FAQ
Frequently asked questions
Straight answers — strengths and limits both. If something here is uncertain, Sally points you at the code rather than guessing.
Only on your server, KEK-encrypted in the database (AES-256-GCM under a key derived from your master password). They are never written to .env, never in plaintext, and never sent to any provider. The master password itself is never persisted — a password change just re-wraps the KEK, so your wallets stay encrypted throughout.
Swapping on Base & BSC
Swapping on Base & BSC
Routing, slippage, tokens and wallets across Base and BNB Smart Chain.
Still have questions?
The setup guide walks through self-hosting end to end, and the security page documents both what is strong and what is still open.