Allowlist refundyoursol.com (fuzzy-match false positive)

[DesttE]

Allowlist refundyoursol.com (fuzzy-match false positive)

Phantom shows "Domain found on blocklists maintained by: MetaMask, ScamSniffer. This website is very likely to be a scam." on refundyoursol.com — but the domain is on neither list literally. It's a fuzzy / look-alike match against confirmed phishing copycats that impersonate our brand:

• refundsolana.xyz (in MetaMask's list)
• refundyoursol.io/.co/.net/.org/.app/.fun/.lol/.world/.top/.info, refundyoursolana.io/.fun, migrate-/events-refundyoursol.* (in ScamSniffer's list)

refundyoursol.com is the legitimate, official site of the RefundYourSOL service (helps Solana users close empty SPL token accounts to reclaim rent) — the genuine brand origin, not an impersonator. This adds it to whitelist.yaml so the fuzzer exempts it (which is exactly what this file is for).

Verification: live behind Cloudflare, valid SSL, registered through 2028; clean on URLVoid (0/35), Scamadviser ("Very Likely Safe"), Spamhaus/SURBL. Ownership proof (DNS TXT / signed message) available on request.

🤖 Generated with Claude Code

Summary by CodeRabbit

• Chores
  • Updated the URL allowlist to include support for refundyoursol.com.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 6aee8ed6-11cb-4db6-9073-80444ef372f1

📥 Commits

Reviewing files that changed from the base of the PR and between 5030186 and 0d16f2f.

📒 Files selected for processing (1)

• whitelist.yaml

---

📝 Walkthrough

Walkthrough

This PR extends the URL allowlist by adding refundyoursol.com to whitelist.yaml while preserving the existing nftplus.io entry. The change is a straightforward configuration update to the domain allowlist.

Changes

Domain Allowlist

Layer / File(s)	Summary
Add refundyoursol.com to URL whitelist whitelist.yaml	New domain refundyoursol.com is added to the allowlist configuration alongside the existing nftplus.io entry.

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately and specifically describes the main change: adding refundyoursol.com to the allowlist due to fuzzy-match false positives.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[DesttE]

Supporting evidence — this is a confirmed false positive (the warning text literally cites "MetaMask, ScamSniffer"):

• refundyoursol.com is not literally on any blocklist — it's a fuzzy/ingested match against phishing copycats of our brand on other TLDs (refundyoursol.io / .eu / .icu / .network / .space / .top / .world, migrate-refundyoursol.xyz, refundsolana.xyz). Those should stay blocked — only refundyoursol.com + *.refundyoursol.com should be allowlisted.
• MetaMask's own eth-phishing-detect detector (https://metamask.github.io/eth-phishing-detect/) returns refundyoursol.com as NOT blocked.
• Blockaid reviewed and corrected their flagging (confirmed false positive).
• PhishDestroy reviewed and accepted the false-positive appeal (Appeal (false positive): allowlist refundyoursol.com + discord.refundyoursol.com phishdestroy/destroylist#140, closed).
• Clean on URLVoid (0/35), Scamadviser ("Very Likely Safe"), Spamhaus/SURBL.

It's the legitimate official site of the RefundYourSOL service (closes empty SPL token accounts to reclaim rent). Official links: https://refundyoursol.com · https://refundyoursol.com/docs · https://t.me/refundyoursolbot · https://www.trustpilot.com/review/refundyoursol.com. Ownership provable via DNS TXT or a signed message. Contact: admin@refundyoursol.com