The ICON Bridge is in early development and may contain security vulnerabilities.
The ICON Bridge is currently being audited. We will make the audit report public after it is complete and all discovered vulnerabilities have been addressed.
TBD after audit completes.
Please see the releases page for the list of supported version.
All security related issues should be reported via email to [email protected]. We will attempt to respond within 2 business days to all reported issues.
Development for security issues should be done in a private fork and publicly commited ONLY after the fix is already on mainnet. See Github's steps on how to develop in a private fork.