Superhero is a multi-blockchain wallet to manage crypto assets and navigate the web3 and DeFi space. Currently supporting Bitcoin, Ethereum and æternity blockchains.
Describe the bug
Currently, Superhero Wallet can be opened over http. In this case MITM can replace JS payload exposing sensitive data to third parties. Also, some modern web APIs is not working in unsecured contexts that may produce unexpected errors.
Describe the bug Currently, Superhero Wallet can be opened over http. In this case MITM can replace JS payload exposing sensitive data to third parties. Also, some modern web APIs is not working in unsecured contexts that may produce unexpected errors.
To Reproduce Steps to reproduce the behavior:
Expected behavior Web server should constantly redirect HTTP requests to HTTPS. With no ability to open the wallet over HTTP.
Screenshots