Please do not report security vulnerabilities through public GitHub issues.

Instead, please report them via one of the following methods:

• Email: security@mondoshawan.io
• Subject: "Security Vulnerability Report"
• Response Time: We aim to respond within 48 hours

Please include:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (if any)
• Your contact information

• Acknowledgment: Within 48 hours
• Initial Assessment: Within 7 days
• Fix Timeline: Depends on severity
• Disclosure: After fix is deployed (coordinated disclosure)

• Critical: Remote code execution, fund loss, network compromise
• High: Significant impact on security or functionality
• Medium: Moderate impact with workarounds
• Low: Minor issues with minimal impact

We follow responsible disclosure practices:

• We will credit you for reporting (if desired)
• We will work with you to understand and resolve the issue
• We will coordinate public disclosure after a fix is available

Status: Coming Soon

We plan to launch a bug bounty program after mainnet launch. Rewards will be based on severity and impact.

Thank you for helping keep Mondoshawan secure!

Copyright (c) 2026 Mondoshawan Protocol
Licensed under the MIT License