You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Jun 2, 2026. It is now read-only.
Right now offchain merely validates that the values sent to its API by the client are of the correct type. It would be better to implement validation of the values as well. While the ddos middleware and signature verification already protect the app from the majority of potential attacks, theoretically (although this is very unlikely) somebody could still slowly pollute our database with gibberish. These validations would also grant further insurance against changes in the client that may break the API in obscure ways.
Right now offchain merely validates that the values sent to its API by the client are of the correct type. It would be better to implement validation of the values as well. While the
ddosmiddleware and signature verification already protect the app from the majority of potential attacks, theoretically (although this is very unlikely) somebody could still slowly pollute our database with gibberish. These validations would also grant further insurance against changes in the client that may break the API in obscure ways.