Skip to content

Synchronize repository#265736

Merged
samczsun merged 1 commit into
MetaMask:mainfrom
security-alliance-bot:33e996f6-0db6-443d-b456-df94330aa207
Jul 8, 2026
Merged

Synchronize repository#265736
samczsun merged 1 commit into
MetaMask:mainfrom
security-alliance-bot:33e996f6-0db6-443d-b456-df94330aa207

Conversation

@security-alliance-bot

@security-alliance-bot security-alliance-bot commented Jul 8, 2026

Copy link
Copy Markdown
Collaborator

This is an automated pull request to synchronize this repository with the latest configuration


Note

Low Risk
Only extends the phishing blocklist; no logic or auth changes, with minimal blast radius beyond blocking two more domains.

Overview
Automated config sync adds two hostnames to the phishing blacklist in config.json: foundation.severian.rastocky.sk and variational-proposal.xyz. The trailing comma on the previous last entry is fixed so the JSON array stays valid.

Those entries are consumed by PhishingDetector via checkDomain in src/index.ts, so visits to these domains should be flagged as phishing alongside the existing blocklist.

Reviewed by Cursor Bugbot for commit ab57b10. Bugbot is set up for automated code reviews on this repo. Configure here.

@samczsun samczsun added the blocklist addition Issue or PR requesting addition of a domain to the blocklist label Jul 8, 2026
@samczsun samczsun merged commit f4bd5e2 into MetaMask:main Jul 8, 2026
6 checks passed
@security-alliance-bot security-alliance-bot deleted the 33e996f6-0db6-443d-b456-df94330aa207 branch July 8, 2026 14:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

blocklist addition Issue or PR requesting addition of a domain to the blocklist

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants