Skip to content

Expand SECURITY.md with client-side data handling notes #148

Description

@sshdopey

Context

SECURITY.md covers reporting, but the app stores the address and wallet id in localStorage and signs transactions client-side, which deserves a documented policy.

Scope

  • Document what is stored client-side, the no-secrets rule, and the wallet-signing trust model.

Acceptance criteria

  • SECURITY.md describes client-side data handling and the signing model.

Pointers

SECURITY.md, src/wallet/WalletProvider.tsx.

Metadata

Metadata

Assignees

No one assigned

    Labels

    documentationImprovements or additions to documentation

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions