Nash is non custodial, but i’m not sure if i can agree with the “trust yourselves” line of nash.
I’d like to talk about being really non-custodial, and for how much we have to trust Nash as a exchange instead of just ourselves.
This topic is meant as a discussion and is not meant for accusations. I am not accusing the team, simply exploring how safe nash can be considered.
So the problem i have, is how do we know the code thats live on the nash exchange is trustworthy? For all we know, a next maintenance could enable the team to secretly make everyone who deposits to a trading contract, deposit their funds straight into nash’s own wallets and gone are your funds. or change the smart contract so nash always has access to your funds as well.
This is again extremely unlikely to happen, but imagine if someone threaten’s a employee’s family in order to make this. Are there requirements to pushing updates? multiple person’s approvals required?
What about private keys, they could be made visible to nash themselfs as well with some bad intent code. (but same applies to myetherwallet’s website i suppose)
There is a github available i see, but i am unfortunately not a coder myself (except some basics) and else it would probably be too much to go through.
But it would still mean we need to trust the team to have the github on the live website i guess, instead of pushing things not on github yet.
Again, i apologise if this is read as baseless fud or accusations, but i think it’s healthy to have a discussion regarding this topic.
Thanks for reading!