Please do not open a public GitHub issue for security vulnerabilities.
Report privately via GitHub → Security tab → "Report a vulnerability".
Response time: 48 hours.
- Smart contracts in
contracts/ - SDK source code in
src/ - Any on-chain logic
Researchers who responsibly disclose vulnerabilities will be credited in release notes. 🔐