Update whitelist.yaml to add and modify URLs #1804
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -30,4 +30,5 @@ | |
| - url: "*.tistory.com" | ||
| - url: "*.surge.sh" | ||
| - url: revoke.cash | ||
| - url: nftplus.io | ||
| - url: "*.withcitii.xyz" | ||
|
There was a problem hiding this comment. 🧩 Analysis chain🏁 Script executed: #!/bin/bash
# Description: Check for withcitii.xyz conflicts and gather domain information
echo "=== Checking for withcitii.xyz or citii in blocklist files ==="
rg -i 'withcitii|citii' --glob '*blocklist*.yaml' -C 2
echo -e "\n=== Checking for withcitii.xyz in fuzzylist ==="
rg -i 'withcitii|citii' fuzzylist.yaml -C 2
echo -e "\n=== Checking DNS resolution for withcitii.xyz ==="
nslookup withcitii.xyz 2>&1 || echo "DNS lookup failed"
echo -e "\n=== Checking for HTTPS availability ==="
curl -I -s -o /dev/null -w "%{http_code}" --max-time 5 https://withcitii.xyz 2>&1 || echo "HTTPS check failed"Repository: phantom/blocklist Length of output: 334 🌐 Web query:
💡 Result: withcitii.xyz does not appear to be an established web hosting platform or service provider. No information was found describing what the site is, its purpose, official documentation, company details, or user reviews identifying it as a legitimate hosting service. Web searches across general web, scam checkers like Scamadviser, Trustpilot, Reddit, and WHOIS lookups returned no direct matches or mentions of "withcitii.xyz". Similar-sounding .xyz domains (e.g., withit.xyz, witc.xyz registered March 2026 via Alibaba/HiChina with AfterNIC nameservers, citofi.xyz flagged "Very Likely Unsafe") exist but are unrelated and often recently registered with privacy protection, a common trait of low-profile or suspicious sites. .xyz domains are frequently abused for phishing and scams, as noted in cybersecurity reports on fast-flux campaigns and blocklists. Given the complete lack of online footprint as of 2026-04-04, it raises significant security concerns: it may be a non-existent, parked, or potentially malicious domain used for phishing, malware, or fraud. Avoid visiting or using it; no evidence supports legitimacy. Citations:
Do not add The domain is not a legitimate or established platform. Web search found no online presence, documentation, company details, or user reviews identifying it as a trustworthy service. withcitii.xyz appears to be an unknown or potentially malicious domain—.xyz domains are frequently abused in phishing campaigns and scam operations according to cybersecurity reports. While the domain does return an HTTP 200 response (likely a parked or default page), this does not indicate legitimacy. Adding a wildcard for this domain poses a security risk and should be rejected. 🤖 Prompt for AI Agents |
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🧩 Analysis chain
🏁 Script executed:
Repository: phantom/blocklist
Length of output: 276
🌐 Web query:
Is nftplus.io a legitimate NFT-related service or website? Are there any security concerns or scam reports associated with this domain?💡 Result:
No, nftplus.io does not appear to be a legitimate NFT-related service. There is no evidence of an active website, official documentation, company information, user reviews, or mentions in reputable sources associating nftplus.io specifically with any established NFT platform or service. Searches across general web, scam reports, reviews, Reddit, Trustpilot, and targeted queries returned zero direct hits for nftplus.io. Similar-sounding domains like nftgoplus.com, nftplus.traitswap.com, and pluspad.app exist but are distinct and not linked to nftplus.io. The complete absence of any online footprint for this exact domain, especially in the NFT space which is highly visible, indicates it is likely either non-existent, defunct, or potentially a non-operational or scam-related site not yet reported. No security concerns or scam reports were found specifically for it, but the lack of presence raises high suspicion—avoid interacting with it. Use established platforms like OpenSea instead.
Citations:
Do not whitelist
nftplus.io— domain appears non-existent or scam-related.This domain has no online footprint, is not associated with any legitimate NFT service, and lacks any presence in reputable sources. Web research indicates the domain is likely defunct or potentially scam-related. There are no conflicts with blocklist or fuzzylist entries, but the domain itself should not be whitelisted. Please remove this entry and verify the source/intent if this was added unintentionally.
🤖 Prompt for AI Agents