Basin
basin.exchangeDiscordTwitterGitHub
  • Basin
  • Risks
  • Basin Whitepaper
  • Multi Flow Whitepaper
  • πŸ’§Introduction
    • Why Basin
  • 🧩Components
    • Well
    • Pump
    • Aquifer
  • πŸͺ£Implementations
    • Overview
    • Multi Flow Pump
  • πŸ—ΊοΈGuides
    • Directory
    • Basics
      • Connect to Basin
      • Approve Contracts
    • Using Wells
      • Add Liquidity
      • Remove Liquidity
      • View my Liquidity
      • Swap
    • Deploying Wells
      • Deploy a Well
  • πŸ“–Resources
    • Discord
    • Contracts
    • Audits
    • Bug Bounty
    • Links
Powered by GitBook
On this page
  1. Resources

Bug Bounty

PreviousAuditsNextLinks

Last updated 8 months ago

The Beanstalk DAO launched a bug bounty program with Immunefi was launched on October 11, 2022.

Basin and its components have been added as in-scope of the program. This bug bounty program is focused on the Beanstalk, Basin and Pipeline smart contracts and preventing the loss of user funds. The maximum bounty is 1,100,000 Beans.

You can find the bug bounty program and submit bug reports here:

In order to be considered for the maximum potential reward, bug reports must come with (1) a Proof of Concept (PoC), and (2) code implementing the fix.

Bug reports that do not come with a PoC and code implementing a fix may qualify for a maximum of up to 30% of the potential reward outlined below, as determined by the Beanstalk Immunefi Committee (BIC). You can read more about the BIC here:

  • BIC Process

  • BICM Dashboard

All vulnerabilities noted in any audit reports in the Beanstalk Audits repository (or otherwise known by the BIC, BCM, or Root DAO Multisig) are not eligible for a reward.

πŸ“–
Beanstalk Bug Bounties | ImmunefiImmunefi
Logo