Added ethereumPreimage state management to the purchase context
• Added setEthereumPreimage setter function
• Exposes state and setter through context API

merkle-claim.ts

• Enhanced useMerkleClaim hook to:
  • Accept ethereumPreimage parameter
  • Support 'preimage' type alongside external wallet types
  • Use preimage signing when available, falling back to external wallet signing
• Updated dependencies array to include ethereumPreimage

index.ts

• Exported new signing utilities from eth-signing module

Technical Details

Signing Flow

1. When ethereumPreimage is provided, the hook uses direct private key signing
2. When ethereumPreimage is not provided, it falls back to external wallet signature requests
3. Signature format remains consistent across both methods (EIP-191 compliant)

Security Considerations

• Private key handling is isolated to the signing utility
• Keys are passed through secure context state management
• Signature verification happens on-chain

Testing

• ✅ Tested preimage signing flow for Merkle claims
• ✅ Verified fallback to external wallet signing when preimage is not provided
• ✅ Confirmed proper signature format and parsing
• ✅ All linting and formatting checks pass

---

Note

Adds optional Ethereum preimage-based signing to the starterpack claim flow, wiring from examples UI through controller to keychain with new signing utilities.

• Claim flow enhancements:
  • controller.openStarterPack now accepts optional preimage and forwards it to keychain navigation (packages/controller/src/controller.ts, packages/keychain/src/utils/connection/index.ts, packages/controller/src/types.ts).
  • Auto-redirect claim when preimage query param is present on starterpack page (packages/keychain/src/components/purchasenew/starterpack/starterpack.tsx).
  • Example UI allows entering optional preimage and passes it through (examples/next/src/components/Starterpack.tsx).
• Signing & wallet handling:
  • useMerkleClaim supports type: "preimage" and signs EVM messages with the provided preimage, falling back to external wallets; blocks preimage for Starknet claims (packages/keychain/src/hooks/merkle-claim.ts).
  • Adds "preimage" pseudo-wallet to getWallet for display logic (packages/keychain/src/components/purchasenew/wallet/config.ts).
  • New utilities for Ethereum signing and address derivation: signMessageWithPrivateKey, getAddressFromPrivateKey (packages/keychain/src/utils/eth-signing.ts, exported via packages/keychain/src/utils/index.ts).
• Claim UI updates:
  • Claim page derives address from preimage, handles errors, adjusts header/empty states, and hides wallet chip for preimage; updates footer actions (packages/keychain/src/components/purchasenew/claim/claim.tsx).
  • Pending screen button label changed to Claiming in claim flow (packages/keychain/src/components/purchasenew/pending.tsx).

^{Written by Cursor Bugbot for commit 9d57c28. This will update automatically on new commits. Configure here.}

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Updated (UTC)
controller-example-next	Ready	Preview	Nov 10, 2025 11:24pm
controller-example-next-compat	Ready	Preview	Nov 10, 2025 11:24pm
keychain	Ready	Preview	Nov 10, 2025 11:24pm
keychain-storybook	Ready	Preview	Nov 10, 2025 11:24pm

[cursor]

Bug: Accidental Config Removal Detected

The preset: "ponziland" configuration was removed from the controller connector setup. This change is unrelated to the PR's stated purpose of adding Ethereum preimage signing and appears to be accidentally committed.

examples/next/src/components/providers/StarknetProvider.tsx#L198-L208

controller/examples/next/src/components/providers/StarknetProvider.tsx

Lines 198 to 208 in a172114

	signupOptions: [
	"google",
	"webauthn",
	"discord",
	"walletconnect",
	"metamask",
	"rabby",
	"password",
	],
	slot: "arcade-pistols",
	namespace: "pistols",

 

---

[cursor]

Bug: Unintended Configuration Change

The removal of preset: "ponziland" from the ControllerConnector configuration appears unrelated to the PR's stated purpose of adding Ethereum preimage signing for Merkle claims. This change is not mentioned in the PR description and seems to be accidentally included in this commit.

examples/next/src/components/providers/StarknetProvider.tsx#L208-L209

controller/examples/next/src/components/providers/StarknetProvider.tsx

Lines 208 to 209 in c23982f

	namespace: "pistols",
	// By default, preset policies take precedence over manually provided policies

 

---

[codecov]

Codecov Report

❌ Patch coverage is 6.06061% with 124 lines in your changes missing coverage. Please review.
✅ Project coverage is 21.51%. Comparing base (69988e7) to head (ff777eb).
⚠️ Report is 57 commits behind head on main.

