We can also do a nip58 reporting tool for files directly. If you get a report that passes your web of trust filter, you message the owner of the file to either:
- show the image to you to prove that it is not CSAM or
- have it deleted from the servers and / or be banned from using your services.
Needless to say that encrypted blob urls should not appear in any public list of the owner's pictures.
Which means that if the user has the link, there is a good chance that the user can see the image. Then if the user files a report, from a known pubkey, you can consider it a real issue. The owner can always reveal the secret to you so that you can decrypt it and check or opt to get out of the platform.
VitorPamplona / Vitor Pamplona
npub1gc…fnj5z
2026-05-12 15:19:41 UTC
in reply to nevent1q…7hc2
Author Public Key
npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5zPublished at
2026-05-12 15:19:41 UTCEvent JSON
{
"id": "32abcb0f4eb1f41d271cea0d16092c28bef73ffc357cca5a3b1d485dab631607",
"pubkey": "460c25e682fda7832b52d1f22d3d22b3176d972f60dcdc3212ed8c92ef85065c",
"created_at": 1778599181,
"kind": 1,
"tags": [
[
"alt",
"A short note: We can also do a nip58 reporting tool for files di..."
],
[
"e",
"0796007b75507dcbf752850e1bb1960288db6d66f422c15a7d6b5105766062d5",
"wss://nostr.mom/",
"root",
"460c25e682fda7832b52d1f22d3d22b3176d972f60dcdc3212ed8c92ef85065c"
],
[
"e",
"e44710e409e6181ce149d0eb727790f189a77fa8d4f142d065efeb787df70123",
"wss://relay.damus.io/",
"",
"89e14be49ed0073da83b678279cd29ba5ad86cf000b6a3d1a4c3dc4aa4fdd02c"
],
[
"e",
"d528d069fae7ca162d528fd17c9234e8096c487c65564c874280fb1143c283d4",
"wss://nostr.wine/",
"reply",
"460c25e682fda7832b52d1f22d3d22b3176d972f60dcdc3212ed8c92ef85065c"
],
[
"p",
"460c25e682fda7832b52d1f22d3d22b3176d972f60dcdc3212ed8c92ef85065c",
"wss://nostr.wine/"
],
[
"p",
"89e14be49ed0073da83b678279cd29ba5ad86cf000b6a3d1a4c3dc4aa4fdd02c",
"wss://purplepag.es/"
],
[
"client",
"Amethyst"
]
],
"content": "We can also do a nip58 reporting tool for files directly. If you get a report that passes your web of trust filter, you message the owner of the file to either: \n- show the image to you to prove that it is not CSAM or\n- have it deleted from the servers and / or be banned from using your services.\n\nNeedless to say that encrypted blob urls should not appear in any public list of the owner's pictures. \n\nWhich means that if the user has the link, there is a good chance that the user can see the image. Then if the user files a report, from a known pubkey, you can consider it a real issue. The owner can always reveal the secret to you so that you can decrypt it and check or opt to get out of the platform.",
"sig": "95790e2f7c557e0afb9c6785876029a22821eeda4589a7ed6b57e8efb3c69d42fceed2e4eba9d9c9e8280a53ad5507230c3b4c9195cf061c5c6ffa7ed4f0d67a"
}