Hi, Boring communities
The new BoringDAO bug bounty is now live on Immunefi!
Immunefi is a bug bounty platform for smart contracts and DeFi projects, where security researchers review code, disclose vulnerabilities, get paid, and make crypto safer.
As a multi-chain bridge and Bitcoin Finance platform, it’s crucial that engineers and bounty hunters are correctly incentivized to practice responsible disclosure if they find anything that needs to be fixed in BoringDAO.
New deployments to the BoringDAO smart contracts are consistently audited by external parties, but the history of other DeFi protocols has shown that even this is no guarantee for total security, so there it is important to allow more bug hunters to look at the code.
BoringDAO bug bounty program will be hosted by the team at Immunefi, so any issues found can be submitted there. Claims will be filtered by Immunefi and valid ones investigated by BoringDAO Core Contributors.
Here are the updated rewards:
• Critical: USD $50,000–1% of funds at risk (maximum est. USD $520,000
• High: $10,000
• Medium: $3,000
• Low: $1,000
Asset security is always the first priority of BoringDAO. Bounties can be paid in BOR or oBTC at the bounty hunter’s choice. The Immunefi bounty page can be accessed here.