Security
The single rule:SnowMind is non-custodial. You always own your funds. If anything seems wrong, withdraw directly from the underlying protocols using your wallet. You don't need our app to do that.
How SnowMind protects your funds
- Non-custodial. Your USDC sits in a smart account you own. SnowMind has no master key.
- Scoped agent. Our agent can only call deposit/withdraw on five pre-approved protocols. It cannot transfer funds to anyone other than your own wallet or our fee treasury (a Gnosis Safe multisig).
- 30-day agent expiry. Agent permission expires monthly; you re-grant explicitly.
- Backend compromise is bounded.Even if SnowMind's servers are fully taken over, attackers cannot redirect your funds to themselves — only to your wallet or our fee treasury.
Use the official URLs only
The most common DeFi loss in 2026 is users signing a malicious transaction on a fake site. Always confirm the URL.
We never DM first. We never ask for your seed phrase or signed messages over Discord/Telegram/Twitter. Block and report.
Wallet best practices
- Hardware wallet recommended(Ledger / Trezor) for any balance you can't afford to lose. Private keys never leave the device.
- Never type your seed phrase into anything. Not a web form, not a chatbot, not "wallet support." Real support never asks.
- One wallet extension at a time. Multiple wallet extensions can interfere with signature display.
- Disable untrusted browser extensions. Wallet drainers ship as innocuous-looking utilities.
- · Initial deposit: USDC.transfer to your smart account
- · Session-key grant: EIP-712 typed permission install, showing the pinned protocol contracts
- · Withdrawal authorization: SNOWMIND_WITHDRAWAL:0x...:amount:timestamp
- · Session-key revocation: uninstallPlugin(...)
- · Unbounded USDC approvals (approve(spender, MAX)) on an unknown contract
- · Transfers to addresses you haven't manually verified
- · Claim-airdrop or 'free token' messages
- · Anything from a 'SnowMind support' DM
- · Messages that don't show clear human-readable text in your wallet
Emergency: withdraw without SnowMind
If our app is offline or you suspect something is wrong, you can redeem each position directly from the protocol using your wallet. You do not need our app or our backend.
1. Connect your wallet to snowtrace.io at the address of your smart account.
2. For each protocol holding your funds, call the redeem function below. USDC lands back in your smart account.
3. Transfer USDC to your EOA: USDC.transfer(yourEOA, balance).
There's no downside to running an emergency withdraw as a drill. You can re-deposit afterward.
The five protocols SnowMind allocates to are audited and battle-tested, but DeFi has lost over $400M to protocol exploits in 2026. We auto-exit on health-check anomalies, depeg signals, and APY anomalies — but no automated system can save you if a protocol gets exploited in a single block. Treat yield-source risk as inherent; never deposit more than you're willing to lose if a lending protocol fails.
Report a vulnerability
If you discover a security issue, please report it responsibly. Do not open a public GitHub issue.
- · security@snowmind.app
- · or open a private security advisory at github.com/Snow-Mind/SnowMind/security/advisories
We acknowledge within 48 hours and publish a timeline.
The 5 things that actually matter
- 1. Use the official URL. Always.
- 2. Use a hardware wallet for any meaningful balance.
- 3. Never sign anything you don't fully understand.
- 4. Revoke your session key if you stop using SnowMind.
- 5. You can always withdraw directly from the protocols. Try the drill once.