1. Nester dApp Frontend Stores Wallet Addresses in localStorage — Creates XSS and Third-Party Script Exposure Risk
A critical security concern has been raised in the Nester decentralized application frontend. The `wallet-provider.tsx` component, located at `apps/dapp/frontend/components/wallet-provider.tsx`, persistently stores the connected wallet's public key and wallet provider identifier in the browser's `localStorage` under th...