Skip to content

Ensure signTypedData is restricted to a domain #10576

Description

@danfinlay

EIP712 has a domain field that is meant to be used as a security measure, to restrict the range of possible signatures.

We do not currently enforce domain in any way that could prove to a contract that a signature was suggested to the wallet from a given web app.

This has been requested by an L2 team using signTypedData.

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions