Hi There,
I’ve started using the can’t be evil extension and I removed all my third-party assets and cookies from my websites Everything is great, but after I make the login on Blockstack I always find a __cfduid cookie (with domain .blockstack) on my website.

That obviously triggers the ‘App sent cookies’ on the can’t be evil extension, but I don’t know what to do to remove it since it’s put there by blockstack after the redirect and not by me.

blockstack cookies.png1280×650 73.1 KB

Is it necessary to put that cookie? It’s possible to remove it from the app or to ‘disable it’ in any way?

Thanks,
Francesco

I’ve also noticed this - hopefully the NIL score will take this into account @larry ?