docs: prototype banner + scoped SECURITY (audit H1)#12
Merged
github-actions[bot] merged 1 commit intomainfrom May 7, 2026
Merged
docs: prototype banner + scoped SECURITY (audit H1)#12github-actions[bot] merged 1 commit intomainfrom
github-actions[bot] merged 1 commit intomainfrom
Conversation
Solux currently has zero crypto implementation — no key generation, no signing, no on-chain integration. README previously positioned the app as a 'self-custody mobile wallet'; users could install the APK believing they could store real SRX in it. The 'Send', 'View Seed Phrase', and 'Export Private Key' buttons are non-functional placeholders. Per 2026-05-07 audit (audits/2026-05-07-solux-audit.md H1), add a prototype banner at the top of README and update SECURITY.md scope to reflect that key-handling reports won't apply until the crypto layer lands. The repo IS still receiving security reports for UI/ build/deps vulns — that scope is preserved.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Per audit 2026-05-07 finding H1: README positions Solux as 'self-custody mobile wallet' but app is UI-only mock with zero crypto. Adds explicit PROTOTYPE / DO NOT SEND REAL FUNDS banner at top of README, updates SECURITY.md scope to match.