Hot wallet compromise risk

[diorwave]

Problem

Server holds liquidity private keys in runtime.

Attack vectors:

• server hack
• dependency exploit
• log leakage

Result: total funds stolen.

Required Solution

Introduce wallet security layer:

• isolated signing service
• per-swap derived addresses
• withdrawal limits
• optional MPC/HSM