I don't think this covers authentication, just signing events?
What's the difference in your opinion? Can you use a NIP 07 extension with only a public key?
Please Login to reply.
I think someone could make a malicious extension that that doesn't validate and can exploit a service just reading the public key
Would be interesting to try and do this. Youβre making me realize I have a few assumptions about how nip 07 signing works.
