Skip to content

Blocklist removal request - Skyline #267750

Description

@milos-ethernal

Legitimate domains, IPs, IPFS hashes, or IPNS names

https://skyline.testnet.ethernal.work

Please explain why this content is legitimate

Hello MetaMask Security Team,

We believe this domain has been incorrectly classified as malicious and would appreciate a manual review.

Flagged domain: https://skyline.testnet.ethernal.work
Parent domain: ethernal.work — owned and operated by Ethernal Tech, GitHub: https://github.com/Ethernal-Tech
Where the warning appears: MetaMask's in-confirmation security alert ("Malicious site" / "Your assets may be at risk"), observed during transaction requests on Polygon Amoy testnet — screenshots attached.

The domain hosts the testnet-only UI of Skyline Bridge, a cross-chain bridge developed by Ethernal Tech, currently operating on test networks (Polygon Amoy, Sepolia, Nexus, Katana, Scroll, Sei, Unichain). It is used by our team and testers to exercise bridge transactions via MetaMask on EVM chains.

Note that the domain is not listed in src/config.json (blacklist or fuzzylist), so we believe the warning originates from the Blockaid-powered dApp scanning rather than this repository's list. We are filing here for visibility and have also submitted a false-positive report through the Blockaid channel — please route this wherever appropriate.

What this dApp does NOT do

  • It never requests a Secret Recovery Phrase, password, or private keys
  • It never uses eth_sign or requests blind/raw signatures
  • It never initiates transactions without an explicit user-confirmed wallet prompt
  • It does not request token approvals beyond what the bridging operation requires

Wallet connections are initiated only through the standard connection flow (EIP-1193), and every transaction and signature requires explicit confirmation in the user's wallet. Users remain in control of every action.

Likely cause of the misclassification

We suspect a name-similarity collision: the blocklist in this repository contains unrelated scam domains such as ethernalbridge.net, ethernality.live, skylinenexuspro-de.net and skyline-restore.tech. Our product ("Skyline Bridge" by "Ethernal Tech") predates our awareness of these sites and has no connection to them. Our parent domain and company are long-standing and publicly verifiable.

Verification we can provide

Project socials

We'd appreciate a manual review and clearing of the domain from the malicious classification. Happy to provide any additional information.

Thank you,
Ethernal Tech Team

Image Image Image

Is this a duplicate request?

  • I have checked the issues page and confirmed this is not a duplicate request

Metadata

Metadata

Assignees

No one assigned

    Labels

    blocklist removalIssue or PR requesting removal of a domain from the blocklistneeds more informationAuthor of PR or issue has been requested for additional information needed for resolution

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions