5 unstable releases

0.3.1	Dec 23, 2025
0.3.0	Dec 17, 2025
0.2.0	Dec 16, 2025
0.1.1	Dec 15, 2025
0.1.0	Dec 15, 2025

#471 in Asynchronous

MIT license

520KB
10K SLoC

Kraken WebSocket SDK

A production-grade, correctness-first Kraken WebSocket SDK in Rust, designed for reliable market data ingestion and long-running trading systems.

Note: This is an independent, community-maintained SDK. Not affiliated with Kraken.

Who This Is For

Production market data ingestion - reliable, 24/7 data pipelines
Research and strategy development - backtesting, signal generation
Trading system infrastructure - not a full trading engine, but the data layer for one

What Is Stable Today

Component	Status	Notes
Public market data	✅ Stable	Ticker, trades, orderbook, OHLC
Reconnect semantics	✅ Stable	Deterministic state machine, auto-resubscribe
Orderbook stitching	✅ Stable	Snapshot + delta, checksum validation
`prelude` module	✅ Stable	Won't break in minor versions

What Is NOT Frozen Yet

Component	Status	Notes
Auth channels	⚠️ Unstable	`ownTrades`, `openOrders` - API may change
Config surface	⚠️ Unstable	New fields may be added (with defaults)
Metrics shape	⚠️ Unstable	Prometheus export format may evolve
`extended` module	⚠️ Growing	Stable but new types may be added

API Stability

This SDK follows a frozen API philosophy for production reliability:

Module	Stability	Description
`prelude`	Stable	Core API - won't break between minor versions
`extended`	Stable	Advanced features - stable but may grow
`internal`	Unstable	Implementation details - may change

// ✅ Use this for production code
use kraken_ws_sdk::prelude::*;

// ✅ For advanced features
use kraken_ws_sdk::extended::*;

// ❌ Don't depend on internal modules
// use kraken_ws_sdk::internal::*;

Features

🔒 Frozen API: Minimal, stable surface - trading firms hate churn
🎯 Deterministic State Machine: Explicit connection states with single-cause transitions
🚀 High Performance: Async processing with minimal overhead
📊 Real-time Data: Tickers, trades, order books, OHLC
🔄 Auto Recovery: Exponential backoff with configurable retry limits
📈 Order Book Management: Snapshot + delta stitching with checksum validation

Quick Start

Add this to your Cargo.toml:

[dependencies]
kraken-ws-sdk = "0.2"
tokio = { version = "1.0", features = ["full"] }

Stream API (Recommended)

The simplest way to consume events - a single unified stream:

use kraken_ws_sdk::{KrakenWsClient, ClientConfig, Channel, SdkEvent};

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    let mut client = KrakenWsClient::new(ClientConfig::default());
    
    // Get unified event stream
    let mut events = client.events();
    
    // Subscribe and connect
    client.subscribe(vec![
        Channel::new("ticker").with_symbol("BTC/USD"),
        Channel::new("trade").with_symbol("BTC/USD"),
    ]).await?;
    client.connect().await?;
    
    // Process all events in one place
    while let Some(event) = events.recv().await {
        match event {
            SdkEvent::Ticker(t) => println!("📊 {}: ${}", t.symbol, t.last_price),
            SdkEvent::Trade(t) => println!("💰 {}: {} @ ${}", t.symbol, t.volume, t.price),
            SdkEvent::OrderBook(b) => println!("📖 {}: {} bids", b.symbol, b.bids.len()),
            SdkEvent::State(s) => println!("🔗 Connection: {:?}", s),
            SdkEvent::Error(e) => eprintln!("❌ Error: {}", e),
            _ => {}
        }
    }
    Ok(())
}

Callback API (Traditional)

