Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Harden WebAssembly by allowing it to be used only through permission #1150

Closed
david0xd opened this issue Jan 24, 2023 · 0 comments · Fixed by #1185 or MetaMask/metamask-extension#17694
Assignees
Labels
type-security Related to enforcing our security model.

Comments

@david0xd
Copy link
Contributor

david0xd commented Jan 24, 2023

Because of the complexity of the WebAssembly endowment additional hardening is required.

Hardening WebAssembly endowment will include:

  • Removing the WebAssembly from default endowments.
  • Create a new permission endowment:webassembly which adds access to it.
  • Make the endowment:webassembly only usable in Flask.
@david0xd david0xd added the type-security Related to enforcing our security model. label Jan 24, 2023
@david0xd david0xd added this to the MetaMask Snaps v1 milestone Jan 24, 2023
@david0xd david0xd changed the title TBD: Find a solution for hardening WebAssembly Harden WebAssembly by allowing it to be used only through permission Jan 26, 2023
@david0xd david0xd self-assigned this Feb 8, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
type-security Related to enforcing our security model.
Projects
None yet
1 participant