# Security — Audits & Bug Bounty Security is fundamental to STON.fi. Below are the public audits, continuous monitoring resources, and our active bug bounty program for responsible disclosure. ## Audits and Reviews * Trail of Bits — STON.fi TON AMM DEX v2 Security Review (Jan 2025) * PDF: * Omniston escrow contracts audit — no critical issues found * Blog post: * Summary: Initial audit of Omniston’s escrow contracts completed with no critical issues found (per the STON.fi blog; reviewed by the TonTech team). * Continuous monitoring — CertiK Skynet * Project page: ## Bug Bounty * Program: STON.fi DEX Smart Contracts v2 on HackenProof * Program page: * Notes: Public, severity-based rewards. Please submit findings via HackenProof following their responsible disclosure process and scope. * Community highlight: Bug bounty reward announcement * Blog post: If you discover a potential vulnerability, please report it through the HackenProof program above. Avoid sharing sensitive details publicly until the issue is triaged and resolved. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.ston.fi/getting-started/security.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.