Harden WebAssembly by allowing it to be used only through permission #1150

david0xd · 2023-01-24T11:50:10Z

Because of the complexity of the WebAssembly endowment additional hardening is required.

Hardening WebAssembly endowment will include:

Removing the WebAssembly from default endowments.
Create a new permission endowment:webassembly which adds access to it.
Make the endowment:webassembly only usable in Flask.

The text was updated successfully, but these errors were encountered:

david0xd added the type-security Related to enforcing our security model. label Jan 24, 2023

david0xd added this to the MetaMask Snaps v1 milestone Jan 24, 2023

david0xd mentioned this issue Jan 24, 2023

Harden custom and common endowments and add tests #1015

Closed

david0xd changed the title ~~TBD: Find a solution for hardening WebAssembly~~ Harden WebAssembly by allowing it to be used only through permission Jan 26, 2023

david0xd self-assigned this Feb 8, 2023

This was referenced Feb 8, 2023

Add WebAssembly permission #1185

Merged

[FLASK] Add WebAssembly endowment MetaMask/metamask-extension#17694

Merged

david0xd closed this as completed in #1185 Feb 20, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Harden WebAssembly by allowing it to be used only through permission #1150

Harden WebAssembly by allowing it to be used only through permission #1150

david0xd commented Jan 24, 2023 •

edited

Loading

Harden WebAssembly by allowing it to be used only through permission #1150

Harden WebAssembly by allowing it to be used only through permission #1150

Comments

david0xd commented Jan 24, 2023 • edited Loading

david0xd commented Jan 24, 2023 •

edited

Loading