That would make me extremely nervous. A hosted bot with account API keys is just begging to have all of your funds stolen. I'm not accusing you of being a dishonest person, but regardless of if you were to walk away with it, or an attacker compromised your site the fact is this could easily end very badly.
I advise everyone to avoid this at all costs.
If you want to test your bot, please post the source code and disclose the risks.
...
Umm you don't even have SSL on your site??? Even your sign up and login pages?
That worries me perhaps even more than the fact that you're hosting a bot and asking for API keys.
Thank you for reply.
We understand and share your worry about security. In future if this bot will run as a commercial project we will do more efforts to improve the security and of course will add SSL. But now during the testing we don't have enough resources.
Although currently even if the site will be attacked we don't see what an attacker would steal valuable. In the register form we ask only user name and password for your cibitcoin.com account. Btc-e API keys does not allow to steal your funds. They are only to get btc-e trade information and to place orders.