Security

SECURITY.md

Security Policy

Please email security@zksend.xyz for vulnerabilities — we acknowledge within 72 hours.

For non-security bugs, open a GitHub issue.

In scope

This package: key derivation, stealth derivation, signing, memo
The published npm artifact

Out of scope

Network RPCs
Solana protocol itself

There aren't any published security advisories