Bitcoin Wallet Chrome Extension

[AndrewToth]

The Bitcoin Wallet Chrome Extension is the easiest way to send and receive Bitcoin while browsing the web. It sits right in the browser and also integrates directly in all pages to let you right click on addresses or click directly on send links to send Bitcoin.

http://www.youtube.com/watch?v=DfoyuBTudDs

https://i.imgur.com/JGPC6BK.png
https://i.imgur.com/D78hpPw.png
https://i.imgur.com/bdtt6JW.png

http://imgur.com/a/rMvdO

https://chrome.google.com/webstore/detail/bitcoin-wallet/mjjfjonhlkajifgkcmmgadaimemcihcj

And yes it's open source. All Chrome extensions are open source. You can download any extension at http://chrome-extension-downloader.com/ and replace .crx with .zip to see the source.

[AndrewToth]

Here's the source for all you skeptics https://github.com/andrewtoth/BitcoinWallet.

[roslinpl]

Here's the source for all you skeptics https://github.com/andrewtoth/BitcoinWallet.

I will test it and let you know what I think

[empoweoqwj]

Here's the source for all you skeptics https://github.com/andrewtoth/BitcoinWallet.

I don't need the source code. I need somebody who's qualified to examine the source code to do a security audit on it and then, when you alter the code, re-do the audit .... and on and on.

[AndrewToth]

[...] and then, when you alter the code, re-do the audit .... and on and on.

That's why I also posted instructions in GitHub on how to download the source and create your own version of the extension outside of the Chrome Web Store. This will let you not be dependent on automatic updates from the store so you always know exactly what code you're using

[empoweoqwj]

but how many people can audit source code competently? 0.1% of population? And you'd have to pay them to do that ....... see the problem?

[AndrewToth]

I'm sure the percentage of people who can audit the code that are on this forum is closer to 99% than 0.1%. It's not a very complex app, perhaps 1000 lines of JavaScript. It's very easy to see if anything malicious is being done. The fact is none of your wallet data ever leaves the browser so there is no server component that can be compromised. Once you have encrypted your wallet nobody can access your private key without the password (not even the extension itself).

[empoweoqwj]

I'm sure the percentage of people who can audit the code that are on this forum is closer to 99% than 0.1%. It's not a very complex app, perhaps 1000 lines of JavaScript. It's very easy to see if anything malicious is being done. The fact is none of your wallet data ever leaves the browser so there is no server component that can be compromised. Once you have encrypted your wallet nobody can access your private key without the password (not even the extension itself).

OK fair enough - 1000 lines is certainly doable. But 99%? Not a chance. I bet only 10% of people on this forum understand the first thing about .js code