Roadmap for Q1 2026

Three things this quarter, in priority order:

1. Go SDK (Jan-Feb)

The TS SDK is fine for Node.js teams; everything else gets curl examples. We've had three serious prospects ask for Go specifically. We're writing it. Expect a 0.x release end of January and 1.0 mid-February.

2. SOC 2 Type II audit (Feb-Mar)

The controls are mostly in place — encryption at rest, role-based access, audit logs, off-site backups. What's missing is the formal observation period and the third-party attestation. We're engaging an auditor in February with a target completion of late March.

3. Public bug bounty (Mar)

Hosted on a major platform (HackerOne or Intigriti — TBD). Scope: api.swydex.com and swydex.com. Out of scope: third-party providers (Tatum, Stripe, Postalynk). Initial payout cap $10K with the option to raise for severe findings.

What's explicitly not on the Q1 list: new chains. We have what we need on EVM + UTXO + Solana + Tron. Adding more would dilute the harden-what-we-have focus.

If you'd like input on any of the above — especially the SDK design — email hello@swydex.com. We're still small enough that direct feedback shapes things.