Provable-Games / loot-survivor

A fully onchain arcade dungeon crawler built on Starknet in conjunction with Realms.world. Explore the dynamically generated dungeons while you fight for your life against beasts and obstacles in pursuit of a spot on the esteemed leaderboard.
https://survivor.realms.world
MIT License
5 stars 7 forks source link

Move the $lords and $eth transfer outside of the Controller session #284

Open loothero opened 4 days ago

loothero commented 4 days ago

For security reasons, I don't think that sessions should have access to $lords or $eth. People starting/paying for a game should do so via an explicit signature.

The same applies for sending adventurers too - this should be an explicit signature.