For more control, register callbacks per data type:

use kraken_ws_sdk::{
    KrakenWsClient, ClientConfig, Channel, DataType, EventCallback,
    TickerData, TradeData, ConnectionState, SdkError
};
use std::sync::Arc;

struct MyCallback;

impl EventCallback for MyCallback {
    fn on_ticker(&self, data: TickerData) {
        println!("Ticker: {} - Last: {}", data.symbol, data.last_price);
    }
    
    fn on_trade(&self, data: TradeData) {
        println!("Trade: {} - {} @ {}", data.symbol, data.volume, data.price);
    }
    
    fn on_orderbook(&self, data: OrderBookUpdate) {
        println!("Order Book: {} - {} bids, {} asks", 
            data.symbol, data.bids.len(), data.asks.len());
    }
    
    fn on_ohlc(&self, data: OHLCData) {
        println!("OHLC: {} - Close: {}", data.symbol, data.close);
    }
    
    fn on_error(&self, error: SdkError) {
        eprintln!("Error: {}", error);
    }
    
    fn on_connection_state_change(&self, state: ConnectionState) {
        println!("Connection: {:?}", state);
    }
}

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    let mut client = KrakenWsClient::new(ClientConfig::default());
    
    // Register callbacks
    let callback: Arc<dyn EventCallback> = Arc::new(MyCallback);
    client.register_callback(DataType::Ticker, callback.clone());
    client.register_callback(DataType::Trade, callback);
    
    // Connect and subscribe
    client.subscribe(vec![
        Channel::new("ticker").with_symbol("BTC/USD"),
        Channel::new("trade").with_symbol("BTC/USD"),
    ]).await?;
    client.connect().await?;
    
    // Keep running
    tokio::time::sleep(std::time::Duration::from_secs(30)).await;
    client.cleanup().await?;
    Ok(())
}

Configuration

Basic Configuration

use kraken_ws_sdk::{ClientConfig, ReconnectConfig};
use std::time::Duration;

let config = ClientConfig {
    endpoint: "wss://ws.kraken.com".to_string(),
    timeout: Duration::from_secs(30),
    buffer_size: 1024,
    reconnect_config: ReconnectConfig {
        max_attempts: 10,
        initial_delay: Duration::from_millis(100),
        max_delay: Duration::from_secs(30),
        backoff_multiplier: 2.0,
    },
    ..Default::default()
};

Authentication (for private channels)

let config = ClientConfig {
    api_key: Some("your_api_key".to_string()),
    api_secret: Some("your_api_secret".to_string()),
    ..Default::default()
};

Supported Channels

Channel	Description	Public	Private
`ticker`	Real-time ticker data	✅	❌
`trade`	Real-time trade data	✅	❌
`book`	Order book updates	✅	❌
`ohlc`	OHLC/candlestick data	✅	❌
`spread`	Spread data	✅	❌
`ownTrades`	User's trades	❌	✅
`openOrders`	User's open orders	❌	✅

Data Types

TickerData

pub struct TickerData {
    pub symbol: String,
    pub bid: Decimal,
    pub ask: Decimal,
    pub last_price: Decimal,
    pub volume: Decimal,
    pub timestamp: DateTime<Utc>,
}

TradeData

pub struct TradeData {
    pub symbol: String,
    pub price: Decimal,
    pub volume: Decimal,
    pub side: TradeSide,
    pub timestamp: DateTime<Utc>,
    pub trade_id: String,
}

OrderBookUpdate

pub struct OrderBookUpdate {
    pub symbol: String,
    pub bids: Vec<PriceLevel>,
    pub asks: Vec<PriceLevel>,
    pub timestamp: DateTime<Utc>,
    pub checksum: Option<u32>,
}

Error Handling

The SDK provides comprehensive error handling through the SdkError enum:

pub enum SdkError {
    Connection(ConnectionError),
    Parse(ParseError),
    Subscription(SubscriptionError),
    Configuration(String),
    Network(String),
    Authentication(String),
}

Error Recovery

impl EventCallback for MyCallback {
    fn on_error(&self, error: SdkError) {
        match error {
            SdkError::Connection(conn_err) => {
                // Connection will auto-reconnect
                println!("Connection error: {}", conn_err);
            }
            SdkError::Parse(parse_err) => {
                // Parser will continue with next message
                println!("Parse error: {}", parse_err);
            }
            SdkError::Subscription(sub_err) => {
                // May need to resubscribe
                println!("Subscription error: {}", sub_err);
            }
            _ => {
                println!("Other error: {}", error);
            }
        }
    }
}

Order Book Management

The SDK includes built-in order book state management:

// Get current order book
if let Some(order_book) = client.get_order_book("BTC/USD") {
    println!("Spread: {:?}", order_book.get_spread());
    println!("Mid price: {:?}", order_book.get_mid_price());
    
    let (bid_volume, ask_volume) = order_book.get_total_volume();
    println!("Total volume - Bids: {}, Asks: {}", bid_volume, ask_volume);
}

// Get best bid/ask
if let Some((best_bid, best_ask)) = client.get_best_bid_ask("BTC/USD") {
    println!("Best bid: {:?}, Best ask: {:?}", best_bid, best_ask);
}

Order Book Visualization API

The SDK provides a comprehensive visualization module for building professional-grade order book interfaces:

use kraken_ws_sdk::visualization::*;
use rust_decimal::Decimal;
use std::str::FromStr;

Price Aggregation (Tick Size Grouping)

Reduce noise by grouping price levels into buckets:

// Aggregate BTC book into $100 buckets
let tick_size = Decimal::from_str("100.0").unwrap();
let aggregated = order_book.aggregate(tick_size);

for level in &aggregated.bids {
    println!("${}: {} BTC ({} orders)", 
        level.price, level.volume, level.order_count);
}

Depth Ladder with Cumulative Sizes

Get a visualization-ready ladder with cumulative volumes:

let ladder = order_book.get_depth_ladder(20); // Top 20 levels

// Render horizontal bars showing cumulative depth
for level in &ladder.bids {
    println!("{} | {} | cum: {} ({}%)", 
        level.price, 
        level.volume,
        level.cumulative_volume,
        level.cumulative_percent);
}

// Access spread and mid price
println!("Mid: {:?}, Spread: {:?} ({:?} bps)", 
    ladder.mid_price, ladder.spread, ladder.spread_bps);

Liquidity Imbalance Indicator

Measure bid/ask imbalance over configurable depth:

// Get imbalance ratio (-1.0 = all asks, +1.0 = all bids)
let imbalance = order_book.get_imbalance_ratio(10);

if imbalance > Decimal::from_str("0.3").unwrap() {
    println!("Strong bid pressure - potential upward move");
}

// Get detailed metrics with VWAP
let metrics = order_book.get_imbalance_metrics(10);
println!("Bid VWAP: {:?}, Ask VWAP: {:?}", metrics.bid_vwap, metrics.ask_vwap);

// Get trading signal
let pressure = order_book.get_book_pressure(10);
match pressure.signal {
    PressureSignal::StrongBuy => println!("Strong buy signal"),
    PressureSignal::StrongSell => println!("Strong sell signal"),
    _ => {}
}

Order Flow Tracking (Large Order Detection)

Detect when large orders appear or disappear:

let mut flow_tracker = OrderFlowTracker::with_config(OrderFlowConfig {
    large_order_threshold: Decimal::from(10), // 10 BTC = large
    track_depth: 25,
    ..Default::default()
});

// Register callback for flow events
flow_tracker.on_event(|event| {
    match event.event_type {
        FlowEventType::LargeOrderAppeared => {
            println!("Large {} appeared at {}", 
                if event.side == FlowSide::Bid { "bid" } else { "ask" },
                event.price);
        }
        FlowEventType::LargeOrderDisappeared => {
            println!("Large order gone from {}", event.price);
        }
        _ => {}
    }
});

// On each order book update
let events = flow_tracker.track_update(&order_book);

Recent Trades Overlay

Track trades aligned with price levels:

let trade_tracker = TradesByPriceLevel::new();

