In xrpl.js 3.0, we've made significant improvements that result in a 60% reduction in bundle size for browser applications. We've also eliminated the need for polyfills with minimal disruption to existing code. This was achieved by replacing node-specific dependencies with ones that are compatible with browsers.
The two main changes you'll notice are:
- A breaking change to
Walletobject creation, to use a more performant algorithm by default. See here for details. - Replacing
BufferwithUint8Arrayacross the board. This was done since browsers don't supportBuffer. Fortunately, this transition is relatively straightforward, asBufferis a subclass ofUint8Array, meaning in many circumstancesBuffercan be directly replaced byUint8Array. The primary difference is thatBufferhas additional helper functions. We've listed the affected client library functions below in theUint8Arraysection for your reference.
This migration guide also applies to:
ripple-address-codec4.3.1 -> 5.0.0ripple-binary-codec1.11.0 -> 2.0.0ripple-keypairs1.3.1 -> 2.0.0xrpl-secret-numbers0.3.4 ->@xrplf/secret-numbers1.0.0
At a high level:
- 60% filesize reduction
- Simplified setup by removing polyfills
- Increased reliability through more browser testing
Through simplifying 3rd party dependencies, we were able to reduce the size of xrpl.js by 60%.
A major contributor to the project's large bundle size was the use of polyfills, which replicated Node-specific features in the browser. To address this, we transitioned to using 3rd party packages that inherently supported both Node and browser environments.
Another simple fix was removing lodash by using es6 array methods and porting over simple helper utilities.
Another substantial reduction came from simplifying five large number libraries xrpl.js depended on down to just one. Previously, we relied on decimal.js, big-integer, bignumber.js, and two versions of bn.js due to elliptic's transitive dependency tree.
We were able to streamline this by adopting @noble to replace elliptic, resulting in the use of just one version of bn.js. Within our library we also switched to using bignumber.js consistently across the board.
Polyfills made it hard to setup xrpl.js in the browser as they required custom bundler configs. By using dependencies and browser-native features, xrpl.js can now work just by installing from npm in most cases other than react-native.
For the cryptography libraries, we switched from using elliptic, create-hash, and other crypto polyfills to using the @noble suite of packages. For situations where node-specific crypto functions performed better, we created @xrplf/isomorphic to dynamically choose which implementation to use depending on the runtime environment.
We eliminated the polyfills for http, https, and url by using the native fetch in the browser.
The easiest to replace were assert (which was replaced by simple conditions & exceptions) and utils (which used JSON.stringify instead of inspect).
Lastly, the buffer polyfill turned out to be the trickiest to remove, resulting in the largest number of breaking changes. Since the Buffer object is not native to the browser all apis were migrated to the superclass of Buffer → Uint8Arrays. For a detailed write up of why we and many libraries are choosing to make this transition, check out this blog post by Sindre Sorhus.
List of all replaced polyfills that can potentially be removed from your webpack.config.js / vite.config.js / other bundling config files as they are no longer needed in xrpl.js. Note that you may still need these for other libraries you depend on / code you have written.
assertbuffercryptoeventshttphttpsosstreamurlws
With xrpl.js 3.0, we improved our test coverage in the browser. Specifically, we added browser unit testing to all packages in the monorepo other than the xrpl package. Note that the xrpl package has browser coverage through our integration tests.
To implement this enhancement, we included a karma configuration in every project utilizing webpack to bundle each library. This allowed us to execute tests in Chrome. We are actively working towards extending this support to include running unit tests for the xrpl package in Chrome as an integral part of our continuous integration (CI) process in the near future.
Here’s a high-level overview of the breaking changes.
