gitcoinbot
commented
4 years ago Issue Status: 1. Open 2. Started 3. Submitted 4. Done
This issue now has a funding of 0.9 WBTC attached to it as part of the Metamask fund.
- If you would like to work on this issue you can 'start work' on the Gitcoin Issue Details page.
- Want to chip in? Add your own contribution here.
- Questions? Checkout Gitcoin Help or the Gitcoin Slack
- $109,241.67 more funded OSS Work available on the Gitcoin Issue Explorer
Description
MoC has allocated up to 0.9 WBTC for those who identify significant security issues in Money On Chain Protocol 0.1 Background You can find out information about Money on Chain protocol in the following places: https://moneyonchain.com/whitepaper/ https://github.com/money-on-chain
Bounty Rules
We'll pay up to 0.5 WBTC for each critical bug, defined as a bug that causes all funds to be susceptible to loss; up to 0.12 WBTC for each bug that causes one user's funds to be susceptible to loss; and up to 0.05 WBTC for other bugs. This bounty program is valid for 3 months (from 11/21/19 to 02/21/20). Performance enhancement suggestions are welcomed but do not qualify for bounties. We have many existing ideas on how to improve the model. That said, if your idea is truly inspiring and eventually gets adopted, we may still grant you some tokens at our discretion. This bounty program is set up only for the Smart Contracts dapp excluded. Bugs found in other application’s layers don't qualify. The white paper is something you must read to understand the overall design and Solidity code. If two equal reports were received, the first one would considered valid. If a report includes evidence of how the sender himself affected the availability of funds from a third party (i.e. stolen or locked funds in a contract), the report will be invalidated. Nobody can post a bug anywhere until this has been fixed and approved by MoC.
How to participate
Send us an email (to bugbounty@moneyonchain.com) reporting the bug. If you just want to reach out to ask questions, please also create an issue - unless there is a duplicate one, and label it as discussion instead. Once the bug was accepted to resolved, payment will be made in one month. Thanks! Looking forward to the community's help. Happy hunting!
Important Update:
When you identified a bug, please check if it has already been fixed on the master branch. If so, the bug is not valid for claiming a reward.