Content pfp
Content
@
https://rainbow.me
0 reply
1 recast
1 reaction
Adam pfp
Adam
@adamhurwitz.eth
Are there any updates on fixing copying Android @rainbowdotme transaction tx info for multi factor verification MFV with @safe? The issue was shared on Apr 21 with support. MFV is essential to use tools like @openzeppelin Safe Utils to make sure the tx being signed is accurate with the copied info from signer accounts like Rainbow. This helps avoid large attacks like the $1.5b Bybit hack in February. The "Copy" button does not copy the tx info most of the time on Rainbow Android v1.9.66. Much appreciated!
1 reply
0 recast
5 reactions
grunt.eth pfp
grunt.eth
@grunt.eth
Hi! We have an open ticket for it. I will check on the status!
1 reply
0 recast
2 reactions
Adam pfp
Adam
@adamhurwitz.eth
Thank you! The good news is this seems like an easy UI fix to copy and paste the String field on Android.
1 reply
0 recast
1 reaction
grunt.eth pfp
grunt.eth
@grunt.eth
Not seeing much progress here. I’ll ask the team tomorrow in our catchup We do see this could be limited to Android 15. We have some other high priority fixes for 15 that took precedence, but I’ll bump it!
2 replies
0 recast
1 reaction
Adam pfp
Adam
@adamhurwitz.eth
Are there any updates from the team catchup?
1 reply
0 recast
0 reaction
grunt.eth pfp
grunt.eth
@grunt.eth
starts in 5!
2 replies
0 recast
1 reaction
Adam pfp
Adam
@adamhurwitz.eth
How'd it go?
1 reply
0 recast
1 reaction
grunt.eth pfp
grunt.eth
@grunt.eth
Meeting was pushed til today. I’ll get back to you!
1 reply
0 recast
1 reaction
grunt.eth pfp
grunt.eth
@grunt.eth
Hi! No progress, but it is on the list to investigate and fix. It's rolled into other fixes for Android 15 that need to be done, and it's low priority vs keychain issues. But, it might be an easy fix vs others too. AFAIK it is limited in effect to Android 15 right now. thanks again for keeping up with this!
2 replies
0 recast
1 reaction
Adam pfp
Adam
@adamhurwitz.eth
I appreciate the quick update! As you already know it seems like it should be a higher priority given it's a large security issue for all @safe accounts. I'll see if I can replicate the intermittent case where it does copy and paste successfully. In the meantime it might be good for Safe users to use other accounts where they can easily verify the tx details until this is fixed.
0 reply
0 recast
1 reaction