Somebody typo their LN address, this has been reported already
When you load profiles we also fetch their LNURL to check the pubkey of the zap service
Not XSS
Discussion
Ok, but why does a type make Chrome all paranoid?
Chrome flags http://walletsatoshi.com/ as similar to http://walletofsatoshi.com/
Clearly somebody put the wrong LN address:
user@walletsatoshi.com
vs.
user@walletofsatoshi.com
Doh, I didn't see the URL. Sorry to make a panic.
