Isn't the fake repo event issue similar to spoofing NIP05 for domains you don't own?
Sure, anyone can pretend to have elon@x.com nip05, but there is an easy way to verify it.
Sure WoT all things, but clients should also be able to easily verify that the repo holds the maintainers.yml ?
sommerfeld
npub16r…kz5pl
2024-05-16 10:49:55
in reply to nevent1q…n93q
Author Public Key
npub16r0tl8a39hhcrapa03559xahsjqj4s0y6t2n5gpdk64v06jtgekqdkz5plPublished at
2024-05-16 10:49:55Event JSON
{
"id": "17e6e3fbe854c345284652b02f22c145a890a3d773c94962a6f35363eac3bc15",
"pubkey": "d0debf9fb12def81f43d7c69429bb784812ac1e4d2d53a202db6aac7ea4b466c",
"created_at": 1715856595,
"kind": 1,
"tags": [
[
"e",
"59e84e17e96882a216998421ca7ec0f155754f99c0e6cfcfce18a30cdf9d75d3",
"",
"root"
],
[
"e",
"59e84e17e96882a216998421ca7ec0f155754f99c0e6cfcfce18a30cdf9d75d3",
"",
"root"
],
[
"e",
"9e35d157ea7d0400e036ebc6a7773160817e4e6d928cf735de059d4003a77e19",
"",
"reply"
],
[
"p",
"a008def15796fba9a0d6fab04e8fd57089285d9fd505da5a83fe8aad57a3564d"
],
[
"r",
"elon@x.com"
],
[
"r",
"maintainers.yml"
]
],
"content": "Isn't the fake repo event issue similar to spoofing NIP05 for domains you don't own?\nSure, anyone can pretend to have elon@x.com nip05, but there is an easy way to verify it.\nSure WoT all things, but clients should also be able to easily verify that the repo holds the maintainers.yml ?",
"sig": "a481bb523371774a3f55bc9851fda232574319eaffdc5fe9ba9b316f4d87b4b737cb2510dff84079bba1a84304d5a2e611517e27b967047a4204db39e98bf454"
}