SShortSingh.
Back to feed

Solana Token Extensions Let Issuers Mint and Revoke Credentials Without User Consent

0
·1 views

A developer building on Solana's Token-2022 program combined the Non-Transferable and Permanent Delegate extensions to create soulbound credentials that holders cannot sell, trade, or transfer. The Non-Transferable extension enforces this restriction at the protocol level, meaning transfer attempts are rejected by the blockchain itself rather than by any application backend. The Permanent Delegate extension allows the token issuer to burn or reclaim a token from any holder's wallet without requiring the holder's signature or approval. This pattern is already in production use: Paxos applies the Permanent Delegate extension to its USDP stablecoin to claw back funds linked to illegal activity under regulatory requirements. The setup raises questions about the nature of digital ownership when an issuer retains unilateral revocation rights enforced entirely by on-chain code.

Read the full story at DEV Community

This is an AI-generated summary. ShortSingh links to the original source for the complete article.

Discussion (0)

Log in to join the discussion and vote.

Log in

Related stories

0
ProgrammingHacker News ·

Texas A&M Scientists Develop Nasal Spray That May Reverse Brain Aging

Researchers at Texas A&M University have developed a nasal spray that shows promise in reversing brain aging, according to a report published on April 14, 2026. The treatment is delivered nasally, allowing it to bypass the blood-brain barrier and act more directly on the brain. The scientists claim the spray demonstrated measurable reversal of age-related brain changes in their study. While the findings are considered significant, the research is still at an early stage and further validation will be needed before any clinical application. The development has attracted attention in the scientific community as a potential non-invasive approach to combating neurological aging.

0
ProgrammingDEV Community ·

Apple Adds Official Safari MCP Server in Technology Preview 247 for AI Debugging

Apple shipped an official Safari MCP server with Safari Technology Preview 247 in early July 2026, marking the first time a major browser vendor has natively integrated Model Context Protocol support for AI-driven debugging. The server is built on safaridriver and exposes 17 tools covering navigation, DOM inspection, element interaction, network capture, console logging, and screenshots. It runs entirely on the user's machine with no data sent to Apple, and each AI session launches in an isolated window with no access to personal browser data such as cookies, logins, or autofill. Before this release, all MCP browser automation tools relied on Chromium, forcing Mac developers who prefer Safari to run a second browser solely for AI agent tasks. The server is currently available only in Safari Technology Preview and not yet in the stable Safari release.

0
ProgrammingDEV Community ·

Checkov Tool Catches 35 Security Flaws in 70 Lines of Terraform IaC Code

Infrastructure as Code (IaC) configurations written in Terraform can carry serious security vulnerabilities, just like application code, according to a developer experiment published on DEV Community. The author deliberately wrote an insecure AWS Terraform setup featuring a public S3 bucket, open security groups, an unencrypted database with a hardcoded password, and a wildcard IAM admin policy. Running Checkov, an open-source SAST tool maintained by Prisma Cloud with over 1,000 built-in policies, against just 70 lines of code surfaced 35 failed security checks in seconds without requiring any AWS credentials. The author then remediated all 35 issues and integrated the Checkov scan into a GitHub Actions CI pipeline to catch misconfigurations automatically before deployment. Similar real-world misconfigurations have been linked to major data breaches, including incidents involving Capital One and exposed US voter records.

0
ProgrammingDEV Community ·

How AI Agents Are Shifting Software Development From Prompts to Goals

A frontend developer shares their firsthand exploration of agentic software development, a growing approach where AI is given broader objectives rather than single-task prompts. Unlike traditional AI interactions that require a developer to initiate each step, AI agents operate in a continuous loop — planning, executing, and evaluating progress until a goal is met. The developer notes that tools like this could automate repetitive tasks such as setting up project structures, freeing engineers to focus on product thinking and user experience. Despite the shift, the author argues that developers remain essential for understanding requirements and ensuring the right solutions are delivered. The key takeaway is that AI is evolving from answering questions to completing entire software workflows, though human judgment and problem-solving remain irreplaceable.

Solana Token Extensions Let Issuers Mint and Revoke Credentials Without User Consent · ShortSingh