Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add helpful text to bot's sendMoney response #71

Open
2 tasks
Sladuca opened this issue May 7, 2021 · 0 comments
Open
2 tasks

Add helpful text to bot's sendMoney response #71

Sladuca opened this issue May 7, 2021 · 0 comments
Assignees
@hopeyen
Labels
good first issue non-trivial issue as a natural follow-up to a "ramp up task" security ux

Comments

@Sladuca
Copy link
Contributor

Sladuca commented May 7, 2021

How to use sendMoney isn't really all that clear. At minimum, should probably:

  • Have the bot say "check ur dm" or something like that so the user knows to check their DM for the link
  • Add some instructional text to the user's DM that makes it clear the user needs to click the link to send the tx

However, we might also want to somehow have the bot react to the message containing the link or delete it or send another message or some other way of letting the user know not to click old links in the user's DM with the bot and replay attack themselves. This may very well belong in a different issue, as a generic replay-attack defense mechanism for applications like the discord bot that don't have access to the user's keys would be really nice.
@Sladuca Sladuca added security ux good first issue non-trivial issue as a natural follow-up to a "ramp up task" labels May 7, 2021
@Sladuca Sladuca self-assigned this May 7, 2021
@hopeyen hopeyen self-assigned this May 7, 2021
@Sladuca Sladuca removed their assignment May 11, 2021
@Sladuca Sladuca linked a pull request May 11, 2021 that will close this issue
Hope/help command #81
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hopeyen hopeyen

Labels
good first issue non-trivial issue as a natural follow-up to a "ramp up task" security ux
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Hope/help command bafnetwork/baf-wallet-v2
2 participants
@Sladuca @hopeyen