Content
@
0 reply
0 recast
0 reaction
moritz ๐ง๐
@moritz
excited to announce that the Fluidkey Stealth Account Kit has successfully been audited by Dedaub ๐ the kit covers the core crypto powering Fluidkey, is fully open source, and built on @safe ๐ https://dedaub.com/audits/fluidkey/fluidkey-stealth-account-kit-may-24-2024/
3 replies
6 recasts
22 reactions
MetaEnd๐ฉ
@metaend.eth
What are the plans to prevent P1?
1 reply
0 recast
1 reaction
moritz ๐ง๐
@moritz
P1 is true for most browser extension wallets we ensure the private key is only used in a very simple and contained environment with no external access from other js processes in the future an app-based version of Fluidkey would solve this, something we'd be excited to release once we have some more capacity
1 reply
0 recast
1 reaction
MetaEnd๐ฉ
@metaend.eth
Kinda like the PWA now, or is this not considered yet?
1 reply
0 recast
1 reaction
moritz ๐ง๐
@moritz
yeah, a PWA is technically still a webpage so from a security perspective it still lives in a browser
1 reply
0 recast
0 reaction
MetaEnd๐ฉ
@metaend.eth
Mh, sounds like a case for tauri? https://tauri.app/
1 reply
0 recast
1 reaction
moritz ๐ง๐
@moritz
yes, Tauri looks cool! also played around with capacitorjs.com a while ago which also helps build for multiple platforms even with these solutions, more platforms to adapt to typically means more possible security vulnerabilities and maintenance issues so something we want to work on once we have a bit more capacity!
0 reply
0 recast
1 reaction
