Transacting on blockchains can feel risky, but Immutable Passport enhances your security by exposing the contract address you’re interacting with and displaying transaction details in an easy-to-read format before you confirm a transaction. While we’re continuously improving security across our platforms, there are important steps you can take to protect yourself when using applications built on zkEVM.

Check Contract Addresses on Immutable Explorer

Smart contract bugs or vulnerabilities can lead to unintended consequences, such as the loss of funds or security breaches. To stay safe, always ensure that the contract you’re interacting with is verified.

1. On the Passport transaction confirmation screen, open the Stay Safe bottom sheet.
   
2. Select the Contract Address or click the Immutable Explorer link.
3. On the contract page, navigate to the Contract tab.
4. If the contract is verified, you’ll see a note stating “Contract Source Code Verified.” This means the contract’s source code is publicly available, and the contract behavior has been audited.

Check Application Certificates and Connection

Malicious applications can trick users by using fake websites, causing them to sign transactions that may drain their wallets. By verifying a website's certificate, you can ensure that the entity is legitimate and compliant with industry standards.

• For Google Chrome, visit Google Chrome Help.
• For Mozilla Firefox, visit Mozilla Support.