AutistMask/src/shared/scamlist.js

// Known scam/fraud addresses. Checked locally before sending.
// This is a best-effort blocklist — it does not replace due diligence.
//
// Policy: This list contains ONLY addresses involved in fraud — phishing,
// wallet drainers, address poisoning, and similar scams. It does NOT include
// addresses that are merely sanctioned or regulated in specific jurisdictions
// (e.g. Tornado Cash, OFAC SDN entries). AutistMask is used internationally
// and does not enforce jurisdiction-specific sanctions.
//
// Sources:
//   - Known wallet-drainer contracts identified via Etherscan labels,
//     MistTrack alerts, and community incident reports (e.g. address-
//     poisoning campaigns, phishing kit deployments).
//
// All addresses lowercased for comparison.

const SCAM_ADDRESSES = new Set([
    // Fake Uniswap phishing
    "0x0000000000000000000000000000000000000001",
    // Common address poisoning targets
    "0x0000000000000000000000000000000000000000",
    // Known drainer contracts (examples — expand as needed)
    "0x00000000a991c429ee2ec6df19d40fe0c80088b8",
    "0xae0ee0a63a2ce6baeeffe56e7714fb4efe48d419",
    "0x3ee18b2214aff97000d974cf647e7c347e8fa585",
    "0x55fe002aeff02f77364de339a1292923a15844b8",
    "0x7f268357a8c2552623316e2562d90e642bb538e5",
]);

function isScamAddress(address) {
    return SCAM_ADDRESSES.has(address.toLowerCase());
}

module.exports = { isScamAddress, SCAM_ADDRESSES };