We take the security of our systems and users seriously. If you believe you’ve discovered a security vulnerability in our applications, services, or smart contracts, we encourage you to report it to us responsibly. We operate a bug bounty program and welcome submissions that follow our guidelines.

Please avoid any activity that could harm our users or data, including denial of service, accessing unauthorized data, or degrading our services. If you follow responsible disclosure principles, we will not pursue legal action and will work with you to validate and remediate the issue promptly.

To report a vulnerability, please submit your finding through our bug bounty platform at https://hackerone.com/magic-bbp/. We can also be reached by email at [email protected].