C O M P Ξ Z on Farcaster

Content pfp

https://warpcast.com/~/channel/fc-devs

0 reply

0 recast

0 reaction

C O M P Ξ Z pfp

Is there a method for ensuring and evaluating the security of mini-applications on Farcaster? Airdrops have proven to be one of the most common methods for scams, and this is a well-established fact. However, is there any evaluation or security layer specifically designed to address this issue within FC? Anyone who is a developer or has even basic knowledge of AI can write code—code that could potentially be designed with malicious intent, aimed at exploitation or theft. How can we verify the integrity and security of a mini-app on the platform? I believe there should be a security evaluation layer or a mechanism for verifying the integrity and intent of developers. This would ensure the health and legitimacy of mini-app and safeguard against malicious actions.

2 replies

3 recasts

37 reactions

Kartik pfp

Any mini app txs get simulated and scanned to ensure they’re not malicious and won’t result in the loss of funds(using Blockaid). This is also why for every tx we show a diff of the assets going in and out of the account

2 replies

0 recast

23 reactions

C O M P Ξ Z pfp

Thanks for answer this! So the evaluation is through the internal wallet (FC's Wallet) and is not possible for external one like metamask? I'm more looking to evaluate internal codes not only transactions! Preventing the exchange of system and internal data! Is there a way for this?

1 reply

0 recast

1 reaction

Kartik pfp

It’s per wallet, but I think at this point most if not all wallets do something like this. Focus is on txs because that’s the main security risk around loss of funds.

1 reply

0 recast

4 reactions

C O M P Ξ Z pfp

Now I understand clearly! 👍 thank you Kartik.

0 reply

0 recast

2 reactions