With the initial launch of ZF Grants, we're looking for help identifying bugs on the road to mainnet launch.
For non-critical bugs, please use our GitHub issue queue to lodge bug reports.
For critical bugs, please review our Responsible Disclosure Policy. Critical bug disclosures that follow our Responsible Disclosure Policy will be eligible for a $500 reward (paid out in USD, not testnet coins). Because we don't currently have a document detailing bug scope, please use your best judgement when disclosing critical vulnerabilities, and err on the side of caution. Some examples that include but are not limited to what we would consider critical bugs are:
Bug bounties will be paid out by the Grant.io team, and will require relevant tax documents and associated compliance procedures.