A dApp (decentralized application) is software that uses smart contracts on a blockchain for its core operations — swaps, lending, voting, gaming logic — instead of relying entirely on a central company’s servers.
Two parts: frontend and contracts
| Part | What it is | Where it lives |
|---|---|---|
| Frontend | Buttons, charts, UI | Often a normal website (Uniswap.org, etc.) |
| Smart contracts | Rules for money and logic | On-chain, immutable unless upgradeable |
The website is just a remote control. The contracts on the blockchain hold funds and enforce rules. Anyone can build an alternative frontend pointing at the same contracts.
What “Connect wallet” means
Connecting a wallet (MetaMask, Rabby, etc.) does not give the dApp your private keys. It shares your public address and lets the site propose transactions for you to sign.
Every transfer, swap, or approval still requires a wallet confirmation. Review what you’re signing: recipient, amount, and contract permissions.
Token approvals deserve extra caution — some dApps ask for unlimited spending permission on a token. Revoke unused approvals periodically.
How decentralized is it, really?
“dApp” is a spectrum, not a binary:
- Contracts immutable, no admin keys — harder to change, but bugs are permanent too.
- Governance token voting — community can upgrade parameters.
- Admin keys / multisig — a team can still pause or change the protocol.
Read whether the protocol is audited, who holds admin keys, and how long it has been live before depositing meaningful amounts.
A polished website does not make a dApp safe. Verify the contract address from official docs or a trusted block explorer — phishing sites copy interfaces daily.