Files with missing lines	Patch %	Lines
...eychain/src/components/purchasenew/claim/claim.tsx	0.00%	51 Missing ⚠️
...components/purchasenew/starterpack/starterpack.tsx	0.00%	22 Missing ⚠️
packages/keychain/src/utils/eth-signing.ts	28.00%	18 Missing ⚠️
packages/keychain/src/hooks/merkle-claim.ts	0.00%	17 Missing ⚠️
...ychain/src/components/purchasenew/wallet/config.ts	0.00%	10 Missing ⚠️
packages/keychain/src/utils/connection/index.ts	0.00%	6 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2185      +/-   ##
==========================================
+ Coverage   20.19%   21.51%   +1.31%     
==========================================
  Files         259      273      +14     
  Lines       24230    27146    +2916     
  Branches      668      842     +174     
==========================================
+ Hits         4894     5840     +946     
- Misses      19328    21295    +1967     
- Partials        8       11       +3     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[cursor]

Bug: Preset Configuration: Unintended Change Impact

The removal of preset: "ponziland" appears to be an unintended change unrelated to the Ethereum preimage signing feature. This configuration was likely used for testing and its removal could affect the controller's preset behavior in the example application.

examples/next/src/components/providers/StarknetProvider.tsx#L207-L208

controller/examples/next/src/components/providers/StarknetProvider.tsx

Lines 207 to 208 in 141828d

	slot: "arcade-pistols",
	namespace: "pistols",

 

---

[cursor]

Bug: Claim Button Allows Actions Despite Errors

The claim button is not disabled when there's an error state, allowing users to attempt claiming even when address derivation from the preimage failed. The button only checks isClaimed and isCheckingClaimed but ignores the error state, which can be set when getAddressFromPrivateKey throws an exception. This allows invalid claim attempts to proceed, causing downstream failures instead of preventing the action upfront.

 

[cursor]

Bug: Sensitive Keys Leaked Through URLs

The Ethereum private key (preimage) is passed as a URL query parameter, exposing it in browser history, server logs, and potentially referrer headers. Private keys should never be transmitted through URLs as this creates a significant security vulnerability where the key could be leaked through various channels.

 

[claude]

Claude finished @broody's task —— View job

---

Analyzing PR changes and updating documentation

Task: Update documentation for Ethereum preimage signing feature

• Analyze PR changes to understand new functionality
• Review existing documentation structure
• Identify documentation files that need updates
• Create or update documentation as needed
• Verify documentation accuracy

Analysis Summary

The PR adds Ethereum preimage signing functionality for Merkle claims. Key changes:

New Feature:

• Added optional preimage parameter to controller.openStarterPack()
• New signing utilities in eth-signing.ts for private key-based message signing
• Enhanced useMerkleClaim hook to support preimage signing alongside external wallets
• Support for EVM message signing using private keys directly (no external wallet required)

Documentation Updates Made:

1. starter-packs.md:

   • Updated openStarterPack API signature to include optional preimage parameter
   • Added example usage for preimage signing
   • Enhanced Merkle Drop Claims section to explain both signing methods (external wallet vs preimage)
   • Updated claim flow documentation to include preimage signing option

2. configuration.md:

   • Updated openStarterPack method signature and description
   • Added example for Merkle claims with preimage signing

Documentation Changes Summary

The documentation now accurately reflects the new Ethereum preimage signing functionality, providing clear guidance on:

• When and how to use preimage signing for Merkle claims
• API changes to openStarterPack method
• Alternative signing flows for EVM-based claims
• Security and usage considerations

All user-facing API changes have been documented, maintaining consistency with the existing documentation style.

---