Ill repond to your questions in turn
Q1: how would the user know if the server, or comms channel is compromised? The refs aren' signed by the maintainer.
Q2: how would the code owner know the server is compromised? They don't knownwhat refs are being supplied to each user.
Q3: the remote helper would verify that the state event was signed by a maintainer.
DanConwayDev
npub15q…cyejr
2024-07-01 18:43:24
in reply to nevent1q…nr6j
Author Public Key
npub15qydau2hjma6ngxkl2cyar74wzyjshvl65za5k5rl69264ar2exs5cyejrPublished at
2024-07-01 18:43:24Event JSON
{
"id": "6568c833a1b927468785e5c4f15d6527efa3079e1be4ef15e4e3f12cb26926ed",
"pubkey": "a008def15796fba9a0d6fab04e8fd57089285d9fd505da5a83fe8aad57a3564d",
"created_at": 1719859404,
"kind": 1,
"tags": [
[
"e",
"7fba60aa1cd8232156992ed5fe69a5c5cdd201b4b8bf2ade5152291036b2f67f",
"",
"root"
],
[
"e",
"97ae9610dd8f1ca37a1cc453a927ef679799589b19f747df489fa1490a9d2437"
],
[
"e",
"4b23b3123aa38b696a25fe4ec6657f7a0e0270f30d0c235830175f1aaaea9692",
"",
"reply"
],
[
"p",
"70122128273bdc07af9be7725fa5c4bc0fc146866bec38d44360dc4bc6cc18b9"
],
[
"p",
"a008def15796fba9a0d6fab04e8fd57089285d9fd505da5a83fe8aad57a3564d"
],
[
"p",
"e07e6c1351e07c837b1feb6c3624173c6b3f13e40d75f8e4ebd69fff0739c1c7"
]
],
"content": "Ill repond to your questions in turn\nQ1: how would the user know if the server, or comms channel is compromised? The refs aren' signed by the maintainer.\nQ2: how would the code owner know the server is compromised? They don't knownwhat refs are being supplied to each user.\nQ3: the remote helper would verify that the state event was signed by a maintainer.",
"sig": "7443ba76e63b503c5c6a46dc0c3f318b594640a3af9e1bf26956f54efd1d31062a3bb9d9e9fffe3099c2049dcf2d229aff6bd79024a780455de75a802737ffe6"
}