Closed lachesis closed 10 months ago
You are absolutely right that we should do better than your average crypto website. We'll publish a statement about this later today.
We published our statement here: https://revoke.cash/blog/2023/ledger-connect-kit-hack-retrospective
connect-kit was hacked recently: https://github.com/LedgerHQ/connect-kit/issues/29
Revoke.cash was specifically called out as compromised: https://twitter.com/RevokeCash/status/1735282669808717958?t=bnVdCMZlMyAkuuTaFokaaA
Can you speak more about the current state of revoke.cash and what mitigations you are taking to prevent a supply chain attack from compromising revoke.cash again? As a dApp security tool, revoke.cash has an obligation to do better than the average pump-and-dump crypto scheme.