Skip to content

Add contributing guide #804

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
leofelix077 wants to merge 11 commits into
base: main
Choose a base branch
from
+532 −59
Open

Add contributing guide #804

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
ac136c9
add contributing guide with LLM setup section
leofelix077 Apr 8, 2026
b43dc82
update contributing guide for linux
leofelix077 Apr 8, 2026
3457ba0
update mention of claude to llm agnostic
leofelix077 Apr 8, 2026
2c68cef
update mention of claude to llm agnostic
leofelix077 Apr 8, 2026
4ba00de
Add contributing guide with LLM quick start instructions
leofelix077 Apr 8, 2026
871b602
Update contributing.md file information
leofelix077 Apr 8, 2026
cf872ed
fix adjustments from copilot review
leofelix077 Apr 8, 2026
36af4b3
Merge branch 'main' into lf-add-contributing-guide
leofelix077 Apr 8, 2026
b9bec18
fix adjustments from copilot review
leofelix077 Apr 8, 2026
c4896e9
Rename LLM-QUICK-START.md to quick-start-guide.md
leofelix077 Apr 9, 2026
49ab15f
adjust contributing guide
leofelix077 Apr 10, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
300 changes: 300 additions & 0 deletions CONTRIBUTING.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,300 @@
# Contributing to Freighter Mobile

Non-custodial Stellar wallet for iOS and Android. Built with React Native,
Zustand, and React Navigation.

For the Stellar organization's general contribution guidelines, see the
[Stellar Contribution Guide](https://github.com/stellar/.github/blob/master/CONTRIBUTING.md).

## Prerequisites

| Tool | Version | Install |
| -------------- | ------------- | ----------------------------------------------------------------- |
| Node.js | >= 20 | [nodejs.org](https://nodejs.org) or `nvm install 20` |
| Yarn | 4.10.0 | `corepack enable && corepack prepare yarn@4.10.0 --activate` |
| Ruby | >= 2.6.10 | [rbenv](https://github.com/rbenv/rbenv) or [rvm](https://rvm.io/) |
| Watchman | Latest | `brew install watchman` |
| JDK | 17 | [Adoptium](https://adoptium.net/) or Android Studio |
| Xcode | Latest stable | Mac App Store (iOS only) |
| Android Studio | Latest stable | [developer.android.com](https://developer.android.com/studio) |
| Maestro CLI | Latest | `brew install mobile-dev-inc/tap/maestro` (e2e tests only) |

**Android SDK requirements** (install via Android Studio SDK Manager):

- SDK Platform API 36, Build-Tools 36.0.0, NDK 28.2.13676358

**Shell environment** — add to `~/.zshrc` or `~/.bashrc`:

```bash
# macOS
export ANDROID_HOME=$HOME/Library/Android/sdk
# Linux
# export ANDROID_HOME=$HOME/Android/Sdk
# Windows (Git Bash / WSL)
# export ANDROID_HOME=$HOME/AppData/Local/Android/Sdk
export PATH=$PATH:$ANDROID_HOME/emulator:$ANDROID_HOME/platform-tools
```
Comment on lines +26 to +36
Copy link

Copilot AI Apr 8, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The suggested ANDROID_HOME value uses the macOS default ($HOME/Library/Android/sdk), but this path is different on Linux/Windows. Since the guide is otherwise cross-platform, consider documenting OS-specific defaults (or referencing ANDROID_HOME from Android Studio’s SDK Manager) to avoid misconfiguration on non-macOS machines.

Copilot uses AI. Check for mistakes.

For full platform setup, see the
[React Native Environment Setup](https://reactnative.dev/docs/set-up-your-environment)
guide.

## Getting Started

### Quick Setup with an LLM

If you use an LLM-powered coding assistant, you can automate the setup. The repo
includes a quick start guide ([`quick-start-guide.md`](quick-start-guide.md))
that checks your environment, installs missing tools, configures `.env`, and
verifies the build.

