![Velvet Capital x Hats Finance Bug Bounty Program](https://dropsearn.fra1.cdn.digitaloceanspaces.com/media/cache/70/d4/70d4d2fe6fd6933f5141b78178a1e7b0.jpg)
Velvet Capital x Hats Finance Bug Bounty Program
Add to Watchlist
Added to Watchlist
Reward pool
Not set
USDC, NFT
Expected profit
up to ~$3,000
up to ~3,000 USDC
Max participants
∞
No limit
DropsEarn score
Neutral
Normal, Low Risks
Details
Velvet Capital has announced the launch of Velvet Capital Bug Bounty Program in partnership with Hats Finance. Hats Finance is a leader in blockchain security solutions and Velvet Capital is honored to introduce a comprehensive bug bounty program with them.
The bug bounty program is a proactive approach to discovering vulnerabilities, weaknesses, or bugs before they can be exploited by malicious actors. By incentivizing ethical hackers and security researchers with rewards, Velvet Capital aims to identify and rectify potential security issues within Velvet Capital systems.
Program Details
-
Scope: The program extends to all Velvet.Capital smart contracts (and app/website for high & critical issues). Details are available on the program page.
- Rewards: Generous bounties, scaled according to the identified bug severity, as per the Common Vulnerability Scoring System (CVSS). Details are available on the program page.
-
Low: Contract does not function as expected, with no loss of funds. The prize will be capped at 5% of the amount that could be frozen, extracted, or at risk in production at the time of disclosure.
-
Medium: Contract consumes unbounded gas, block stuffing, griefing denial of service (i.e. attacker spends as much in gas as damage to the contract), gas griefing. The prize will be capped at 20% of the amount that could be frozen, extracted, or at risk in production at the time of disclosure.
-
High: Token holders are temporarily unable to transfer holdings, users spoof each other, theft of yield - Transient consensus failures. The prize will be capped at 30% of the amount that could be frozen, extracted, or at risk in production at the time of disclosure.
-
Critical: Empty or freeze the contract's holdings (e.g. economic attacks, flash loans, reentrancy, MEV, logic errors, integer over-/under-flow), Cryptographic flaws. The prize will be capped to the amount that could be frozen, extracted, or at risk in production at the time of disclosure.
- Reporting: Reports should be submitted via the Hats Finance platform, ensuring a transparent and effective communication channel between researchers and Velvet Capital security team.
Velvet Capital believes that security is not a one-time task but an ongoing commitment. Through this partnership, Velvet Capital and Hats Finance are dedicated to maintaining the highest security standards, building trust with users, and fostering a secure DeFi ecosystem.
Links
About
Velvet Capital partners with Hats Finance for Bug Bounty Program. Inviting ethical hackers, developers, and security enthusiasts to participate in the bug bounty program and earn based on the severity of the bug found.
Activity Type
Registration
Open
When Reward:
None
Event Status
Links