Security

Astro is non-custodial by design. Users control keys; we orchestrate routing, bridging, and withdrawals.

Accounts use Turnkey with least-privilege server users and explicit allow/deny policies (wallet tags, chain IDs, ceilings). Root access is gated by a 2-of-3 (or 2-of-4) quorum. We prefer passkeys for sign-in (add a backup passkey/hardware key).

Cross-chain moves use deBridge; all venue-native and network/bridge fees are itemized to the user. Secrets live in a managed vault; API keys are rotated and scoped.