Legitimate domains, IPs, IPFS hashes, or IPNS names
https://skyline.testnet.ethernal.work
Please explain why this content is legitimate
Hello MetaMask Security Team,
We believe this domain has been incorrectly classified as malicious and would appreciate a manual review.
Flagged domain: https://skyline.testnet.ethernal.work
Parent domain: ethernal.work — owned and operated by Ethernal Tech, GitHub: https://github.com/Ethernal-Tech
Where the warning appears: MetaMask's in-confirmation security alert ("Malicious site" / "Your assets may be at risk"), observed during transaction requests on Polygon Amoy testnet — screenshots attached.
The domain hosts the testnet-only UI of Skyline Bridge, a cross-chain bridge developed by Ethernal Tech, currently operating on test networks (Polygon Amoy, Sepolia, Nexus, Katana, Scroll, Sei, Unichain). It is used by our team and testers to exercise bridge transactions via MetaMask on EVM chains.
Note that the domain is not listed in src/config.json (blacklist or fuzzylist), so we believe the warning originates from the Blockaid-powered dApp scanning rather than this repository's list. We are filing here for visibility and have also submitted a false-positive report through the Blockaid channel — please route this wherever appropriate.
What this dApp does NOT do
- It never requests a Secret Recovery Phrase, password, or private keys
- It never uses
eth_sign or requests blind/raw signatures
- It never initiates transactions without an explicit user-confirmed wallet prompt
- It does not request token approvals beyond what the bridging operation requires
Wallet connections are initiated only through the standard connection flow (EIP-1193), and every transaction and signature requires explicit confirmation in the user's wallet. Users remain in control of every action.
Likely cause of the misclassification
We suspect a name-similarity collision: the blocklist in this repository contains unrelated scam domains such as ethernalbridge.net, ethernality.live, skylinenexuspro-de.net and skyline-restore.tech. Our product ("Skyline Bridge" by "Ethernal Tech") predates our awareness of these sites and has no connection to them. Our parent domain and company are long-standing and publicly verifiable.
Verification we can provide
Project socials
We'd appreciate a manual review and clearing of the domain from the malicious classification. Happy to provide any additional information.
Thank you,
Ethernal Tech Team
Is this a duplicate request?
Legitimate domains, IPs, IPFS hashes, or IPNS names
https://skyline.testnet.ethernal.work
Please explain why this content is legitimate
Hello MetaMask Security Team,
We believe this domain has been incorrectly classified as malicious and would appreciate a manual review.
Flagged domain: https://skyline.testnet.ethernal.work
Parent domain:
ethernal.work— owned and operated by Ethernal Tech, GitHub: https://github.com/Ethernal-TechWhere the warning appears: MetaMask's in-confirmation security alert ("Malicious site" / "Your assets may be at risk"), observed during transaction requests on Polygon Amoy testnet — screenshots attached.
The domain hosts the testnet-only UI of Skyline Bridge, a cross-chain bridge developed by Ethernal Tech, currently operating on test networks (Polygon Amoy, Sepolia, Nexus, Katana, Scroll, Sei, Unichain). It is used by our team and testers to exercise bridge transactions via MetaMask on EVM chains.
Note that the domain is not listed in
src/config.json(blacklist or fuzzylist), so we believe the warning originates from the Blockaid-powered dApp scanning rather than this repository's list. We are filing here for visibility and have also submitted a false-positive report through the Blockaid channel — please route this wherever appropriate.What this dApp does NOT do
eth_signor requests blind/raw signaturesWallet connections are initiated only through the standard connection flow (EIP-1193), and every transaction and signature requires explicit confirmation in the user's wallet. Users remain in control of every action.
Likely cause of the misclassification
We suspect a name-similarity collision: the blocklist in this repository contains unrelated scam domains such as
ethernalbridge.net,ethernality.live,skylinenexuspro-de.netandskyline-restore.tech. Our product ("Skyline Bridge" by "Ethernal Tech") predates our awareness of these sites and has no connection to them. Our parent domain and company are long-standing and publicly verifiable.Verification we can provide
ethernal.work/ethernal.techwith any requested valueProject socials
We'd appreciate a manual review and clearing of the domain from the malicious classification. Happy to provide any additional information.
Thank you,
Ethernal Tech Team
Is this a duplicate request?