Here is the full incident report on the Schedly app compromise. - The app got my signer on January 8 (if it matters: before Neynar's acquisition of Farcaster was announced) - Yesterday, most likely, they realized it was a good time to go rogue with the permissions they had on behalf of users or they got compromised Only way to fully prevent this is to not give write access to apps. This is not specific to crypto or Farcaster (e.g. giving access to Buffer for Twitter). Their database leak had nothing to do with the tools or the platform, they explicitly chose to store user secrets in a database of their choice and did not rotate their API key when they found the issue. We have verified there were no data leaks on Neynar or Farcaster systems that caused this. Re: why did I use this app - I think scheduling is a genuinely useful utility. Based on the app's usage data, many other users thought the same. It's a shame this happened. https://neynar.notion.site/External-Schedly-app-compromise-30a655195a8b8087bbf3ec8af96c4c93?source=copy_link