As of now we are storing wallet data in plain in localstorage. Only the wallet key is encrypted.
Even though the extension is running in its own sandbox and other services/extensions should not be able to read the data this is a security issue.
We should encrypt all localstorage entries.
As of now we are storing wallet data in plain in localstorage. Only the wallet key is encrypted.
Even though the extension is running in its own sandbox and other services/extensions should not be able to read the data this is a security issue.
We should encrypt all localstorage entries.