Trust Wallet is safe and not affected by compromised NPM (Node Package Manager) libraries. You may have seen reports of a large-scale supply chain attack involving compromised NPM libraries. This raised concerns across the industry about potential risks to software wallets and dApps. This is why Trust Wallet users are safe: 🔹 Trust Wallet repos were thoroughly reviewed and verified to confirm there is no exposure. 🔹 Our engineering processes include dependency pinning, manual code reviews, and secure release procedures. We do not use automatic package updates, which prevents malicious code from sneaking in. 🔹 All transactions must be explicitly reviewed and signed by you, the user. No silent approvals or hidden code execution. You stay in control. 🔹 On top of rigorous internal checks, we continuously monitor for abnormal activity and collaborate with ecosystem partners to flag and block malicious addresses. Trust Wallet itself is safe. But attacks like this are a reminder to stay cautious when interacting with third-party dApps or wallets: What you should do: ✅ Always check transaction details before signing. ✅ Only connect to dApps you know and trust. ✅ Keep your app updated for the latest protections. Security is at the core of everything we build at Trust Wallet. Incidents like these highlight why self-custody and transparency matter. We’ll continue working with our partners and community to maintain a safe and reliable wallet experience. 💙