💡 Note that the vast majority of these changes are very small typing changes, which should have direct 1-line replacements.- The largest change is that all instances of
Bufferhave been replaced byUint8ArrayLink - All “large number” types have been consolidated to either
bigintorBigNumberLink - Polyfill configuration changes Link
dropsToXRPandClient.getXrpBalancenow return anumberinstead of astring(xrpToDropsis UNCHANGED) Linkxrpl-secret-numbershas been moved into the mono-repo as@xrplf/secret-numbersLink- Support for Node 14 has been dropped Link
- Configuring proxies with the Client Link
- Bug fix: Setting an explicit
algorithmwhen generating a wallet works now Link AssertionError→ErrorLink- Pre-bundle browser builds Link
- We’ve updated the
Transactiontype to include pseudotransactions Link authorizeChannelwas moved Link- Removed the deprecated
BroadcastClientLink
Without further ado, here’s the detailed changes and how to migrate:
In most cases, Uint8Array can act as a drop-in replacement for Buffer data since Buffer is a subclass of Uint8Array. The main differences are that Uint8Array has fewer helper methods, and slightly different syntax for converting from other data types. This difference primarily affects methods whose return type is changed. (For functions whose parameters were changed to Uint8Array, Buffer should still be a valid parameter as it’s a subclass of Uint8Array)
Please see this blog post for detailed examples of how to migrate Buffer to Unit8Array.
Below is a list of every method affected.
ripple-address-codec
decodeAccountIDencodeAccountIDdecodeAccountPublicencodeAccountPublicdecodeNodePublicencodeNodePublicencodeSeeddecodeXAddressencodeXAddress
ripple-binary-codec
SerializedTypeconstructor andtoBytes. Its sub-classes:AccountIDAmountBlobCurrencyHashHash128Hash160Hash256IssuePathSetSTArraySTObjectUIntUInt8UInt16UInt32UInt64Vector256XChainBridge
ShaMapNode.hashPrefixBinarySerializer.putBytesList.putandBytesList.toBytesBinaryParser.readBinaryParser.readVariableLengthQuality.encodeandQuality.decodeSha512Half.putandSha512Half.finish256transactionIDsha512Half- Entries of
HashPrefix - Type
FieldInstance.header Bytes.bytessigningClaimDataserializeObjectmakeParser
secret-numbers
entropyToSecretrandomEntropyAccountconstructor
xrpl
rfc1751MnemonicToKey
bn.js, decimal.js and big-integer were removed as dependencies. They usages were replaced with BigNumber from big-number.js (was already a dependency) and the native javascript object BigInt.
UInt64.valueOfreturnsbigintinstead ofBigIntegerSerializeType.fromcan take abigintinsteadBigIntegerledgerHashhad its param object change so thattotal_coinsin abigintinsteadBigIntegerQuality.decodereturns aBigNumberinstead of aDecimalAmount.assertIouIsValidtake aBigNumberinsteadDecimalAmount.verifyNoDecimaltakes aBigNumberinsteadDecimal
For vite and create-react-app you can remove all xrpl.js polyfills/configurations. This also includes the custom mappings for ws to WsWrapper and the exclusion of https-proxy-agent. You should also be able to remove polyfills for other bundlers / frameworks, but we have only extensively tested vite and create-react-app configurations.
React Native
Please follow the updated guide at UNIQUE_SETUPS.md (Many polyfills are no longer required, but not all are eliminated for this environment).
4. dropsToXRP and Client.getXrpBalance now return a number instead of a string (xrpToDrops is UNCHANGED)
This should make it easier to work with the numbers. Because the max size of XRP is 100 billion, we can use a number instead of a larger type like bigint (which is normally needed when working with issued tokens on the XRPL).
Please note that xrpToDrops, which was commonly used to set the amount of XRP that is in a transaction is UNCHANGED as an Amount type in a Transaction needs a string input.
This move allows us to continue maintaining this package going forward as well as giving us more control over the dependencies to avoid needing polyfills.
If you were using xrpl-secret-numbers directly, please update your imports to the new package (@xrplf/secret-numbers) to receive updates going forward.
