Add TxScope — Solana multisig pre-signing threat scanner#444
Add TxScope — Solana multisig pre-signing threat scanner#444mattaereal merged 1 commit intosecurity-alliance:developfrom
Conversation
|
This PR needs approval of @JosepBove and @pinalikefruit as stewards of the two frameworks touched. Also, to be merged, we need all the commits to be signed. We made a small guide to fix this here -> https://frameworks.securityalliance.dev/contribute/contributing#fixing-unsigned-commits. Keep in mind that this guide assumes you already have a signing key set up |
pinalikefruit
left a comment
pinalikefruit
left a comment
There was a problem hiding this comment.
Thanks for the support @txscope-sol , everything's fine on my side @scode2277
Adds TxScope to monitoring tools and wallet security tools pages. TxScope is a Solana-native pre-signing transaction threat scanner for Squads Protocol multisigs, filling the non-EVM tooling gap noted in the current tools page. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
txscope-sol
force-pushed
the
add-txscope
branch
from
b0fa9d9 to
14ad103
Compare
|
Apologies for the delay on the signing. The commit is now signed and should show as verified. On a related note, we're currently looking for protocol teams to trial TxScope on their Squads multisigs. If you know any teams that might benefit from pre-signing transaction analysis, we'd appreciate an introduction. Happy to set up a free trial for any SEAL-affiliated protocol. |
built with Refined Cloudflare Pages Action⚡ Cloudflare Pages Deployment
|
scode2277
left a comment
scode2277
left a comment
There was a problem hiding this comment.
Thanks again for your contribution @txscope-sol!
gtg @mattaereal!
frameworks-volunteer
left a comment
frameworks-volunteer
left a comment
There was a problem hiding this comment.
Model: z-ai/glm-5.1 Reasoning: high Provider: openrouter
Security review: clean. No secrets, injection vectors, or suspicious content. External link (txscope.com) resolves HTTP 200. Pure documentation addition.
QA review: clean. Placement and formatting consistent with existing entries in both files. TxScope entry correctly placed under Commercial / Hosted in monitoring/tools.mdx and as a new "Solana Multisig Monitoring" sub-section in wallet-security/tools-and-resources.mdx. The Solana-specific sub-heading properly distinguishes it from the EVM-focused existing content. No frontmatter changes needed. No debug content or placeholders.
One observation (non-blocking): The monitoring/tools.mdx page intro explicitly notes the EVM focus (lines 26-28). Adding TxScope is a step toward addressing that gap, which aligns with the PR's stated purpose. Future Solana/non-EVM tools could warrant updating that intro paragraph, but that's out of scope here.
Approving.
frameworks-volunteer
left a comment
frameworks-volunteer
left a comment
There was a problem hiding this comment.
Model: moonshotai/kimi-k2.6 Reasoning: high Provider: openrouter
Security: no issues. Content is factual docs-only additions. No secrets, injection vectors, or unsafe patterns. External link to txscope.com is appropriate for a tooling list entry.
QA:
- Fits existing page format and tone
- Addresses the Solana/non-EVM tooling gap noted in the monitoring page
- Internal links: none added, no broken links introduced
- Content is descriptive without being promotional
Substantive notes:
- The entry correctly positions TxScope as a pre-signing scanner (not a post-incident forensics tool), which aligns with the framework's monitoring philosophy.
- Risk scoring (0-100) and instruction-level trace are concrete capabilities, not vague marketing claims.
- Two-page placement (monitoring/tools + wallet-security/tools-and-resources) is justified: the first covers operational monitoring, the second covers multisig-specific protections.
Approving.
7 participants
Summary
Adds TxScope to the monitoring tools and wallet security tools pages as a Solana-native
pre-signing transaction threat scanner for Squads Protocol multisigs.
This addresses the non-EVM tooling gap noted in the current tools page — TxScope is
purpose-built for Solana and serves the "external transaction monitor" role described
in the multisig operations framework (SFC-MS-6.1.3, SFC-TRO-6.1.1).
What TxScope does
Relevance
Changes
docs/pages/monitoring/tools.mdx— added TxScope under Commercial / Hosted sectiondocs/pages/wallet-security/tools-and-resources.mdx— added TxScope under Monitoring & Alerting > Solana Multisig MonitoringWebsite: https://txscope.com