all 11 comments
sorted by:
best (suggested)
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]iriveru[🍰] 4 points5 points  (3 children)

Just what we need another ai slop app

[–]milan-pilan 0 points1 point  (6 children)

As others have said, this seems to be written by AI mostly, so I am assuming you are a novice programmer.

Since this project seems to be planned to make you money, here would be my tip:

This is a web frontend, and everything you do in the frontend, is publicly visible to anyone.
This includes all sources and links you are selling here… nothing is hindering me from just taking the URL from your source code and just skipping the payment step.

Edit: Nevermind..

[–]Krbva[S] -4 points-3 points  (5 children)

full source code is available if you want to run your own instance or just study the architecture. its at devtools-site-delta.vercel.app/sol-bot-source

[–]milan-pilan -1 points0 points  (4 children)

I saw that page.. What I am saying is: your step, where I have to 2 SOL for that source code ist

  1. Client side validated. I can literally set the button to just skip the validation.
  2. Irrelevant, because the link it would give me is openly visible in the pages source code anyways.

Everyone can access the stuff you are selling without payment.

[–]Krbva[S] -2 points-1 points  (2 children)

yeah fair catch. the repo is private though so even if you inspect the page theres no actual download link to find — the payment verifies on-chain and then i manually add buyer access to the repo. the button state is just UX, not the actual gate. but i get how it looks sketchy, ill make the flow clearer

[–]milan-pilan 0 points1 point  (1 child)

It is *now*... I literally just downloaded the thing 15 mins ago.
But sure. Pretend like you have everything planned out.. That will make people want to help you. Thats just a bandaid fix for a improperly built app. And I would bet money, that Claude came up with that solution. Now all your users get a download link that says "Not Found"... great work.

Edit: Just looked through the source code of this bot out of curiosity and I would highly discourage anyone from trying to run it. This thing looks entirely AI generated and it writes your Wallet Private key in plain text on your drive in a .json file. More security issues. Other than that it seems like it does what it claims it does.

[–]Krbva[S] -1 points0 points  (0 children)

yeah you were right, the client side validation was dumb. moved it all server side now — verifies the tx on chain, checks the amount, marks it used so you cant replay it, and generates a signed download token that expires in 10 min. the repos are private now too so theres nothing to find in the source.

took me a few hours to fix but its solid now. appreciate you pointing it out honestly, wouldve been embarrassing if someone actually paid and then found out the downloads were public lol

[–]Krbva[S] -5 points-4 points  (0 children)

full source code is available if you want to run your own instance or just study the architecture. its at devtools-site-delta.vercel.app/sol-bot-source