Skip to content

Security: CosmWasm/cw-plus

Security

SECURITY.md

Security Policy

This repository is maintained by Confio as part of the CosmWasm stack. Please see https://github.com/CosmWasm/advisories/blob/main/SECURITY.md for our security policy.

Supported Versions

cw-plus is still pre v1.0. A best effort has been made that the contracts here are secure, and we have moved the more experimental contracts into community repositories like cw-nfts and cw-tokens. That said, we have not done an audit on them (formal or informal) and you can use them at your own risk. We highly suggest doing your own audit on any contract you plan to deploy with significant token value, and please inform us if it detects any issues so we can upstream them.

Until v1.0 APIs are subject to change. The contracts APIs are pretty much stable, most work is currently in storage-plus and multi-test.

There aren’t any published security advisories