From 03b0261a9aa94b1204cbd034b71cd4c36025fe1c Mon Sep 17 00:00:00 2001 From: "Vedant (BAGS)" Date: Mon, 18 May 2026 01:34:22 +0530 Subject: [PATCH] =?UTF-8?q?whitelist:=20add=20getbags.app=20(BAGS=20?= =?UTF-8?q?=E2=80=94=20Solana=20Merchant=20of=20Record)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit BAGS is a Merchant of Record / payment-infrastructure product. The production checkout dApp lives at https://www.getbags.app/pay/* and signs a single bounded SPL USDC Transfer to the merchant's ATA per cart. The domain is currently being soft-flagged in Phantom (hard "Request blocked" dialog on Solana connect/sign). A concurrent allowlist request has been sent to review@phantom.com (cc review@blowfish.xyz). This PR adds the apex + wildcard to whitelist.yaml so we are shielded if the domain ever lands in fuzzylist. --- whitelist.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/whitelist.yaml b/whitelist.yaml index d59054b4..025a1a52 100644 --- a/whitelist.yaml +++ b/whitelist.yaml @@ -30,4 +30,6 @@ - url: "*.tistory.com" - url: "*.surge.sh" - url: revoke.cash - - url: nftplus.io \ No newline at end of file + - url: nftplus.io + - url: getbags.app + - url: "*.getbags.app"