Yes agreed that signatures need to be scoped down but i'm not sure scoping based on domain is a good idea. Any website should be able to interact with seaport! Many marketplaces use it already
Yeah if it’s for protocol domains aren’t great. Some kind of protocol identifier?
EIP-712, which is what seaport signatures use, has domains but not in the browser URL sense, it identifies the smart contract the signature is valid for. This would help with simulators, since the sim knows where the sig is going.