Contact: mailto:security@moonhydra.com Expires: 2027-05-17T00:00:00.000Z Preferred-Languages: en, de Canonical: https://moonhydra.com/.well-known/security.txt Policy: https://moonhydra.com/security # MoonHydra Responsible Disclosure # MoonHydra is non-custodial: per-user burner-wallet private keys are stored # AES-256-GCM-encrypted and can be exported by the user at any time. # Vulnerability reports (especially anything touching wallet handling, the # withdraw flow, password/2FA gates, or the auto-trade execution path) are # welcomed and acknowledged within 48 hours. # # Please do NOT publicly disclose vulnerabilities before we've had time to # patch and roll out the fix. We will credit you in the changelog if desired.