> For clean Markdown of any page, append .md to the page URL.
> For a complete documentation index, see https://docs.6mm.com/llms.txt.
> For AI client integration (Claude Code, Cursor, etc.), connect to the MCP server at https://docs.6mm.com/_mcp/server.

# Security Reporting

Security reports should include enough technical context for the 6MM team to assess impact and reproduce the issue safely.

<h2 id="reportable-issues">
  Reportable issues
</h2>

* Vulnerabilities in API, SDK, webhook, authentication, or trading entry flows.
* Suspicious production behavior that may affect trading integrity or user safety.
* Credential leakage or suspected unauthorized access.
* Abuse patterns that may affect system stability.

<h2 id="include-in-the-report">
  Include in the report
</h2>

* Affected environment and endpoint.
* Time range and reproduction steps.
* Logs, request IDs, webhook event IDs, or screenshots.
* Whether the issue is currently active.

For urgent security reports, use the security channel listed in the support page.