Point your coding assistant at `quick-start-guide.md` and ask it to follow the
steps.

For detailed best practices and coding guidelines when working with an LLM, see
[`docs/skills/freighter-mobile-best-practices`](docs/skills/freighter-mobile-best-practices/).

The skill will:

1. Check all prerequisites (Node, Yarn, Ruby, JDK, Xcode, Android SDK, etc.)
2. Install what it can automatically (with your confirmation)
3. Produce a list of manual steps for anything it couldn't install
4. Set up `.env` with public backend endpoints and guide you through the
remaining variables
5. Run verification to confirm the build works

If you don't use an LLM assistant, follow the manual setup below.

### Manual Setup

```bash
git clone https://github.com/stellar/freighter-mobile.git
cd freighter-mobile
bundle install # Ruby deps (Fastlane, CocoaPods)
yarn install # Node deps + auto-runs postinstall (Husky, polyfills, pods)
cp .env.example .env # Then fill in values (see below)
```

### Environment Variables

Copy `.env.example` to `.env` and fill in the values. The `.env` file must
**never** be committed.

**Required — app won't build or function without these:**

| Variable | How to set up |
| ----------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
| `FREIGHTER_BACKEND_V1_DEV_URL` | `https://freighter-backend-dev.stellar.org/api/v1`. If unavailable, use `-stg` or `-prd`. Or run your own from [stellar/freighter-backend](https://github.com/stellar/freighter-backend) |
| `FREIGHTER_BACKEND_V2_DEV_URL` | `https://freighter-backend-v2-dev.stellar.org/api/v1`. If unavailable, use `-stg` or prod (`freighter-backend-v2.stellar.org`). Or run your own from [stellar/freighter-backend-v2](https://github.com/stellar/freighter-backend-v2) |
| `WALLET_KIT_PROJECT_ID_DEV` | Create a free project at [dashboard.reown.com](https://dashboard.reown.com) — sign up, create a new project (type: Wallet), copy the Project ID |
| `WALLET_KIT_MT_NAME_DEV` | Your project name from the Reown dashboard |
| `WALLET_KIT_MT_DESCRIPTION_DEV` | Your project description |
| `WALLET_KIT_MT_URL_DEV` | Your project URL |
| `WALLET_KIT_MT_ICON_DEV` | Your project icon URL |
| `WALLET_KIT_MT_REDIRECT_NATIVE_DEV` | Deep link scheme matching your dev bundle ID |
| `ANDROID_DEBUG_KEYSTORE_PASSWORD` | Android Studio's default: `android` |
| `ANDROID_DEBUG_KEYSTORE_ALIAS` | Android Studio's default: `androiddebugkey` |
| `ANDROID_DEV_KEYSTORE_PASSWORD` | Generate your own keystore: `mkdir -p android/keystores && keytool -genkey -v -keystore android/keystores/dev-release.keystore -alias dev -keyalg RSA -keysize 2048 -validity 10000`, then use the password you set |
| `ANDROID_DEV_KEYSTORE_ALIAS` | The alias you chose when generating the keystore (e.g., `dev`) |

**Optional — features degrade gracefully without these:**

| Variable | Notes |
| -------------------------------------------- | ------------------------------------------------------------------------------------------ |
| `AMPLITUDE_API_KEY` | Auto-disabled in `__DEV__` mode — not needed for local dev |
| `SENTRY_DSN` | Leave empty — errors log to console instead |
| `FREIGHTER_BACKEND_*_STG_URL` / `*_PROD_URL` | Only needed for staging/prod builds. Same public endpoints with `-stg` or `-prd` subdomain |
| `WALLET_KIT_*_PROD` (6 vars) | Only needed for prod builds — same setup as dev vars above |
| `ANDROID_PROD_KEYSTORE_*` | Only needed for release builds — generate a separate keystore |
| `MP_COLLECTIONS_ADDRESSES` | Comma-separated list — leave empty if not working on collectibles |