Besides making changes to this package to update from Buffer → Uint8Array you will need to update all places where you use functions on the Util object. These methods are now at the root of the library. These methods include:
Utils.randomEntropy→randomEntropyUtils.randomSecret→randomSecretUtils.entropyToSecret→entropyToSecretUtils.secretToEntropy→secretToEntropyUtils.calculateChecksum→calculateChecksumUtils.checkChecksum→checkChecksumUtils.parseSecretString→parseSecretString
Node 14 has stopped receiving security updates since April 2023, and so we’ve decided to no longer support it going forward. Please update to one of the supported versions of Node as listed in xrpl.js’s README.md.
The way to configure proxies for Client has changed. It is now done by specifying the agent parameter on the ConnectionOptions config.
You can generate an agent with libraries such as https-proxy-agent or any that implements http.Agent.
This was done to remove a hard dependency on https-proxy-agent when running in the browser and to support https-proxy-agent@7 which changed several option names. Proxy support was never supported in the browser, and merely burdened xrpl bundles with unused dependencies.
Before
{ proxy: ws://127.0.0.1:${port}, authorization: 'authorization', trustedCertificates: ['path/to/pem'], }
After
{ agent: new HttpsProxyAgent<string>(ws://127.0.0.1:${port}, { ca: ['path/to/pem'], }), authorization: 'authorization' }
In previous releases of this library, Wallet.generate() and Wallet.fromSeed were ignoring the algorithm parameter. Instead, the algorithm was assumed from the seed provided; if it started with sEd, it would use ed25519, and otherwise it would use secp256k1. However, seeds do not actually have algorithms; a seed starting with s... can still use the ed25519 algorithm.
With 3.0, we updated the default signing algorithm used by the Wallet object to always be ed25519 in order to default to the higher-performance algorithm. This is a breaking change to all functions used to generate a Wallet, so if you have a pre-existing XRPL account that you're using to generate a specific Wallet using older versions of xrpl.js, you may need to specify that you are using secp256k1 as the algorithm to decode your private key / seed / etc to get the same behavior as before. See below for specifically how to update your code.
If you are creating new accounts each time (ex. via Client.fundWallet or Wallet.generate), you do not need to specify the signing algorithm.
Before
Wallet.fromSeed('s...')
Wallet.fromEntropy(entropy)
deriveKeyPair(seed="s...")
After
Wallet.fromSeed(seed='s...',algorithm: 'ecdsa-secp256k1')
Wallet.fromEntropy(entropy, opts={algorithm: 'ecdsa-secp256k1'})
deriveKeypair(seed='s...', opts={ algorithm: 'ecdsa-secp256k1' }) (ripple-keypairs)
In order to get rid of the assert polyfill, we’ve replaced AssertionErrors with Error exceptions. We’ve also updated the error messages to be more descriptive. If you were catching those specific errors, you will have to update your catch statements.
This impacts most of ripple-keypairs functions but only if you already had issues with incompatible values.
If you use the pre bundled version of the library you will need to make the following changes:
- Change any references to
dist/browerified.jstobuild/xrplf-secret-numbers-latest.js. - Access any methods as properties of
xrplf_secret_numbersinstead of using browserify's loader.
Transaction has been updated to include PseudoTransactions. To get the equivalent of the old Transaction type which only included transactions users could submit, please use SubmittableTransaction.
This effectively changes the signature of the following methods:
Client.autofillClient.submitClient.submitAndWaitClient.prepareTransactiongetSignedTxisAccountDelete
We’ve moved authorizeChannel from wallet/signer to wallet/authorizeChannel to solve a circular dependency issue. You may have to update your import path as a result.
This feature was never fully implemented, and was marked as deprecated for several years. With 3.0 we’ve fully removed any code relating to it.
Thanks for taking the time to read & migrate to xrpl.js 3.0. Hopefully this helps speed up browser applications, simplifies setup, and provides a better development experience.
If you run into any problems, please create an issue on our GitHub repo.