1/ We believe in security through openness, so today we’re open-sourcing the Stelo extension!
github.com/stelo-labs/ste
We encourage you to
1. Try and find vulnerabilities in our approach
2. Install the extension directly from source
More about how Stelo works below 🧵
Conversation
Replying to
2/ Stelo is not a wallet.
It cannot move your funds and never has access to your seed phrase or private key.
Stelo “wraps” the window.ethereum JavaScript object that wallets like MetaMask inject into websites. Stelo intercepts transactions before they hit MetaMask.
5
4
8
3/ A malicious extension could modify the transaction before sending it to MetaMask and you might be tricked into signing something malicious even on a trusted site.
Stelo does NOT do this – it passes along the exact transaction the website initially sent.
2
2
5
4/ In general, you should be wary of new projects that are closed-source. Even when the developers are well-intentioned, bad things happen.
Last month users of the wallet lost more than $8m because Slope leaked seed phrases.
Quote Tweet
Let's clear some things up with respect to the recent exploit affecting some @solana wallets.
While still being thoroughly reviewed by security researchers, the hack was isolated to Slope mobile wallet users.
Show this thread
1
1
6
5/ We’re incredibly excited to contribute Stelo to the open, permissionless, interoperable ecosystem of web3 and encourage devs to fork it and build on it.
Check out the code and let us know what you think!
Quote Tweet
1/ We believe in security through openness, so today we’re open-sourcing the Stelo extension!
github.com/stelo-labs/ste
We encourage you to
1. Try and find vulnerabilities in our approach
2. Install the extension directly from source
More about how Stelo works below 
Show this thread
1
6