Bug Bounty Program
Bug Bounty Program for PUSD x ALGO
Note: This section is currently a concept initiative for the live protocol and not an active program at the moment
The PUSD x ALGO bug bounty initiative is designed to identify and address vulnerabilities within our smart contracts. We offer rewards as an incentive for contributions that enhance the security of our platform.
Guidelines and Rewards:
Duplicate reports or those already recognized by the PUSD x ALGO team are ineligible for a reward.
Publicly disclosed vulnerabilities, including exploitation on main-net or test networks, are disqualified.
Direct or indirect staff or affiliates of PUSD x ALGO cannot claim rewards.
Only the smart contracts specified are eligible. The bounty does not cover websites or infrastructure.
Eligibility, scoring, and reward terms are at the discretion of the PUSD x ALGO team.
Rewards are based on Severity, calculated by the OWASP model considering Impact and Likelihood.
Severity-based Rewards
Reward sizes are guided by the rules below, but are in the end, determined at the sole discretion of the ALGO x PUSD team.
The team may adjust reward amounts at any time.
Critical: TBC
High: TBC
Medium: TBC
Low: TBC
Note: TBC
If the bug exists on PulseChain deployed contract, the full bounty is awarded.
Additional Considerations
The clarity and detail of the report.
Reproducibility, with test cases and instructions preferred.
Proposed fixes, with higher rewards for actionable solutions.
Eligible Smart Contracts
All non-test contracts in the PUSD x ALGO protocol as defined below:
TBC
This program is voluntary and discretionary, aimed at community improvement. It is not a contest and may be cancelled at any time. Rewards are at the team's discretion and subject to legal restrictions. Awards cannot be issued to individuals in sanctioned countries or on sanction lists. You're responsible for taxes on any rewards. Ensure your activities are lawful and don't compromise any non-public data.
To Report a Bug
Last updated