@cassie

The events of the schedly hack yesterday are regrettable, and preventable. Miniapps sometimes need to post content on user's behalf to function. Sometimes those posts have complex flows, where you can't, for example, pre-authorize the content. One of the FIPs I will be introducing this week is functional signers. This feature targets miniapps (and specialized clients), such that you can have a signer where you post limits on the kind of content it can create. This requires no change to snapchain or hypersnap, instead, is an SDK addition, that leverages programmable keys – keys that are split between multiple actors, such that they must agree to certain rules to be willing to sign off on content. This helps users of miniapps feel more secure that a miniapp can't betray them and post a wallet drainer or scam link, and helps developers of miniapps contain the blast radius in the event of a compromise.

7 replies

14 recasts

102 reactions