// On each trade
trade_tracker.add_trade(&trade_data);

// Get trades at a specific price level
let trades = trade_tracker.get_trades_at_price("BTC/USD", price);

// Get aggregated stats for overlay visualization
let overlay = trade_tracker.get_trade_overlay("BTC/USD");
for stats in overlay {
    println!("{}: {} trades, {} buy / {} sell", 
        stats.price, stats.trade_count, stats.buy_volume, stats.sell_volume);
}

Market Health / Stale Detection

Detect halted or stale markets:

let health_tracker = MarketHealthTracker::new();

// On each update
health_tracker.record_update("BTC/USD");

// Check market status
match health_tracker.check_status("BTC/USD") {
    MarketStatus::Active => println!("Market active"),
    MarketStatus::Stale => println!("No updates for 5+ seconds"),
    MarketStatus::Halted => println!("Market may be halted"),
    MarketStatus::Unknown => println!("No data yet"),
}

// Get time since last update (for latency indicator)
if let Some(ms) = health_tracker.get_time_since_update("BTC/USD") {
    println!("Last update: {}ms ago", ms);
}

Visualization Feature Summary

Feature	Method	Description
Price aggregation	`order_book.aggregate(tick_size)`	Group levels by tick size
Depth ladder	`order_book.get_depth_ladder(n)`	Cumulative sizes, percentages
Imbalance ratio	`order_book.get_imbalance_ratio(n)`	-1.0 to +1.0 bid/ask balance
Imbalance metrics	`order_book.get_imbalance_metrics(n)`	VWAP, volumes, depth
Book pressure	`order_book.get_book_pressure(n)`	Trading signal interpretation
Order flow	`OrderFlowTracker::track_update()`	Large order detection
Trade overlay	`TradesByPriceLevel::add_trade()`	Trades at price levels
Market health	`MarketHealthTracker::check_status()`	Stale/halt detection

Advanced Features

Multiple Callbacks

// Register multiple callbacks for the same data type
let callback1 = Arc::new(LoggingCallback);
let callback2 = Arc::new(MetricsCallback);

client.register_callback(DataType::Ticker, callback1);
client.register_callback(DataType::Ticker, callback2);

Connection State Monitoring

client.register_connection_listener(Arc::new(ConnectionMonitor));

// Check connection state
match client.connection_state() {
    ConnectionState::Connected => println!("Connected"),
    ConnectionState::Reconnecting => println!("Reconnecting..."),
    ConnectionState::Failed => println!("Connection failed"),
    _ => {}
}

Subscription Management

// Check active subscriptions
let subscriptions = client.get_active_subscriptions();
println!("Active subscriptions: {:?}", subscriptions);

// Check if subscribed to specific channel
let channel = Channel::new("ticker").with_symbol("BTC/USD");
if client.is_subscribed(&channel) {
    println!("Subscribed to BTC/USD ticker");
}

Examples

See the examples/ directory for SDK usage examples:

cargo run --example basic_usage
cargo run --example advanced_usage
cargo run --example backpressure_demo
cargo run --example latency_demo

Example	Description
`basic_usage.rs`	Minimal SDK setup, subscribe to ticker
`advanced_usage.rs`	Error handling, multiple callbacks
`backpressure_demo.rs`	Rate limiting, drop policies
`latency_demo.rs`	Latency tracking, percentiles
`sequencing_demo.rs`	Gap detection, resync handling

Connection State Machine

The SDK uses a deterministic state machine for connection management. Each state has explicit transitions with single causes and actions.