**E2E testing only:**

| Variable | Notes |
| --------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| `IS_E2E_TEST` | Set to `true` when running Maestro |
| `E2E_TEST_RECOVERY_PHRASE` | Generate a new wallet via any Stellar wallet and copy the 12/24-word phrase (used by `CreateWallet`/`ImportWallet` flows) |
| `E2E_TEST_FUNDED_RECOVERY_PHRASE` | Recovery phrase for a **dedicated low-balance mainnet test wallet only**. **Never use a personal wallet or any wallet holding meaningful funds.** Required by `SendClassicTokenMainnet` and `SwapClassicTokenMainnet` flows which execute real transactions on mainnet. Fund the account with a small amount of XLM before running these tests. |

See `.env.example` for the full list with inline comments.

### Run the App

```bash
yarn ios # iOS simulator (dev)
yarn android # Android emulator (dev)
yarn start # Metro bundler only (starts automatically with above)
```

Dev and prod builds use separate bundle IDs (`org.stellar.freighterdev` /
`org.stellar.freighterwallet`) and can coexist on the same device. See
`package.json` for all run commands including device and release variants.

## Key Commands

```bash
yarn test # Jest unit tests
yarn check # All checks (TypeScript + ESLint + Prettier)
yarn fix # Auto-fix lint + format
yarn lint:translations # Check for missing i18n keys
yarn test:e2e:ios <flow> # Maestro e2e (iOS)
yarn test:e2e:android <flow> # Maestro e2e (Android)
```

**Cleaning builds** (escalation order):

```bash
yarn start-c # Clear Metro cache
yarn pod-install # Reinstall CocoaPods
yarn node-c-install # Remove node_modules + reinstall
yarn c-install # Full clean (Gradle + node_modules + reinstall)
yarn r-install # Nuclear: reset env + rebuild everything
```

See `package.json` for the complete list of scripts.

## Repository Structure

```
freighter-mobile/
├── src/
│ ├── components/ # React Native components (screens, templates, primitives)
│ ├── ducks/ # Zustand state stores
│ ├── hooks/ # Custom React hooks
│ ├── helpers/ # Utility functions
│ ├── services/ # Business logic & API calls
│ ├── navigators/ # React Navigation stack/tab definitions
│ ├── providers/ # Context providers
│ ├── config/ # App configuration
│ ├── types/ # TypeScript type definitions
│ └── i18n/ # Translations (i18next)
├── __tests__/ # Jest unit tests (mirrors src/)
├── e2e/ # Maestro e2e tests + docs
├── ios/ / android/ # Native projects
└── scripts/ # Build and setup scripts
```

## Code Conventions

- **Formatting:** Double quotes, 2-space indent, trailing commas, 80-char width,
semicolons. Enforced by Prettier (`.prettierrc.json`).
- **Linting:** Airbnb + TypeScript strict + custom translations plugin. Config
in `eslint.config.mjs`.
- **Absolute imports:** Always from `src/` root — no relative paths. Enforced by
ESLint.
- **Arrow functions:** Required for React components. Enforced by ESLint.
- **Import sorting:** Auto-handled by `@trivago/prettier-plugin-sort-imports`.
- **JSDoc:** Required on all new/modified public functions (see
[PR template](.github/pull_request_template.md)).
- **Translations:** All user-facing strings through `i18next`. Use
`useAppTranslation` hook. The custom ESLint plugin flags missing translations.

### Pre-commit Hooks

Husky runs on every commit:

1. `lint-staged` — ESLint fix + Prettier on staged files
2. `yarn test` — full unit test suite
3. `yarn lint:ts` — TypeScript type check

All must pass before the commit succeeds.

