Potentially dumb question that’s been on my mind since first learning about crypto:

When you enter your seed phrase into a wallet, how do you know the provider isn’t doing something else with it, like storing it in a log somewhere? It happens with passwords - how are wallets different, why should we trust them?

Cohost of /gmfarcaster, a live stream Farcaster news show.  Engineer. Mom x 3.

Famously happened at Twitter 

And I may or may not have seen log files with passwords in places I’ve worked as well 

https://www.bleepingcomputer.com/news/security/twitter-admits-recording-plaintext-passwords-in-internal-logs-just-like-github/

Imagine someone accidentally committing keys.env if metamask stored them 💀