Make sure to audit entire code base to make sure APIs used aren't overridable by attackers. This also means we need to make sure loading of LavaDome is done synchronously and safely, I'm not yet sore JavaScript modules fit for the task, as they load async and therefore attackers might be able to front run them?
Make sure to audit entire code base to make sure APIs used aren't overridable by attackers. This also means we need to make sure loading of LavaDome is done synchronously and safely, I'm not yet sore JavaScript modules fit for the task, as they load async and therefore attackers might be able to front run them?