Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Execute external libraries in a sandbox only #471

Open
danimoh opened this issue Oct 16, 2023 · 0 comments
Open

Execute external libraries in a sandbox only #471

danimoh opened this issue Oct 16, 2023 · 0 comments

Comments

@danimoh
Copy link
Member

danimoh commented Oct 16, 2023

Run "external" libraries like BitcoinJS or ethers and OpenGSN in a sandboxed iframe with very restricted permissions to fence them off from access to the network, the Keyguard's databases, user interfaces, etc. Communication with the libraries would then happen via a postMessage api.
This would significantly reduce the risk of security bugs or potential malicious code in the libraries and removes the need for the libraries and the build tools we use to build them to be trusted.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@danimoh