Do we had some security audits on #NWC or is it still as is like 2y ago nostr:npub18ams6ewn5aj2n3wt2qawzglx9mr4nzksxhvrdc4gzrecw7n5tvjqctp424. As a user I see things improving, but don't know much about the base layer. I'm trying to convince WoS we need NWC.
It seems nostr:npub1xv8mzscll8vvy5rsdw7dcqtd2j268a6yupr6gzqh86f2ulhy9kkqmclk3x never joined this debate and it would be healthy to know about the raised concerns from his perspective or the perspective from security engineers.
This debate/their concern is not about NWC the protocol but the implementation.
NWC is like a standardized API for wallets.
Just as they have to keep their current backend secure they have to keep a NWC backend secure.
It is like if you use HTTPS on the transport layer you still have to make sure your app is secure on the app layer.
NWC got the encryption update to NIP44 for example.
No replies yet.
