nostr:nprofile1qqstu8vf099ljt09m4jvres0dgk8ps2q4wkfjvjp3lhrp3wxxllfg7gpzpmhxue69uhk6mnv9emrqmpwd9hszrmhwden5te0dchx76es9ehhyecym2km9 any information on when y'all are going to fix this?
This is a serious privacy concern and my opinion is that nobody should use the new WoS Spark wallet without being fully aware of the risks. β
I crash-tested this myself, comparing a nostr:npub1jugar2agq6369p0l86razavs9shj2p6pscxecevs8j94ap37hkqsjlfc28 SDK Spark wallet with nostr:npub1hcwcj72tlyk7thtyc8nq763vwrq5p2avnyeyrrlwxrzuvdl7j3usj4h9rq and hereβs what I found. πͺπ₯
The first screenshot is an invoice from Breez, the second is from WoS. You can clearly see that the Spark address is only exposed in one of these. π
Discussion
No replies yet.