┌─────────────┐                    ┌─────────────┐                    ┌───────────────┐
│ DISCONNECTED│───── connect() ───▶│  CONNECTING │───── success ─────▶│AUTHENTICATING │
└─────────────┘                    └─────────────┘                    └───────────────┘
       ▲                                  │                                   │
       │                               failure                          success/skip
       │                                  │                                   │
       │                                  ▼                                   ▼
       │                           ┌──────────┐                        ┌─────────────┐
       │                           │ DEGRADED │◀─── subscription ──────│ SUBSCRIBING │
       │                           └──────────┘      failed            └─────────────┘
       │                                  │                                   │
       │                               retry                              success
       │                                  │                                   │
       │                                  ▼                                   ▼
       │                           ┌──────────┐    gap_detected       ┌────────────┐
       └────── close() ────────────│  CLOSED  │◀───────────────────────│ SUBSCRIBED │
                                   └──────────┘                        └────────────┘
                                        ▲                                    │
                                        │                              gap_detected
                                   max_retries                               │
                                        │                                    ▼
                                        └──────────────────────────────┌───────────┐
                                                                       │ RESYNCING │
                                                                       └───────────┘

State Descriptions

State	Description	Exit Conditions
`DISCONNECTED`	Initial state	`connect()` → CONNECTING
`CONNECTING`	Establishing WebSocket	success → AUTHENTICATING, failure → DEGRADED
`AUTHENTICATING`	Sending API credentials	success → SUBSCRIBING, failure → DEGRADED
`SUBSCRIBING`	Sending subscription requests	all confirmed → SUBSCRIBED, failure → DEGRADED
`SUBSCRIBED`	Receiving data normally	gap → RESYNCING, disconnect → DEGRADED, `close()` → CLOSED
`RESYNCING`	Recovering from sequence gap	complete → SUBSCRIBED, failure → DEGRADED
`DEGRADED`	Attempting recovery	retry → CONNECTING, max_retries → CLOSED
`CLOSED`	Terminal state	`connect()` starts new connection

State Events

Every state transition emits an Event::StateChange(ConnectionState):

use kraken_ws_sdk::prelude::*;

let mut events = client.events();
while let Some(event) = events.recv().await {
    match event {
        Event::StateChange(state) => {
            match state {
                ConnectionState::Subscribed => println!("✅ Ready to receive data"),
                ConnectionState::Degraded { reason, retry_count, .. } => {
                    println!("⚠️ Degraded: {:?}, retry #{}", reason, retry_count);
                }
                ConnectionState::Closed { reason } => {
                    println!("❌ Closed: {:?}", reason);
                    break;
                }
                _ => {}
            }
        }
        _ => {}
    }
}

Correctness Guarantees

This section defines the SDK's behavioral contract. These are guarantees, not just features.

Message Ordering

Scope	Guarantee	Notes
Per symbol, per channel	Strictly ordered	Ticker updates for BTC/USD arrive in exchange order
Per symbol, across channels	No guarantee	Ticker and trade for same symbol may interleave
Across symbols	No guarantee	BTC and ETH updates are independent streams

Kraken's guarantee: Messages within a channel/pair are sequenced. The SDK preserves this ordering.

Heartbeat & Liveness

Mechanism	Interval	SDK Behavior
Kraken ping	30s	SDK responds with pong automatically
SDK heartbeat	Configurable (default 30s)	Sends ping, expects pong within `timeout`
No response	After `timeout`	Connection marked stale, reconnect triggered
Kraken `systemStatus`	On connect	Logged, `on_connection_state_change` fired

Kraken endpoints:

Public: wss://ws.kraken.com - No auth required, ticker/trade/book/ohlc
Private: wss://ws-auth.kraken.com - Requires API key, ownTrades/openOrders

Reconnection Behavior

Event	SDK Behavior	User Action Required
Network disconnect	Auto-reconnect with exponential backoff (100ms → 30s)	None
Server close (1000)	Reconnect after `initial_delay`	None
Auth failure	Stop reconnecting, emit error	Re-authenticate
Max attempts reached	Emit `ConnectionState::Failed`	Manual `connect()`

On successful reconnect:

All previous subscriptions are automatically restored
on_connection_state_change(Connected) fires
Order book state is invalidated - snapshot required before deltas

