Nonce Kit par lalit
Warn before signing durable-nonce Solana transactions.
MĂ©tadonnĂ©es de lâextension
Ă propos de cette extension
Nonce Kit blocks the wallet popup until you confirm, when a Solana dApp asks you to sign a durable-nonce transaction. Standard transactions pass through unchanged with a small toast notification.
WHY IT MATTERS
A normal Solana transaction expires in about 60 seconds when its recent blockhash rotates. A durable-nonce transaction does not â its first instruction is SystemProgram.AdvanceNonceAccount, which keeps the same signed bytes valid for days or weeks after you sign.
That flexibility is useful for offline signing and multisig. On a random dApp, it's a footgun:
âą A phishing site can collect your signature today and submit it next week at a worse price.
âą A "harmless" approval can be held until a token unlock or governance vote.
âą Bytes can be replayed against a wallet long after you sign.
WHAT IT DOES
When the dApp calls signTransaction, signAllTransactions, signAndSendTransaction, or sendTransaction with a durable-nonce transaction, Nonce Kit intercepts the call BEFORE the wallet popup opens and shows a hard modal with:
âą The wallet name making the request
âą Fee payer, nonce account, nonce authority
âą Instruction count, signer count, program IDs
You choose Block (the dApp gets a rejection, wallet is never prompted) or Sign anyway (your wallet popup opens normally).
Standard recent-blockhash transactions get a small top-right toast and pass straight through. Nothing slows down for normal use.
WALLETS COVERED
âą Phantom, Solflare, Backpack, Glow (legacy window.solana and named globals)
âą Any Wallet Standard wallet (registers via wallet-standard:register-wallet)
âą Late-injected wallets via MutationObserver
PRIVACY AND PERMISSIONS
âą No data collection. No telemetry. No analytics.
âą No network access. No storage. No background script.
âą Single content script, ~12 KB, zero runtime dependencies.
âą Modal renders in a closed shadow DOM so hostile pages cannot programmatically dismiss it.
âą Fail-closed: if the page tries to remove the modal, or you don't respond within 90 seconds, the transaction is blocked.
LIMITATIONS
âą signMessage (off-chain message signing) is not gated.
âą Wallets that route signing through methods outside the four hooked above will bypass silently â your wallet's own approval popup is the last line of defense there.
Source: https://github.com/lalitcap23/nonce-kit
WHY IT MATTERS
A normal Solana transaction expires in about 60 seconds when its recent blockhash rotates. A durable-nonce transaction does not â its first instruction is SystemProgram.AdvanceNonceAccount, which keeps the same signed bytes valid for days or weeks after you sign.
That flexibility is useful for offline signing and multisig. On a random dApp, it's a footgun:
âą A phishing site can collect your signature today and submit it next week at a worse price.
âą A "harmless" approval can be held until a token unlock or governance vote.
âą Bytes can be replayed against a wallet long after you sign.
WHAT IT DOES
When the dApp calls signTransaction, signAllTransactions, signAndSendTransaction, or sendTransaction with a durable-nonce transaction, Nonce Kit intercepts the call BEFORE the wallet popup opens and shows a hard modal with:
âą The wallet name making the request
âą Fee payer, nonce account, nonce authority
âą Instruction count, signer count, program IDs
You choose Block (the dApp gets a rejection, wallet is never prompted) or Sign anyway (your wallet popup opens normally).
Standard recent-blockhash transactions get a small top-right toast and pass straight through. Nothing slows down for normal use.
WALLETS COVERED
âą Phantom, Solflare, Backpack, Glow (legacy window.solana and named globals)
âą Any Wallet Standard wallet (registers via wallet-standard:register-wallet)
âą Late-injected wallets via MutationObserver
PRIVACY AND PERMISSIONS
âą No data collection. No telemetry. No analytics.
âą No network access. No storage. No background script.
âą Single content script, ~12 KB, zero runtime dependencies.
âą Modal renders in a closed shadow DOM so hostile pages cannot programmatically dismiss it.
âą Fail-closed: if the page tries to remove the modal, or you don't respond within 90 seconds, the transaction is blocked.
LIMITATIONS
âą signMessage (off-chain message signing) is not gated.
âą Wallets that route signing through methods outside the four hooked above will bypass silently â your wallet's own approval popup is the last line of defense there.
Source: https://github.com/lalitcap23/nonce-kit
Noté 0 par 1 personne
Autorisations et données
Autorisations nécessaires :
- Accéder à vos données pour tous les sites web
Collecte de données :
- Le dĂ©veloppeur indique que cette extension nâa pas besoin de collecter de donnĂ©es.
Plus dâinformations
- Liens du module
- Version
- 0.1.0
- Taille
- 13,29Â Ko
- DerniĂšre mise Ă jour
- il y a 5 jours (24 mai 2026)
- Catégories associées
- Licence
- Mozilla Public License 2.0
- Historique des versions
- Ajouter Ă la collection