Thread - Nostr Hypermedia

that is the biggest thing that annoyed me about nostore, most people happily corrupted their data. Mainly because it wasn't ever clear what you were signing. It should try to tell the user what is happening instead of showing a giant scary json blob. I also want to do validation and checks to actively stop signing harmful events like nuking contact lists. nostore never helped with that. the decryption one is interesting problem, haven't thought about solutions to that yet.

↑ Parent

Replies (2)

npub12262...grkj 1 year ago

it won’t be fully fixable until we make a better NIP-44 that includes kind and source info, because an app can take an encrypted blob and sign a message containing it to make it look like an outbound message, then ask to decrypt it

1 replies ↓

TKay tkay@bitcoindistrict.org 1 year ago

That’s exactly how my contact list got nuked.

1 replies ↓