Skip to content

fix(addon): harden token bridge and deliver the passphrase to the add-on (#953)#975

Open
aaspinwall wants to merge 1 commit into
mainfrom
fix/token-bridge-passphrase-hardening
Open

fix(addon): harden token bridge and deliver the passphrase to the add-on (#953)#975
aaspinwall wants to merge 1 commit into
mainfrom
fix/token-bridge-passphrase-hardening

fix(addon): harden token bridge and reliably share passphrase with ad…

fe60f63
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Jul 9, 2026 in 2s

1 new alert including 1 high severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

  • 1 high

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 24 in packages/send/frontend/src/lib/storage/LocalStorage.ts

See this annotation in the file changed.

Code scanning / CodeQL

Clear text storage of sensitive information High

This stores sensitive data returned by
an access to passphrase
as clear text.
This stores sensitive data returned by an access to passPhrase as clear text.