If you discover a security vulnerability in the CillarCoin smart contracts or any associated components in this repository, please report it privately and responsibly:
- Email: security@cillar.io
- PGP Key: (Coming Soon β to be published in
SECURITY.md)
Please include:
- A clear description of the issue
- Reproduction steps (if applicable)
- Severity and possible impact
- Any recommended fixes
We aim to acknowledge and triage reports within 72 hours, and weβll work with you to validate, fix, and credit the issue appropriately (if desired).
We currently maintain security updates for:
Contract
Version
Status
CillarCoin.sol
v1.0.6
β Maintained
CillarVesting.sol
v1.0.6
β Maintained
FareRegistry.sol
v1.0.6
β Maintained
- Role-based access control using OpenZeppelin
AccessControl - Internal audit completed (v1.0.6)
- External audit planned (Q3 2025)
- Treasury, refund, vesting logic tested
- Code reviewed for integer safety, upgradability, and owner privileges
- AUDIT.md β Full audit preparation and disclosure log
- README.md β Project overview
- WHITEPAPER.md β Technical vision and design
Thank you for helping make CillarCoin secure! π
β Simon Kapenda (Founder, Abba Platforms Inc.)