Security at Twyne
The security of our users and their assets is our highest priority. We employ industry-leading practices, regular audits, and continuous monitoring to ensure the safety and integrity of our platform.
Audits & Documentation
For detailed information about our security practices, audit reports, and smart contract documentation, visit our security documentation.
View Security DocsBest Practices
- Regular third-party security audits
- Bug bounty programs
- Continuous monitoring and alerting
Report a Vulnerability
If you have discovered a security vulnerability, please report it to us at [email protected]
Our scope is currently limited to Twyne smart contracts. We will soon be making public a bug bounty program with a well-known web3 bug bounty provider. In the meantime, we take all smart contract reports seriously, provide appropriate bounties for high and critical issues, and respond in well under 72 hours.
Please include:
- A detailed description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability (optional)
- Your contact information for follow-up
Responsible Disclosure
We ask that you:
- Give us reasonable time to investigate and address any vulnerability you report
- Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service
- Only interact with your own accounts or test accounts for security research purposes
Our Commitment
We commit to:
- Acknowledge receipt of your vulnerability report within 3 business days
- Notify you when the vulnerability has been fixed
- Not take legal action against security researchers who discover and report vulnerabilities responsibly
Thank you for helping keep Twyne and our users safe.