# Security

<figure><img src="https://2715533927-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FiCNdy1jDW7p2hoMSUff8%2Fuploads%2F72ENLuBukMmA64WRQzxy%2FDocs%20Assets%20-%2024%20-%20Security.jpg?alt=media&#x26;token=997aea52-e3c3-4a45-bcdf-aa67133e1c5b" alt=""><figcaption></figcaption></figure>

Previous to releasing v1, we conducted an initial audit with [Coinspect](https://www.coinspect.com/).

However, the protocol should still be treated with caution given it still hasn't been live for a long period of time.

## Audits

<table><thead><tr><th>Audit</th><th>Security firm</th><th data-type="files"></th><th>Date</th></tr></thead><tbody><tr><td>Firm protocol v1</td><td><a href="https://www.coinspect.com/">Coinspect</a></td><td><a href="https://2715533927-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FiCNdy1jDW7p2hoMSUff8%2Fuploads%2FRCXF2D25uoW69r6yPqMB%2Fv1-coinspect.pdf?alt=media&#x26;token=c4b436fe-0119-4c10-84b7-262a7449b5af">v1-coinspect.pdf</a></td><td>February 2023</td></tr></tbody></table>

## Responsible disclosure

We currently do not have a bug bounty program for Firm protocol. However, since v1 is currently deployed in live networks, user funds could be at risk should a critical vulnerability exist.

If you believe you have found a vulnerability in Firm protocol, please responsibly disclose it by emailing [**security@firm.org**](mailto:security@firm.org)**.**