DNP_DAPPMANAGER icon indicating copy to clipboard operation
DNP_DAPPMANAGER copied to clipboard

Published 20 hours ago verified publisher icon dappnode

Package signature verification using Safe

Open dappnodedev opened this issue 8 months ago • 0 comments

There will be a new way of publishing packages, which will involve approving the publishing using a Safe.

To identify if a package is verified:

  1. Look for the signature inside the package and check if the public key is among the trusted ones (current method)
  2. If there is no signature inside the package, check if any of the developer addresses (or, maybe, owner addresses) is a Safe. In case it is, perform a call to a function that returns whether the package has been authorized by it.

dappnodedev avatar Jun 06 '24 15:06 dappnodedev