13 Photos and videos
26 Nov 2024
There's a new top bounty in town!
π«‘ @Uniswap
26 Nov 2024
The biggest bug bounty in history is now live. @Uniswap just raised the standard of building in public πͺ
With $15.5M on the line, it's an unprecedented testament to the rigorous security of v4. Think you can find a critical bug? Give it a shot.
π Bounty link below
2
2
41
3,072
23 Sep 2024
**Swell** expands with 28 new bounty targets! **Inverse Finance** adds 1, while **thUSD** adds 2. Dive into the details at bounty.vision! πππΎ #bugbounty #cybersecurity #Swell #InverseFinance #thUSD
3
312
20 Sep 2024
Bounty update! π― dlcBTC appeared then vanished on Rxyz. Inverse Finance adds 4 new targets on Immunefi. SafeTech Labs posts new bounties on Hackenproof. MAIA joins Immunefi! Details at bounty.vision π #bugbounty #cybersecurity
5
303
19 Sep 2024
π Tokemak launches a new bounty on Rxyz π‘ ZetaChain adds 2 new targets on Hackenproof: github.com/zeta-chain/go-tss and github.com/zeta-chain/tss-liβ¦. Check all updates at bounty.vision! πβ¨ #BountyBuzz #Tokemak #ZetaChain
3
184
18 Sep 2024
Eclipse and Firedancer have launched new bounties on Immunefi! Meanwhile, Metis has removed its bounty from Rxyz. Check out all updates on bounty.vision! ππ #BugBounties #Eclipse #Firedancer #Metis
2
160
17 Sep 2024
Babylon Labs shifts its start date, zkSync Era adds 19 new targets, Ethereum Foundation launches a new bounty, Aevo flexes with 2 more addresses, C3 removes its bounty, and TruFin boosts payouts with 7 new targets. Check updates on bounty.vision ππ₯
2
122
16 Sep 2024
Superfluid exits Hackenproof, while StakeStone, Babylon Labs, and Light Protocol launch new Immunefi bounties! π Check all updates at πbounty.vision
2
109
9 Sep 2024
π¨ "Recent Updates" is live! π¨
We aggregate bounties across every platform and showcase those with the latest changes π―
Spot fresh code in bountiesβprime targets for new bugs ππ
Stay up to date on Twitter and in our new Telegram channel π’
t.me/bountyvision
1
5
89
1,461,426
6 Sep 2024
Just pushed some performance fixes - site should feel much much snappier!
4
180
26 Aug 2024
Just rolled out a new scrolling ticker for recently updated bounties!
More on the way on this front - we're cooking up something nice ;o)
1
1
6
763
7 Aug 2024
We (finally) have a real search!
And yes it captures "/" and "cmd k"
bounty dot vision
1
2
8
1,732
7 Aug 2024
Also included some performance updates and improved mobile support. Please let us know here or via the feedback form if you encounter any issues (especially on mobile!)
1
3
135
8 Aug 2024
and of course the top bounty should be displayed in the search! live now
2
89
2 Aug 2024
We warn you about these :o)
bug bounty programs be like:
5 MILLION DOLLAR MAX BOUNTY
*only up to 10% of funds at risk
funds at risk: $670.82
1
11
2,230
26 Jul 2024
Upgrading to another JSON API for a major platform now.
We are grateful - scraping bounty pages is a pain, and only one of the sites we support had a public API before we started this site.
Not saying the wave is ENTIRELY because of us, but... ππ
4
420
22 Jul 2024
This was a major pain point for us as bounty hunters as well - we put together some internal tooling to address it.
Would a basic bulk download of the source for all in-scope contracts be sufficiently useful here?
Simplest version (ready ~now) would just be a .zip organized like:
<contractname>_<address>_<chain>/<*.sol>
Better version would include smart path resolution file deduplication, etc. for IDE go-to-definition. We have a hacky version of this internally right now, but getting it ready for public use will take a bit.
Best version would just be a compilable foundry project (the dream)
One of the big pains with @immunefi is that you have to open each smart contract in scope.
They should require the project to create an ad hoc and always in sync GitHub repo that mimics the deployed source code; otherwise, it's pretty challenging to manage it.
1
5
253
13 Jul 2024
5
12
764
6 Jul 2024
many such cases
Signal has:
- No bug bounty as far as I can tell
- No proper public disclosure after critical vulnerabilities are fixed
- Uses weirdly insecure email that governments can likely read for their vuln inbox
- On (at a minimum their desktop app), messages werenβt deleted for years
2
199
27 Jun 2024
Morpho's massive new max bounty of $2.5M makes them leapfrog 3 other protocols in the lending space.
Here's the new lending leaderboard ππ΅π
1. @fraxfinance ($10M)
2. @sparkdotfi ($5M)
3. @MorphoLabs ($2.5M) β¬οΈβ¬οΈβ¬οΈ
4. (tied) @aave ($1M) β¬οΈ
4. (tied) @solendprotocol ($1M) β¬οΈ
4. (tied) @SovrynBTC ($1M) β¬οΈ
Find where you stack up at bounty.vision
1
3
9
2,473