fxyz

Appearance

What fxyz cannot do

A short, deliberate, ironclad list. The things fxyz is structurally incapable of doing — not by policy, but by construction. No engineer at fxyz, no leaked credential, no malicious strategy, no insider, can change any of them.

fxyz cannot withdraw your funds

Not from Hyperliquid. Not from Lighter. Not from Backpack. Not from any venue we support.

The credentials we hold are trade-only at the venue level, and our own product has no withdraw code path on top of that. The venues themselves refuse. There is no clever sequence of steps, no admin override, no buried API endpoint that bypasses this. The capability simply does not exist — neither in our code, nor in the credential we hold.

fxyz cannot transfer your funds to a different address

Same reason. Trading credentials are scoped to trading. Transfers require something fxyz never had and never will — your main wallet on Hyperliquid, your unrestricted account password on Lighter and Backpack. We could not transfer your funds if we wanted to.

fxyz cannot let one user's strategy read or trade on another user's account

Each user's workspace is cryptographically and operationally partitioned. The credential for User A is not present in User B's workspace. There is no API, internal or otherwise, that lets a workspace ask for "everyone's credentials." There is no shared pool. The blast radius of anything that happens inside a workspace ends at that workspace's wall — full stop.

fxyz cannot recover your wallet

If you lose access to the wallet you sign in with, fxyz cannot let you back in under a new wallet. We never held a copy of your wallet's keys, and we never could — this is the same trade-off that gives you sole ownership of the account in the first place: nobody can lock you out, but nobody can let you back in either.

Your exchanges aren't affected — you'd simply reconnect them under whichever wallet you use next.

fxyz cannot change your account settings on a venue

The credentials we hold don't carry the permissions to do this. Account settings on HL require your main wallet; on Lighter and Backpack, they require the venue UI you logged into to generate the API key. Out of fxyz's reach by design.

fxyz cannot assemble your credential in any single place

Even our own infrastructure cannot. The credential is never held as a single readable value anywhere in our systems. Multiple independent fortified stores would have to be simultaneously breached for every individual user an attacker wanted to read. There is no master list. There is no shortcut. There is no engineer with the ability to dump credentials. It is structurally impossible by construction.

What fxyz can do

For completeness:

  • Place, modify, and cancel orders on the venues you've connected.
  • Read your positions, orders, fills, and funding from those venues.
  • Run code you (or a strategy you forked) wrote, against those venues, under your credentials.

That's the surface. Everything else is off the table — not as a promise, but as a property of how the system is built.

Funds stay on the exchange. fxyz can trade, never withdraw.