Aurum28 Core is security-critical software. If you discover a vulnerability, please report it privately and responsibly.
Email:
Please include:
- A clear description of the issue
- Steps to reproduce (if possible)
- Affected versions / commit hash
- Potential impact (funds loss, consensus risk, DoS, etc.)
- Any suggested mitigation
- Please do not publish details publicly before we confirm and deploy a fix.
- We will acknowledge receipt and coordinate a fix timeline.
This policy applies to:
- Aurum28 Core node software
- RPC interface and network behavior
- Wallet functionality included in Aurum28 Core