I'm not sure how easy that is to solve, because again, a rogue app could fake the URL bar. It's just the nature of desktop apps vs the browser as the browser is there the trust is. Maybe passing it to a browser for authentication is the only option.
Now I've been using Postman for many years, so I certainly trust the quality and intent of your work.
Now I've been using Postman for many years, so I certainly trust the quality and intent of your work.