## Testing

**Unit tests:** Jest with `@testing-library/react-native`. Tests in
`__tests__/`, mocks in `__mocks__/`.

**E2E tests:** Maestro flows in `e2e/flows/` — see the [e2e docs](e2e/docs/) for
setup, writing tests, and debugging.

**Before submitting a PR:** `yarn test` + `yarn lint:ts` must pass. Test on both
iOS and Android, including small screens.

## Adding Features

### Adding a new screen

1. Create the screen component in `src/components/screens/`
2. Add the route to `src/config/routes.ts`
3. Register in the appropriate navigator in `src/navigators/`
4. Add translations for all user-facing strings in `src/i18n/`
5. Add tests in `__tests__/`

### Adding a new Zustand store

1. Create the store file in `src/ducks/` (e.g., `src/ducks/myFeature.ts`)
2. Define the store using Zustand's `create` with typed state and actions
3. Export a hook for consuming the store (e.g., `useMyFeatureStore`)
4. Add tests in `__tests__/ducks/`

### Platform-specific code

- Use `Platform.OS` checks for small differences
- Use `.ios.tsx` / `.android.tsx` file extensions for larger divergences
- Test on **both platforms** — especially native module interactions, gestures,
and keyboard behavior

## Running the Backend Locally

The app connects to two separate backend services:

- **V1**
([stellar/freighter-backend](https://github.com/stellar/freighter-backend),
TypeScript) — balances, subscriptions, feature flags, notifications
- **V2**
([stellar/freighter-backend-v2](https://github.com/stellar/freighter-backend-v2),
Go) — collectibles, RPC health, ledger keys, protocols

To run your own:

1. Clone the repo for the backend you need (V1, V2, or both)
2. Follow its README for setup
3. Point `FREIGHTER_BACKEND_V1_DEV_URL` and/or `FREIGHTER_BACKEND_V2_DEV_URL` in
your `.env` at your local instance

## Pull Requests

- Branch from `main` using your initials + description: `lf-feature-name`,
`cg-fix-token-display`
- Commit messages: start with action verb (`Add`, `Fix`, `Update`, `Improve`)
- No mixed concerns — keep refactoring separate from features
- Include before/after screenshots for UI changes
- Follow the full checklist in the
[PR template](.github/pull_request_template.md)

**CI runs on every PR:** unit tests (`test.yml`), iOS e2e (`ios-e2e.yml`),
Android e2e (`android-e2e.yml`). All must pass.

## Security

Freighter handles private keys and signs transactions. When contributing:

- **Never log or expose** private keys, seed phrases, or passwords
- **Use `react-native-keychain`** (iOS Keychain / Android Keystore) for secrets
— never AsyncStorage
- **Validate all external data** — WalletConnect payloads, API responses, deep
links
- **Don't weaken Blockaid** transaction scanning or `jail-monkey` jailbreak
detection
- **Report vulnerabilities** via the
[Stellar Security Policy](https://github.com/stellar/.github/blob/master/SECURITY.md)
— not public issues

See [`docs/auth_flow_diagram.md`](docs/auth_flow_diagram.md) for the full auth
security model.

## Further Reading

| Topic | Location |
| -------------------------- | --------------------------------------------------------------------------------------------- |
| Auth architecture | [`docs/auth_flow_diagram.md`](docs/auth_flow_diagram.md) |
| WalletConnect RPC methods | [`docs/walletconnect-rpc-methods.md`](docs/walletconnect-rpc-methods.md) |
| E2E testing (6 guides) | [`e2e/docs/`](e2e/docs/) |
| Mock dApp for testing | [`mock-dapp/README.md`](mock-dapp/README.md) |
| Release process | [`RELEASE.md`](RELEASE.md) |
| All scripts & commands | `package.json` |
| Best practices (LLM guide) | [`docs/skills/freighter-mobile-best-practices`](docs/skills/freighter-mobile-best-practices/) |

**Questions?** Open a
[GitHub Discussion](https://github.com/stellar/freighter-mobile/discussions) or
join the [Stellar Developer Discord](https://discord.gg/stellardev).
Loading
Loading