From b7b79ed3157de451eba1a39fdbefd57220cc0031 Mon Sep 17 00:00:00 2001 From: Nicholas Rodrigues Lordello Date: Thu, 15 Aug 2024 12:02:08 +0200 Subject: [PATCH] Remove Not Audited Note Previously, we had a note in the passkey 4337 contracts README that the shared signer contract was not audited. This is no longer true, so the note can be removed. --- modules/passkey/contracts/4337/README.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/modules/passkey/contracts/4337/README.md b/modules/passkey/contracts/4337/README.md index c4245a63..05e597ba 100644 --- a/modules/passkey/contracts/4337/README.md +++ b/modules/passkey/contracts/4337/README.md @@ -6,8 +6,6 @@ This directory contains additional support contracts for using passkeys with Saf > > **As such, for the moment, we recommend that Safes be created with an ownership structure or recovery mechanism that allows passkey owners to be rotated in case access to the WebAuthn credential is lost.** -**:warning: As of writing, this contract has not been audited, as such it is not recommended for production use. :warning:** - ## Overview The core contract provided by the `passkey` module is the `SafeWebAuthnSignerFactory` contract which can be used to create smart contract signers that can be used as owners of Safes. These WebAuthn signers are fully supported both with traditional Safe transactions and infrastructure, as well as ERC-4337. In fact, they are designed such that no storage is read during signature verification (all configuration - the WebAuthn credential public key coordinates and the P-256 verifier contract to use) are stored in contract code instead of account storage for compatibility with ERC-4337.