WalletScrutiny on Nostr: We have long been working on testing desktop wallets but it's really tricky as there ...
We have long been working on testing desktop wallets but it's really tricky as there is just so many binaries floating around for what claims to be the same product. Even Bitcoin Core is showing 8 download options depending on your operating system or distribution channel preference:
With snapcraft obviously being tricky:
Either way, for desktop wallets, most of the time people have download links and want to verify those downloads, so Chris is working on a binary checker. It's still only a draft merge request and clearly needs a design but what it will enable is actually pretty cool:
WalletScrutiny calculates the hash of the file dropped onto it and if it's an apk, it also determines the appId which allows finding the right product. If the hash is known, the verdict is immediately displayed. If not, the page invites the user to upload the file for analysis.
The attestations for artifacts will live on nostr as signed events and nostr will also be used to advertise the existance of new binaries for reviewers.
{
"id":"eea09139d29b4bfe2f4e1398219758f9025af43f4c26280b800bb56ff1671385",
"pubkey":"916cb5ff07d3b51cef7f6b6b7f5479b1001b401c0e82558ee1a22504c7d507c9",
"created_at":1726774416,
"kind":1,
"tags": [
[
"client",
"noStrudel",
"31990:266815e0c9210dfa324c6cba3573b14bee49da4209a9456f9484e5106cd408a5:1686066542546"
]
],
"content":"We have long been working on testing desktop wallets but it's really tricky as there is just so many binaries floating around for what claims to be the same product. Even Bitcoin Core is showing 8 download options depending on your operating system or distribution channel preference:\n\nhttps://image.nostr.build/092675397042174186e3e764292629b3adb749ec409656972a229800b81f35ca.png\n\nWith snapcraft obviously being tricky:\n\nhttps://image.nostr.build/772aa649432c3d57171f65eecabc4c87f0d031fa8edbf359c7a68c8df7e5ddb8.png\n\nEither way, for desktop wallets, most of the time people have download links and want to verify those downloads, so Chris is working on a binary checker. It's still only a draft merge request and clearly needs a design but what it will enable is actually pretty cool:\n\nhttps://a.nostr.build/DMmxAOaKtPYpb3M7.webm\n\nWalletScrutiny calculates the hash of the file dropped onto it and if it's an apk, it also determines the appId which allows finding the right product. If the hash is known, the verdict is immediately displayed. If not, the page invites the user to upload the file for analysis.\n\nThe attestations for artifacts will live on nostr as signed events and nostr will also be used to advertise the existance of new binaries for reviewers.",
"sig":"540818953d74d9e43d3b15c1e2f28cf5faa5820d7071592f954789206fd2120d2c61d779715a6785b619ccc6887632036ac437d56328993fad498dbe44cdde72"
}