fix: isInternalAccountInPermittedAccountIds case where only wallet:eip155 permission exists for a given address (MetaMask#5980)

## Explanation

We aren't handling the case where a permitted account with the
`wallet:eip155` scope prefix is passed into
`isInternalAccountInPermittedAccountIds` - where it is the only
representation of its address in the permission set. In this case we
wouldn't find a permitted account matching a passed in internal account
and would [ultimately throw an
error](https://github.com/MetaMask/metamask-mobile/blob/97486f7d2aff5d075865e93126727590c88c0c4d/app/core/Permissions/index.ts#L145)
resulting in the app crashing.

## References

* Fixes error [reported
here](https://consensys.slack.com/archives/C08UFPWB3GB/p1749821334454809)

## Changelog
### `@metamask/chain-agnostic-permission`
- Fix `isInternalAccountInPermittedAccountIds` and
`isCaipAccountIdInPermittedAccountIds` to correctly handle comparison
against `permittedAccounts` values of the `wallet:<namespace>:<address>`
format

## Checklist

- [ ] I've updated the test suite for new or updated code as appropriate
- [ ] I've updated documentation (JSDoc, Markdown, etc.) for new or
updated code as appropriate
- [ ] I've communicated my changes to consumers by [updating changelogs
for packages I've
changed](https://github.com/MetaMask/core/tree/main/docs/contributing.md#updating-changelogs),
highlighting breaking changes as necessary
- [ ] I've prepared draft pull requests for clients and consumer
packages to resolve any breaking changes

---------

Co-authored-by: Jiexi Luan <jiexiluan@gmail.com>

Author: adonesky1

packages/chain-agnostic-permission/CHANGELOG.md

@@ -13,6 +13,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Bump `@metamask/network-controller` to `^23.6.0` ([#5935](https://github.com/MetaMask/core/pull/5935),[#5882](https://github.com/MetaMask/core/pull/5882))
 - Change `caip25CaveatBuilder` to list unsupported scopes in the unsupported scopes error ([#5806](https://github.com/MetaMask/core/pull/5806))
 
+### Fixed
+
+- Fix `isInternalAccountInPermittedAccountIds` and `isCaipAccountIdInPermittedAccountIds` to correctly handle comparison against `permittedAccounts` values of the `wallet:<namespace>:<address>` format ([#5980](https://github.com/MetaMask/core/pull/5980))
+
 ## [0.7.0]
 
 ### Changed

packages/chain-agnostic-permission/src/adapters/caip-permission-adapter-accounts.test.ts

@@ -637,6 +637,42 @@ describe('CAIP-25 eth_accounts adapters', () => {
       );
       expect(result).toBe(false);
     });
+
+    it('returns true if a wallet:eip155 namespaced address is permitted and a matching (case insensitive) internal account with eip155:0 scope exists', () => {
+      const result = isInternalAccountInPermittedAccountIds(
+        // @ts-expect-error partial internal account
+        {
+          scopes: ['eip155:0'],
+          address: '0xDeAdBeEf',
+        },
+        ['wallet:eip155:0xdeadbeef'],
+      );
+      expect(result).toBe(true);
+    });
+
+    it('returns true if a wallet:<non-evm-namespace> namespaced account is permitted and a matching (case sensitive) internal account with solana namespaced scope exists', () => {
+      const result = isInternalAccountInPermittedAccountIds(
+        // @ts-expect-error partial internal account
+        {
+          scopes: ['solana:0'],
+          address: 'abC123',
+        },
+        ['wallet:solana:abC123'],
+      );
+      expect(result).toBe(true);
+    });
+
+    it('returns false if a wallet:<non-evm-namespace> namespaced account is permitted and a matching (case sensitive) internal account with same address but different namespace', () => {
+      const result = isInternalAccountInPermittedAccountIds(
+        // @ts-expect-error partial internal account
+        {
+          scopes: ['solana:0'],
+          address: 'abC123',
+        },
+        ['wallet:notsolana:abC123'],
+      );
+      expect(result).toBe(false);
+    });
   });
 
   describe('isCaipAccountIdInPermittedAccountIds', () => {

packages/chain-agnostic-permission/src/adapters/caip-permission-adapter-accounts.ts

@@ -319,19 +319,41 @@ function isAddressWithParsedScopesInPermittedAccountIds(
     const parsedPermittedAccount = parseCaipAccountId(account);
 
     return parsedAccountScopes.some(({ namespace, reference }) => {
-      if (namespace !== parsedPermittedAccount.chain.namespace) {
+      if (
+        namespace !== parsedPermittedAccount.chain.namespace &&
+        // eslint-disable-next-line @typescript-eslint/no-unsafe-enum-comparison
+        parsedPermittedAccount.chain.namespace !== KnownCaipNamespace.Wallet
+      ) {
+        return false;
+      }
+
+      // handle wallet:<namespace>:<address> case where namespaces are mismatched but addresses match
+      // i.e. wallet:notSolana:12389812309123 and solana:0:12389812309123
+      if (
+        // eslint-disable-next-line @typescript-eslint/no-unsafe-enum-comparison
+        parsedPermittedAccount.chain.namespace === KnownCaipNamespace.Wallet &&
+        namespace !== parsedPermittedAccount.chain.reference
+      ) {
         return false;
       }
 
       // handle eip155:0 case and insensitive evm address comparison
-      // eslint-disable-next-line @typescript-eslint/no-unsafe-enum-comparison
       if (namespace === KnownCaipNamespace.Eip155) {
         return (
           (reference === '0' ||
             reference === parsedPermittedAccount.chain.reference) &&
           isEqualCaseInsensitive(address, parsedPermittedAccount.address)
         );
       }
+
+      // handle wallet:<namespace>:<address> case
+      if (
+        // eslint-disable-next-line @typescript-eslint/no-unsafe-enum-comparison
+        parsedPermittedAccount.chain.namespace === KnownCaipNamespace.Wallet
+      ) {
+        return address === parsedPermittedAccount.address;
+      }
+
       return (
         reference === parsedPermittedAccount.chain.reference &&
         address === parsedPermittedAccount.address