Browser extension wallet for Counterparty on Bitcoin.
- Multiple wallets and address types (SegWit, Taproot, Legacy)
- Send/receive BTC and Counterparty assets
- Create dispensers and DEX orders
- Issue and manage assets
- Connect to dApps via provider API
- BIP-322 message signing
Coming soon to Chrome Web Store.
Not yet independently audited. See AUDIT.md for our self-reported security feature checklist.
Key protections:
- AES-256-GCM encryption with PBKDF2 (600k iterations)
- Local transaction verification (detects malicious API responses)
- Audited crypto libraries (noble family, Cure53 audited)
- Minimal permissions, MV3 strict CSP, no remote code
Does not protect against: compromised OS, malicious extensions with higher privileges, physical access to unlocked device.
Report vulnerabilities via GitHub Security Advisories or see our bug bounty.
We intentionally minimized runtime dependencies—most wallets ship dozens, we ship 12. What remains is carefully vetted.
| Package | Purpose |
|---|---|
| @noble/curves, @noble/hashes, @scure/* | Audited cryptography |
| bignumber.js | Arbitrary precision arithmetic |
| react, react-router-dom | UI framework |
| @headlessui/react | Accessible components |
| webext-bridge | Extension messaging |
npm install
npm run dev # Chrome
npm run dev:firefoxnpm run build # Production build
npm run zip # Create extension ZIPnpm test # All tests
npm run test:unit # Unit only
npm run test:e2e # E2E onlyMIT