Andrei O.

@andrei0x309

754 Following

1782 Followers

Andrei O. pfp

This is a RE-RE-brand, as the app was also called Farcaster at its first iteration. What I'm seeing is that there's a solid appetite for open-sourcing, because people anticipate better optics. I've been pushing for open sourcing, less gating, and more permissionless actions for years, with a bit of success in opening some things up but still, super slow and with reluctance, to the point that many critics who insisted on saying this project is pretty closed did appear credible numerous times.

0 reply

0 recast

1 reaction

Andrei O. pfp

Dropping starter-kit repo made with SvelteKit for frames2(rebranded as mini-apps). This SveleKit repo is optimized for most scenarios, much faster, and lighter on dev resources than a Next template. Also, optimized for Netlify/Cloudflare Edge potentially serving millions of requests free. Will drop an article tomorrow. https://github.com/andrei0x309/frames.flashsoft.eu

0 reply

0 recast

1 reaction

Andrei O. pfp

Wrote a new blog post about the Phaver app sunseting. https://blog.flashsoft.eu/the-sunset-of-phaver

0 reply

1 recast

1 reaction

Andrei O. pfp

In all honesty, this applies to all domains, not only art.

0 reply

0 recast

1 reaction

Andrei O. pfp

Why you should not use unvalidated data in frames? Check this Warplsot POC repo I made: https://github.com/andrei0x309/warpslot-poc

0 reply

0 recast

1 reaction

Andrei O. pfp

Killing legacy frames probably is a good idea, as it helps to have a single standard and a single experience. Killing the web app would be best only if there's another team that offers that product to increase client diversification, otherwise, there are people who only use the mobile app because they are forced to and would rather only use the web version.

0 reply

0 recast

1 reaction

Andrei O. pfp

This week, I'll finish the second book on this year Tomorrowville by David T. Isaak. It's shaping into an enjoyable read, but I'll leave a review on Goodreads later.

0 reply

0 recast

0 reaction

Andrei O. pfp

Warpcast CSP frame policy is Content-Security-Policy: frame-ancestors 'self'; This means if you have an Iframe in your frame it will fail to load, I don't understand why is that many commenting systems on websites are loaded with iframes that will fail when the website is opened in a frame. But in this example, maybe the frame is loaded from 'self' or in another way, BTW probably the frame-ancestors CSP should be dropped to allow better compatibility with websites.

0 reply

0 recast

2 reactions

artlu 🎩 pfp

"Trending looks like it's mainly on a whitelist basis." this entire thread has good, detailed and intelligent observations

0 reply

1 recast

3 reactions

Andrei O. pfp

A lot of content is also filtered out, because is deemed to be from bots, it might be, but it also might have some false positives, no other App filters out content by default only if the user opts in, on Warpcast you can't even opt-in into "low value" content it's silenced by default, probably this is one of the biggest mistakes Warpcast does. If Warpcast wants to have any chance to succeed it should respect well-established behaviors on other social platforms, but it does not. I don't know if it's out of incompetence or they are trying to reinvent the wheel "better", either way, I am pretty sure that the deviation from how other established social networks work will not have any positive outcome.

1 reply

0 recast

3 reactions

Andrei O. pfp

Pretty much post reach is super bad, they fiddled around so much with it that is probably the worst actual reach of any social app. Trending looks like it's mainly on a whitelist basis. Also, all this stuff is private but I am sure if all algorithms involving boosting and algo feeds would have been open most of us would be amazed at what bewildering stuff is in there. By the way, trending was supposed to be axed more than a year ago but it has never been axed.

1 reply

0 recast

5 reactions

Andrei O. pfp

This week I'll release a V2 frames to claim your merkl LP rewards, will make the repo public would be useful if anyone wants to make a frame V2 using svelte kit.

0 reply

0 recast

0 reaction

Andrei O. pfp

It's super crazy that with a request header from the client, you could bypass the Next Auth middleware, and for so long. This magnitude of vulnerability from such a popular framework is completely unacceptable. If you are using Auth Middleware in Next.js patch your next version or manually patch your middleware. https://www.youtube.com/watch?v=JbF_8g1EXj4

0 reply

0 recast

0 reaction

Andrei O. pfp

In addition to logging in on Warpcast with the wallet and SIWF, I added generating JFS to Clear Wallet. You can now generate arbitrary custody JFS from Clear Wallet, FID detection is done automatically based on your selected wallet. Right now mostly useful for frames V2 account association but you can sign any kind of JSON not just {"domain": "DNS"}. Also, changed the QR scanning to use the native browser when possible this will ensure a high rate of decoded QRs. These features are available in version > `1.4.17`.

0 reply

1 recast

3 reactions

Andrei O. pfp

It depends on the blockchain, there are some(albeit in the minority) that support private data eg: Secret Network. Plus a lot of scammers just send encrypted data to cheap blockchains for data exfiltration. Also in most cases, you can make some data not permanent(still public) even if the history of the transactions/actions in most cases is permanent or at least held for a very long time.

0 reply

0 recast

7 reactions

Andrei O. pfp

Cartoon avatars are probably a top characteristic of crypto. It's in the top five, for sure.

0 reply

0 recast

2 reactions

Andrei O. pfp

If we were to abide by the law, we could say none of them was a gang member because none was convicted. It was a junction point, if we're able to break the law in this manner, does the USA still exist? What point is to have any law, if you can take actions just based on accusations without due process?

0 reply

0 recast

0 reaction

Andrei O. pfp

I mean yeah you can use that, I made a higher level library to simplify interaction with hubs, but didn't have that method ( `getConnectedAddresses`) yet. I just added it now, in version `0.1.11`, code is as simple as: ``` import { FCHubUtils } from 'farcaster-hub-utils' const hubutils = new FCHubUtils() const connectedAddresses = await hubutils.getConnectedAddresses({ fid: 1791 }) console.log(connectedAddresses); ```

1 reply

0 recast

1 reaction

Andrei O. pfp

You can query this info through hubs too, if the user has connected the Warpcast wallet, the address will appear as connected, you can get all connected addresses using hubs, at the end of the day it doesn't matter if that address is controlled by Warpcast wallet or another wallet, all connected addresses are assumed to be under user's control. So you don't need a centralized API for this info.

1 reply

0 recast

1 reaction

Chris Carella pfp

play long term games with long term people.

0 reply

1 recast

3 reactions