Sequence Gap Handling

Expected: seq 100 → Received: seq 105
         ↓
    Gap detected (size: 5)
         ↓
    on_gap_detected(expected=100, received=105)
         ↓
    Resync triggered (request snapshot)
         ↓
    on_resync(reason=GapDetected)

Gap policies:

GapPolicy::Resync (default) - Request fresh snapshot on any gap
GapPolicy::Ignore - Continue processing, accept data loss
GapPolicy::Buffer - Buffer messages, attempt reorder within window

Kraken WebSocket Version

This SDK targets Kraken WebSocket API v2 (public channels):

Endpoint	URL	Auth Required
Public	`wss://ws.kraken.com`	No
Private	`wss://ws-auth.kraken.com`	Yes

Reference: Kraken WebSocket API Documentation

Order Book Stitching Rules

The SDK maintains order book state with these invariants:

Snapshot first: Always wait for snapshot before applying deltas
Checksum validation: CRC32 checksum verified after each update when provided by Kraken
Sequence ordering: Deltas must be applied in sequence order
Stale detection: Discard deltas older than current snapshot sequence

Checksum status: The SDK validates checksums when Kraken provides them in book updates. If checksum fails, the book is marked invalid and a resync is triggered.

State Machine:
┌─────────────┐    snapshot    ┌──────────────┐    delta     ┌─────────────┐
│ Disconnected│───────────────▶│ Snapshot Rcvd│─────────────▶│ Applying    │
└─────────────┘                └──────────────┘              │ Deltas      │
       ▲                              ▲                      └──────┬──────┘
       │                              │                             │
       │         checksum fail        │      checksum ok            │
       └──────────────────────────────┴─────────────────────────────┘

During resync: Consumer receives BookState::Resyncing. Do not use stale book data.

Timestamp Guarantees

Guarantee	Level	Notes
Exchange timestamps	Monotonic per symbol	Kraken guarantees this
Receive timestamps	Best effort	Network jitter possible
Latency calculation	`receive_time - exchange_time`	Requires NTP sync

Clock skew: If your system clock drifts >1s from exchange, latency metrics will be inaccurate.

Tuning Guide

Buffer Sizes

Use Case	`buffer_size`	`max_queue_depth`	Notes
Single pair, low freq	64	100	Minimal memory
Single pair, high freq	256	500	BTC/USD during volatility
10 pairs, mixed freq	512	1000	Typical trading bot
50+ pairs, all tickers	2048	5000	Market maker / aggregator
Order book depth 1000	4096	2000	Deep book tracking

Backpressure Configuration

BackpressureConfig {
    max_messages_per_second: 1000,  // Rate limit
    max_queue_depth: 500,           // Buffer before dropping
    drop_policy: DropPolicy::Oldest,  // What to drop
    coalesce_window_ms: 10,         // Merge window for same-symbol updates
}

Drop Policies:

Policy	Behavior	Best For
`Oldest`	Remove oldest queued message	Real-time displays
`Latest`	Reject incoming message	Audit/logging
`Coalesce`	Merge updates for same symbol	High-frequency tickers

Dropped vs Coalesced:

Dropped: Message discarded entirely, data loss
Coalesced: Multiple updates merged into one, no data loss but reduced granularity

Recommended Defaults

Low-latency trading (single pair):

ClientConfig {
    buffer_size: 128,
    timeout: Duration::from_millis(5000),
    ..Default::default()
}
BackpressureConfig {
    max_messages_per_second: 0,  // No limit
    drop_policy: DropPolicy::Oldest,
    ..Default::default()
}

Multi-pair monitoring (10-50 pairs):

ClientConfig {
    buffer_size: 1024,
    timeout: Duration::from_secs(30),
    ..Default::default()
}
BackpressureConfig {
    max_messages_per_second: 5000,
    coalesce_window_ms: 50,
    drop_policy: DropPolicy::Coalesce,
    ..Default::default()
}

High-frequency aggregator (100+ pairs):

