<?xml version="1.0" encoding="UTF-8"?><urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:news="http://www.google.com/schemas/sitemap-news/0.9" xmlns:xhtml="http://www.w3.org/1999/xhtml" xmlns:image="http://www.google.com/schemas/sitemap-image/1.1" xmlns:video="http://www.google.com/schemas/sitemap-video/1.1"><url><loc>https://osec.io/</loc></url><url><loc>https://osec.io/audits/</loc></url><url><loc>https://osec.io/authors/</loc></url><url><loc>https://osec.io/blog/</loc></url><url><loc>https://osec.io/blog/compiler-bug-causes-compiler-bug/</loc></url><url><loc>https://osec.io/blog/cosmos-security/</loc></url><url><loc>https://osec.io/blog/formally-verifying-solana-programs/</loc></url><url><loc>https://osec.io/blog/goldmine-of-insecure-webview-integrations/</loc></url><url><loc>https://osec.io/blog/hitchhikers-guide-to-aptos-fungible-assets/</loc></url><url><loc>https://osec.io/blog/how-proof-of-reserves-uses-zk-to-protect-your-funds/</loc></url><url><loc>https://osec.io/blog/how-to-survive-supply-chain-attacks/</loc></url><url><loc>https://osec.io/blog/how-we-broke-exchanges-oauth-misconfigurations/</loc></url><url><loc>https://osec.io/blog/hyperliquid-risk-engine/</loc></url><url><loc>https://osec.io/blog/jumping-around-in-the-vm/</loc></url><url><loc>https://osec.io/blog/king-of-the-sol/</loc></url><url><loc>https://osec.io/blog/lp-token-oracle-manipulation/</loc></url><url><loc>https://osec.io/blog/metamask-snaps/</loc></url><url><loc>https://osec.io/blog/minecraft-heap-overflow-to-rce/</loc></url><url><loc>https://osec.io/blog/move-introduction/</loc></url><url><loc>https://osec.io/blog/move-prover/</loc></url><url><loc>https://osec.io/blog/multisig-security/</loc></url><url><loc>https://osec.io/blog/netfilter-universal-root-1-day/</loc></url><url><loc>https://osec.io/blog/patch-gap-to-mobile-renderer-rce/</loc></url><url><loc>https://osec.io/blog/paymasters-evm/</loc></url><url><loc>https://osec.io/blog/reverse-engineering-solana/</loc></url><url><loc>https://osec.io/blog/rounding-bugs/</loc></url><url><loc>https://osec.io/blog/rust-realloc-and-references/</loc></url><url><loc>https://osec.io/blog/solana-security-intro/</loc></url><url><loc>https://osec.io/blog/solend-rent-thief/</loc></url><url><loc>https://osec.io/blog/solidity-compilers-memory-safety/</loc></url><url><loc>https://osec.io/blog/spl-swap-rounding/</loc></url><url><loc>https://osec.io/blog/subverting-web2-authentication-in-web3/</loc></url><url><loc>https://osec.io/blog/supply-chain-attacks-a-new-era/</loc></url><url><loc>https://osec.io/blog/unverified-evaluations-dusk-plonk/</loc></url><url><loc>https://osec.io/blog/virtio-snd-qemu-hypervisor-escape/</loc></url><url><loc>https://osec.io/blog/vyper-timeline/</loc></url><url><loc>https://osec.io/blog/web2-bug-repellant-instructions/</loc></url><url><loc>https://osec.io/blog/zkvms-unfaithful-claims/</loc></url><url><loc>https://osec.io/careers/</loc></url><url><loc>https://osec.io/contact/</loc></url><url><loc>https://osec.io/services/</loc></url><url><loc>https://osec.io/subscribe/</loc></url></urlset>