Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/polkadot-js/phishing

A curated list of known less-than-honest operators on Polkadot and Substrate networks. Includes a simple JS utility function to check any host or address against this list.
https://github.com/polkadot-js/phishing

blockchain phishing polkadot polkadot-js substrate

Last synced: 6 days ago
JSON representation

A curated list of known less-than-honest operators on Polkadot and Substrate networks. Includes a simple JS utility function to check any host or address against this list.

Host: GitHub
URL: https://github.com/polkadot-js/phishing
Owner: polkadot-js
License: apache-2.0
Created: 2020-09-21T12:57:12.000Z (about 4 years ago)
Default Branch: master
Last Pushed: 2024-10-29T17:37:56.000Z (15 days ago)
Last Synced: 2024-10-29T18:57:53.789Z (15 days ago)
Topics: blockchain, phishing, polkadot, polkadot-js, substrate
Language: TypeScript
Homepage: https://polkadot.js.org/phishing/
Size: 31.5 MB
Stars: 195
Watchers: 12
Forks: 149
Open Issues: 2
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE

Awesome Lists containing this project

README

        # @polkadot/phishing

A curated list of potentially less-than-honest sites inclusive of a simple JS utility function to check any host against this list.

### Additions

To add a new site, edit [all.json](https://github.com/polkadot-js/phishing/edit/master/all.json) and add any new entries, single or multiple is allowed per edit.

To add a new scam address (typically per site), edit [address.json](https://github.com/polkadot-js/phishing/edit/master/address.json) and add it in the correct section (which is keyed by the site providing them).

### Availability

Making additions to the list will be reflected on merge at [polkadot.js.org/phishing/all.json](https://polkadot.js.org/phishing/all.json) &  [polkadot.js.org/phishing/address.json](https://polkadot.js.org/phishing/address.json). These can be consumed via [@polkadot/phishing](https://github.com/polkadot-js/phishing/tree/master/packages/phishing) and other tools capable of parsing JSON.

The `{address, all}.json` files are also published to IPFS, via [ipns/phishing.dotapps.io](https://ipfs.io/ipns/phishing.dotapps.io/). Libraries can also consume from here for a decentralized approach.

## Notable users

The following wallets integrate either address or site blocking from these lists:

- [polkadot{.js} extension](https://github.com/polkadot-js/extension)

- [polkadot{.js} apps](https://polkadot.js.org/apps)

- [Nova Wallet](https://novawallet.io/)

- [Fearless Wallet](https://fearlesswallet.io/)

- [polkadot js Plus](http://polkadotjs.plus)

- [SubWallet](https://subwallet.app/)

- [Talisman](https://talisman.xyz)

### Integration

Since the lists are published as JSON, integration for any non-JS wallets (only a JS library that is provided) should be simple - retrieve the applicable list, parse the JSON, and do the required checks either on the host or address as per the requirements. The Javascript library does have some features that may be worth thinking about for other integrations -

- instead of retrieving the list each time a request is made, a local copy is cached for 45 minutes and then re-retrieved when the timer expires (as a request is made)

- for address checks, the check is done on the decoded ss58 address to ensure that network-jumps with the same keys are avoided (so addresses do not have to be re-added for other networks, a single entry will cover all)

### Contributing

These lists are intended to be maintained with active input from the community, so contributions are welcome, either via a pull request (edit above as described in additions) or by [logging an issue](https://github.com/polkadot-js/phishing/issues).