Add OneKey Pro and OneKey Classic 1S wallet to the wallet list #4439
Conversation
|
Thank you for your submission. Have you carefully reviewed the criteria for listing and verified that OneKey devices meet those criteria? Note that the above document specifies for the wallet description text:
You may want to update your descriptions to meet these guidelines. |
|
Thanks for the feedback. I've reviewed the criteria again and updated the description to remove the superlatives as requested. Could you please check it again? Thanks. |
|
Looks much better. Thanks. |
|
The transparency score on both submissions is |
|
Hi @crwatkins , Thank you for your patience and for pointing this out. We have worked with our third-party security partner, SlowMist, to update the audit report. This report now includes a detailed section on our reproducible build process, which should address your concerns. You can view the updated audit report here: As noted in the report, we utilize GitHub Actions for our firmware releases. This ensures the consistency and verifiability between the committed source code and the final signed firmware binaries. This verifiable build process is a standard procedure for our hardware wallet line to ensure transparency and security. We believe this addresses the checkgoodtransparencydeterministic criteria. Please let us know if you require any further information. Thank you again for your guidance. 
|
Could you provide a reference to that detailed section? I wasn't able to find it in the referenced audit report. |
|
Hi @crwatkins , My apologies for the oversight. I should have pointed you directly to the relevant section in my previous message. You can find the details on our reproducible build process on page 6 of the report, at the very end of section 3.1 Project Introduction. Thank you for your patience, and please let us know if there is anything else we can provide. |
I'm sorry, I'm still having trouble finding a "detailed section on our reproducable build process". All I see are two sentences in a note. Is that what you are referring to? What is looked for here are detailed instructions that anyone in the community can follow to produce the released build anytime, and for any releases. The good folks at Wallet Scrutiny such as @Giszmo often perform such builds for the community and do a great job recording the results. There seems to be an open issue that you might want to help them with. They seem to be pretty close, so hopefully there will be an easy solution. |
|
Hi @crwatkins , Thank you again for your patience and valuable guidance. Following your suggestion, we have been in touch with the team at Wallet Scrutiny. We provided them with the necessary information, and we're happy to report that they have now successfully verified our build. You can view the verification results directly on their website: We believe this provides the clear, community-verifiable proof of our reproducible build process that you were looking for. We appreciate your help in pushing us to improve our transparency. Please let us know if you have any other questions. 
|
|
That looks great. Thanks! Was the OneKey Classic also verified? |
|
@crwatkins Yeah, OneKey Classic also verified. You can view the verification results on their website: |
|
I'm glad you were able to verify those builds! The OneKey app appears to reuse Bitcoin addresses. Is that correct? |
|
Thank you for your feedback. You are correct, our app does currently reuse Bitcoin addresses. This approach was implemented for several reasons: to ensure compatibility for users of our previous versions, to accommodate those familiar with an account-based model, and to prevent users from mistakenly thinking funds are lost when sent to a new change address. To enhance user privacy and security, we are developing a new feature. In a future update, we will add a switch in the "Settings" that will allow users to choose whether to use a new address for each transaction. |
|
Address reuse is a severe anti-pattern I wish more people would understand for what it is. It threatens directly Bitcoin's fungibility for everybody even if a user is fine with all his past and future spendings being linked for all his trading partners to see. That's not a minor one. |
|
The listing criteria include
While technically, hardware wallets don't control the selection of receiving addresses (the companion app does) and historically these criteria have not been applied to hardware wallets (since hardware wallets are reviewed independent of the companion app), all of the hardware wallets that are currently listed either do not have a companion app (and primarily work with apps that do not reuse addresses, e.g. Coldcard) or have a companion app which does not reuse addresses. Since the OneKey companion app reuses addresses, recommending OneKey hardware would be somewhat similar to recommending address reuse. You may want to review Bitcoin wiki address reuse. OneKey address reuse not only damages the security and the privacy of its users, but it also damages the privacy of the entire community. It is concerning that any wallet would be doing this in 2025 as there have been no wallets listed that reuse address for about ten years. Advances in quantum computing have caused recent increased interest in development of quantum resistant algorithms for Bitcoin. Reused addresses create some of the most vulnerable funds to quantum attacks and this is reasonably easy to avoid. For these reasons, I highly recommend proceeding quickly with a mandatory feature to provide new addresses for each transaction. |
|
Hi @crwatkins, Thank you for the valuable feedback. We acknowledge the seriousness of the address reuse issue you and @Giszmo have pointed out. We are pleased to inform you that we have prioritized this and plan to release a fix in Q4. This update will add a new setting, allowing users to enable fresh addresses for each transaction. To avoid disrupting the experience for our long-time users, this feature will be an opt-in toggle initially. We understand the ideal is for this to be the default, and we will consider making that change in the future once our user base has adapted to the new option. We appreciate your patience and guidance. We believe this plan is a solid step in the right direction. Let us know what you think. |
|
I appreciate your understanding. Note that wallets are evaluated and scored based on default behavior. New addresses should be available automatically. You might also want to consider a suggestion to your existing users to perform a onetime transaction to move their existing funds off of reused addresses. |
…improved clarity and conciseness.
|
Hi @crwatkins, Following up on our discussion regarding the BTC address reuse issue. We are pleased to inform you that we have added support for fresh BTC addresses in our latest release, v5.16.0. Critically, based on your feedback that this needed to be the default behavior, this new feature is enabled by default. As noted in the official release notes:
You can find the full release notes here: https://github.com/OneKeyHQ/app-monorepo/releases/tag/v5.16.0 Thank you again for your valuable feedback and guidance on this. Please let us know if there is anything else we can assist you with. |
|
That's great news for your users! Thanks for the new release. |
|
Hi @crwatkins, Just gently checking in. Please let us know if there's anything else you need from our side for the merge. Thanks! |
|
There was an issue with our build server. If you push another commit it will trigger a build and then the tests can run which will speed up a merge. |
7 participants
Looking forward to your review and approval.