This PR addresses the security review finding F03 by making the permission scope extensible. This allows to define additional properties of the permission scope object in the future, such as restricting the canister_call scope to just certain canisters, methods, or even arguments.
In addition, it also makes a formulation stricter that would have allowed signers to hand out more permissions than initially requested.
This PR addresses the security review finding F03 by making the permission scope extensible. This allows to define additional properties of the permission scope object in the future, such as restricting the
canister_call
scope to just certain canisters, methods, or even arguments.In addition, it also makes a formulation stricter that would have allowed signers to hand out more permissions than initially requested.