ClientConfig {
    buffer_size: 4096,
    timeout: Duration::from_secs(60),
    ..Default::default()
}
BackpressureConfig {
    max_messages_per_second: 10000,
    max_queue_depth: 10000,
    coalesce_window_ms: 100,
    drop_policy: DropPolicy::Coalesce,
    ..Default::default()
}

Feature Flags

[dependencies]
# Minimal - public market data only
kraken-ws-sdk = "0.2"

# With private channels (requires API key)
kraken-ws-sdk = { version = "0.2", features = ["private"] }

# Full orderbook state management
kraken-ws-sdk = { version = "0.2", features = ["orderbook-state"] }

# Everything
kraken-ws-sdk = { version = "0.2", features = ["full"] }

# WebAssembly target
kraken-ws-sdk = { version = "0.2", default-features = false, features = ["wasm"] }

Feature	Description	Dependencies Added
`public` (default)	Ticker, trades, book, OHLC	Core only
`private`	ownTrades, openOrders	Auth modules
`orderbook-state`	Full book management	CRC32, state machine
`metrics`	Prometheus export	prometheus crate
`chaos`	Fault injection	None
`wasm`	Browser support	wasm-bindgen

Performance

The SDK is designed for high-performance applications:

Asynchronous: All operations are non-blocking
Low-allocation hot path: Minimizes copying where possible (not zero-copy)
Efficient parsing: Optimized JSON parsing with serde
Bounded queues: Explicit cleanup on shutdown, configurable buffer limits
Concurrent processing: Multiple callbacks can process data simultaneously

Testing

Run tests with:

cargo test

The SDK includes both unit tests and property-based tests for comprehensive coverage.

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

This project is licensed under the MIT License - see the LICENSE file for details.

Security

Credential Handling

DO NOT:

Log API keys or secrets (SDK redacts these automatically)
Commit .env files (use .env.example as template)
Pass credentials in URLs or query strings
Store credentials in code or version control

DO:

Use environment variables for credentials
Use .env files locally (gitignored)
Use secret managers in production (AWS Secrets Manager, Vault, etc.)

// ✅ GOOD: Load from environment
let api_key = std::env::var("KRAKEN_API_KEY").ok();
let api_secret = std::env::var("KRAKEN_API_SECRET").ok();

// ❌ BAD: Hardcoded credentials
let api_key = Some("abc123".to_string()); // NEVER DO THIS

What the SDK Logs

Data	Logged?	Notes
API Key	❌ Never	Redacted to `***`
API Secret	❌ Never	Never appears in logs
Auth tokens	❌ Never	Generated internally, not logged
Symbols/pairs	✅ Yes	e.g., "BTC/USD"
Prices/volumes	✅ Yes	Market data is public
Connection state	✅ Yes	"Connected", "Reconnecting"
Error messages	✅ Yes	Without sensitive data

Network Security

All connections use TLS 1.2+ (wss://)
Certificate validation is enabled by default
No plaintext WebSocket (ws://) in production

Reporting Vulnerabilities

If you discover a security vulnerability, please:

Do not open a public issue
Email security concerns to the maintainers
Allow 90 days for a fix before public disclosure

Versioning & Compatibility

This SDK follows Semantic Versioning with a strong compatibility promise:

Post-1.0 Guarantee:

No breaking changes in prelude module without major version bump
Config additions are non-breaking (new fields have defaults)
New enum variants are non-breaking (#[non_exhaustive])
MSRV bumps require major version

Pre-1.0 (current):

Minor versions may include breaking changes (documented with BREAKING:)
Patch versions are always safe to upgrade

See CHANGELOG.md for detailed upgrade notes.

Disclaimer

This SDK is not officially affiliated with Kraken. Use at your own risk in production environments.

Support

For questions and support:

Check the examples directory
Review the API documentation: cargo doc --open
Open an issue on GitHub
See CHANGELOG.md for version history

Built with ❤️ in Rust

Dependencies

~15–38MB
~492K SLoC