Warn users when sending tokens to the token address

[danfinlay]

This really is an extension of the whole issue where people are losing tokens b/c ERC-20 makes it easy to send to contracts that can't actually do anything with them.

This issue represents a single ERC-20 validation mitigation: Prevent sending tokens to token addresses, perhaps in general, maybe just to the same address as the token itself.

[mryellow]

This is an issue with the contract standard.

transfer() applies token balance to whichever address it is given. This address should be able to be any kind of user or smart contract without customised case-by-case interference from clients.

ERC223 ethereum/EIPs#223 approaches this by adding a tokenFallback() method which gives the target an opportunity to reject the transfer (or store details about it).

Fortunately in the case of non-fungible tokens ERC721 has solidified around including a callback onERC721Received() which informs the receiving end and will revert if this function is missing unless a legacy transfer method is used.

ethereum/EIPs#841

Besides these improvements token authors can mitigate the issue by providing methods where the owner can transfer out any tokens mistakenly sent to the contract.

[fulldecent]

If there is a strong interest in the MetaMask community (the people that have commit access) then I will create an ERC-20 replacement that includes this same feature from ERC-721.

[mryellow]

@daniel-jozsef made a really good point here:

There's an ERC for that. A proper one, that isn't a mess. Also de-fact accepted, implemented in OpenZeppelin. ERC827

ethereum/EIPs#223 (comment)

Makes it easy enough to create an ERC-20 with extended callback features where it might need specific "deposit" type behaviour. Figure there could be room for a standard which uses ERC-827 features to send an onERCXXXReceived() callback. Which I guess would need to be exposed to wallets with EIP-820 introspection.

This could supplant ERC-223 with a cleaner layered approach. Would be a good thing as 223 seems misplaced.

Otherwise you're left with a standard ERC-20 and approve/transferFrom pattern for many cases. With recovery remaining the role of the receiving contract. Which is probably fine also.