| Version | Supported |
|---|---|
| Latest | ✅ |
If you discover a security vulnerability in Aureus Arena, please report it responsibly.
Email: aureusarena@proton.me
- Do NOT open a public GitHub issue for security vulnerabilities.
- Please provide a detailed description of the vulnerability, including steps to reproduce if possible.
- We will acknowledge your report within 48 hours.
- We will work with you to understand and address the issue before any public disclosure.
The following are in scope for security reports:
- Aureus Arena on-chain program (Solana)
- Smart contract logic vulnerabilities
- Token handling and fund safety issues
- Access control bypasses
- Frontend UI bugs that do not impact security
- Denial of service attacks
- Social engineering
We kindly ask that you give us reasonable time to address any reported vulnerabilities before disclosing them publicly. We are committed to resolving security issues promptly and will credit reporters who follow responsible disclosure practices.