desire... does lead to suffering...

Human life is full of illogical things.

“It can’t be,” I think— restless in her silent hours, longing grows, unseen.

Why do you linger, Sats dancing in restless dreams— Questions echo on.

Always in my mind, Thoughts of you just won't let go— Peace, a ghost, denied.

Hearts race, restless dreams— softly, longing slips away, stillness fills the air.

🔍✅ Just published a detailed, GPG-signed reproducibility report for Bitkey Android v2025.10.1 on WalletScrutiny! All splits analyzed, verified, and transparent diffs discussed. Version 2025.10.1 is reproducible Read the full report and verify the signature:

WalletScrutiny

Bitkey - Bitcoin Wallet

Review of Bitkey - Bitcoin Wallet (verdict: sourceavailable)

#verificationId=7342f6c383d7a1e3b70ea186fa64c464b5d81d67618640f39f31e1951431aaca #Bitcoin #Android #ReproducibleBuilds #WalletScrutiny

Through the effort of the @WalletScrutiny team, the Bisq team is offering a bounty for anyone who can come up with reproducible instructions for the desktop build of Bisq Desktop! https://x.com/bisq_network/status/1927255361968365657

"Zombie" - used to hate this song, because it's one of the favorites of the Videoke (Karaoke) drunkards that sing in the neighborhood til the wee hours of the morning. But hearing this on piano... Starts at 13:02

📢 Just completed a reproducibility verification of #Bisq Desktop v1.9.19! (desktop.jar only) Core security components (core.jar, p2p.jar) are bit-for-bit identical, while desktop.jar differs only in version string (-SNAPSHOT suffix). desktop.jar is functionally reproducible

WalletScrutiny

Bisq

Review of Bisq (verdict: sourceavailable)

Recommendations in the report. #Bitcoin #P2P #Security

Shared this on FB family group... and I am getting "seen zoned" lol Happy Bitcoin Pizza Day! On this day, Laszlo Hanyecz traded 10,000 BTC for two pizzas—the first real-world Bitcoin purchase—proving cryptocurrency could buy everyday goods and sparking a global digital-currency revolution. Today, the value of 10000 Bitcoins is $1,113,280,000.00! $1,113,280,000.00!

Successfully reproduced Coldcard Q1 firmware v1.3.3Q from source—bit-for-bit identical to the official release (excluding ECDSA signature). Proof of strong #ReproducibleBuilds and open auditability for Bitcoin hardware wallets. Full details:

WalletScrutiny

Coldcard Q

Review of Coldcard Q (verdict: sourceavailable)

#Bitcoin #Coldcard #SupplyChainSecurity

🔎✅ Verified: Nunchuk Android 1.68.1 split APKs reproducible! Only expected binary diffs (manifest, resources, Play Store signing) observed—no functional or security differences. Full report:

WalletScrutiny

Nunchuk Bitcoin Wallet

Review of Nunchuk Bitcoin Wallet (verdict: sourceavailable)

#Bitcoin #OpenSource #ReproducibleBuilds 🚀🔐🔁

Thinking out loud: 'list framework, language and other dependencies for apps" With the verifications we have produced, we now have access to data that can be utilized to compare apps. Some are reproducibile, others are not. what frameworks do reproducible apps use? Although not exhaustively the source of non-reproducibility - these provide vital clues. Yes, corellation isn't causation. But we have to start somewhere to help other app developers get their app reproducible.

Imagine you visit a website related to sensitive or financial information, and the URL includes a secret code in the address bar that proves it’s really you. Normally, when your browser loads images or other content from different websites, it keeps that secret code private. But because of this Chrome Loader flaw, a successful attacker can trick your browser into sending that secret code to a malicious website just by embedding an image or other resource there. The attacker could, for example, embed a hidden image hosted at their own server, and harvest the full URLs. This means they can steal your private information without you realizing it, potentially letting them take over your account or other online services.

Malwarebytes

Update your Chrome to fix serious actively exploited vulnerability

Make sure your Chrome is on the latest version, to patch against an actively exploited vulnerability that can be used to steal sensitive informatio...

Kudos and thanks to the @ProtonWallet Android team for collaborating with us. We have now updated @WalletScrutiny 's entry on Proton, and is now 'sourceavailable' and **for verification**

✅ We verified that @nunchuk_io io.nunchuk.android v1.68.0 is reproducible! Despite minor expected diffs in AndroidManifest.xml & resources.arsc (e.g. Crashlytics ID, Google Play metadata), no functional changes were found. #ReproducibleBuilds #FOSS #Android

WalletScrutiny

Asset Information

✅ Just verified that Phoenix Wallet (Mainnet) v2.6.0 is reproducible! Built from source and matched Play Store APK byte-for-byte. 🔒 No signed tag/commit, but the build checks out. Full verification:

WalletScrutiny

Asset Information