nah just a local build cloned from Thomas' repo. Not production.
Can't you still be XSS'ed even from a local webapp if the malicious scripts phone home your private key?
Please Login to reply.
yes. which is why I'm authenticating with alby and disabled the 'dont show again option'.
I need to authorize every single action.
not perfect, but good enough for testing
I don't remember damus web supporting alby signing, nice to know.
it does, seamless just like astral. :D
