chore(test): add vitest v8 coverage with 95% perFile gate

[0xisk]

Types of changes

What types of changes does your code introduce to OpenZeppelin Midnight Contracts?
Put an `` in the boxes that apply

• Bugfix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Documentation Update (if none of the other choices apply)

Fixes https://github.com/OpenZeppelin/compact-contracts/issues/443\

In general this PR increases the testing coverage as possible.
\

PR Checklist

• I have read the Contributing Guide
• I have added tests that prove my fix is effective or that my feature works. See GUIDELINES.md#testing for more information.
• I have added documentation for new methods or changes to existing method behavior. See GUIDELINES.md#documentation for more information.
• CI Workflows Are Passing

Further comments

If this is a relatively large or complex change, kick off the discussion by explaining why you chose the solution you did and what alternatives you considered, etc...

Summary by CodeRabbit

• Tests

  • Added comprehensive test coverage for simulator wiring and private state helpers across core contracts.
  • Added coverage verification for public state exposure and secret key handling.

• Chores

  • Added new test:coverage npm script for coverage reporting.
  • Updated Vitest to version 4.1.7 with enhanced coverage configuration.
  • Implemented strict per-file coverage thresholds (95%) for improved code quality standards.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 72baba09-c933-4a1f-a9d3-44ddfb7a5da2

📥 Commits

Reviewing files that changed from the base of the PR and between ed68e80 and 8ed8db0.

⛔ Files ignored due to path filters (1)

• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (10)

• contracts/package.json
• contracts/src/access/test/AccessControl.test.ts
• contracts/src/access/test/Ownable.test.ts
• contracts/src/access/test/ShieldedAccessControl.test.ts
• contracts/src/security/test/Pausable.test.ts
• contracts/src/token/test/FungibleToken.test.ts
• contracts/src/token/test/MultiToken.test.ts
• contracts/src/token/test/nonFungibleToken.test.ts
• contracts/src/utils/test/utils.test.ts
• contracts/vitest.config.ts

---

Walkthrough

This PR extends test coverage across the contract test suite to verify simulator initialization, public state exposure, and private state handling. Vitest is configured with v8 coverage reporting at 95% thresholds, while test suites systematically add simulator wiring and privateState helper tests across all contract modules.

Changes

Test Coverage & Simulator Verification

Layer / File(s)	Summary
Coverage infrastructure setup contracts/package.json, contracts/vitest.config.ts	Adds test:coverage npm script, bumps vitest to ^4.1.7, and configures v8 coverage provider with text/HTML reporters, artifact inclusion globs, and 95% per-file thresholds.
AccessControl module test coverage contracts/src/access/test/AccessControl.test.ts, contracts/src/access/test/Ownable.test.ts, contracts/src/access/test/ShieldedAccessControl.test.ts	AccessControl and Ownable gain simulator wiring and privateState helpers tests verifying secret-key retrieval and missing-key errors. ShieldedAccessControl adds initialization tests for _grantRole/_revokeRole, a revocation behavior test for unauthorized accounts, and comprehensive privateState helpers covering secret-key retrieval and Merkle-path behavior for empty/populated commitment states.
Token contract test coverage contracts/src/token/test/FungibleToken.test.ts, contracts/src/token/test/MultiToken.test.ts, contracts/src/token/test/nonFungibleToken.test.ts	All three token contracts gain simulator wiring tests verifying empty public ledger state and privateState helpers confirming getCurrentSecretKey() returns injected keys and throws on missing secrets.
Pausable and utility test coverage contracts/src/security/test/Pausable.test.ts, contracts/src/utils/test/utils.test.ts	Pausable adds simulator wiring verifying Pausable__isPaused state transitions; utils adds simulator wiring confirming getPublicState() returns empty object.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Possibly related PRs

• OpenZeppelin/compact-contracts#444: Refactors AccessControl to introduce wit_AccessControlSK-driven identity and typed AccessControlPrivateState.secretKey with simulator helpers, which this PR now covers with tests.
• OpenZeppelin/compact-contracts#466: Introduces pk→sk Ownable refactor with secret-key-based ownership wiring that this PR's Ownable test coverage directly validates.
• OpenZeppelin/compact-contracts#483: Refactors MultiToken to introduce typed MultiTokenPrivateState and witness behavior that this PR's MultiToken simulator and privateState tests now exercise.

Poem

🐰 With whiskers twitching, we weave tests anew,
Coverage glowing in values true,
Secrets kept safe in each private state,
Simulators wired—never too late! 🧪✨

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The PR title accurately summarizes the main change: adding Vitest v8 coverage with a 95% per-file threshold gate.
Linked Issues check	✅ Passed	The PR fully addresses issue #443 by adding comprehensive tests for ShieldedAccessControl and multiple simulators, raising coverage across access control and token modules as intended.
Out of Scope Changes check	✅ Passed	All changes directly support the PR objectives: coverage tooling setup, test additions for simulators/helpers, and configuration updates are all within scope of the coverage initiative.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/test-coverage

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 ESLint

If the error stems from missing dependencies, add them to the package.json file. For unrecoverable errors (e.g., due to private dependencies), disable the tool in the CodeRabbit configuration.

ESLint skipped: no ESLint configuration detected in root package.json. To enable, add eslint to devDependencies.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

[pepebndc]

Approved