Spot on Chain: Suggests friend.tech adjust API access permissions and mention information leakage issues in the privacy policy

ChainCatcher message, Spot on Chain replied to the "Data Leak Response" tweet posted by friend.tech, stating that although the wallet addresses in the API are generated by friend.tech, it is easy to trace the wallets that fund these addresses, which many people are not aware of. Therefore, friend.tech should mention this in their privacy policy.

When the API is used in a manipulative or abusive manner, API violations occur. The current access control level design is inadequate, allowing many bots to easily manipulate stock prices. With major KOLs joining, bots directly purchase multiple shares. Adjusting API access control (for example, restricting tweet information visibility to only stock purchasers) could reduce and mitigate the impact of bots to some extent (but we do not believe this will completely prevent bots). It is recommended that friend.tech update their contracts to avoid bots, thereby providing a better experience.