Skip to content

Commit f8b5264

Browse files
claudijdguibescos
claudijd
and
guibescos
authored
Update bounty to Immunefi (#409)
* Update bounty to Immunefi * add bullet points --------- Co-authored-by: Guillermo Bescos <[email protected]>
1 parent 2c6c836 commit f8b5264

File tree

1 file changed

+6
-12
lines changed

1 file changed

+6
-12
lines changed

SECURITY.md

+6-12
Original file line numberDiff line numberDiff line change
@@ -2,21 +2,15 @@
22

33
## Bug Bounty Program
44

5-
Pyth operates a self hosted [bug bounty program](https://pyth.network/bounty) to financially incentivize independent researchers (with up to $250,000 USDC) for finding and responsibly disclosing security issues.
5+
The Pyth Network operates a bug bounty program to financially incentivize independent researchers for finding and responsibly disclosing security issues.
66

7-
- **Scopes**
8-
- [Pyth Oracle](https://github.com/pyth-network/pyth-client/tree/main/program)
9-
- [Pyth Crosschain Ethereum](https://github.com/pyth-network/pyth-crosschain/tree/main/target_chains/ethereum/contracts/contracts/pyth)
10-
- [Pyth Crosschain Aptos](https://github.com/pyth-network/pyth-crosschain/tree/main/target_chains/aptos/contracts)
11-
- [Pyth Crosschain Sui](https://github.com/pyth-network/pyth-crosschain/tree/main/target_chains/sui/contracts)
12-
- [Pyth Governance](https://github.com/pyth-network/governance/tree/master/staking/programs/staking)
13-
- **Rewards**
14-
- Critical: Up to $250,000
15-
- High: Up to $50,000
7+
[Immunefi-Hosted Program](https://immunefi.com/bug-bounty/pythnetwork/)
8+
- Rewards: Up to $250,000 USDC
9+
- KYC: Required
1610

17-
If you find a security issue in Pyth, please [report the issue](https://yyyf63zqhtu.typeform.com/to/dBV4qcP0) immediately to our security team.
11+
If you find a security issue in Pyth, please report the issue immediately using the bug bounty program above.
1812

19-
If there is a duplicate report, either the same reporter or different reporters, the first of the two by timestamp will be accepted as the official bug report and will be subject to the specific terms of the submitting program.
13+
If there is a duplicate report, either the same reporter or different reporters, the first of the two by timestamp will be accepted as the official bug report and will be subject to the specific terms of the program.
2014

2115
## 3rd Party Security Audits
2216

0 commit comments

Comments
 (0)