Vulnerability Reward Program
Last updated
Last updated
SheepDex has gained a lot of love and support since launch. Being committed to ensure the security of users' assets and trading environments, we constantly optimize the product to improve its performance and user experience. SheepDex has been fully audited but given DeFi's rapid growth there is still the possibility of a vulnerability.
Therefore, we are launching a bounty program that encourages users to report errors and vulnerabilities in the SheepDex protocol infrastructure and smart contracts.
Contact us if you have discovered a potential security vulnerability in the product. The SheepDex Team will take immediate action to resolve the issue and you will also be rewarded with SPC. For more info, check the following terms and guidelines:
Severity Levels | Criteria | SPC rewards |
Critical | Critical error that would result in immediate loss of funds of more than 10% or permanent damage to the protocol; | $100000 SPC |
Major | Major level means a bug that leads to immediate loss of funds of more than 0.1% and less than 10%, or causes serious damage to protocol; | $15000 SPC |
Moderate | Moderate error would cause a loss of funds of less than 0.1% or damage the protocol; | $5000 SPC |
Low | Minor technical issues. | $1000 SPC |
To qualify for this program you must meet the following eligibility requirements:
1.You will be rewarded with a bug that’s reported for the first time, and we don’t reward a bug that’s already reported;
2. You must provide sufficient information so that we can take immediate action and fix the vulnerability;
3. Do not disclose any vulnerability information to anyone other than the SheepDex team;
4. Do not use any vulnerability information in any way, including disclosing it or obtaining illegal profits through it;
5. Rewards will be evaluate on a case-by-case basis. The program and terms and conditions are at the discretion of SheepDex;
6. Your report will be invalid and there will be no reward if the bug has already affected or damaged the platform.
*Please read the above rules and follow all eligibility requirements for the program.
Any potential security vulnerabilities discovered should be sent to:sheepdexbbp@gmail.com.
Vulnerability information is extremely sensitive. We strongly recommend that all security vulnerability reports sent to SheepDex be encrypted and shall not be disclosed to anyone, any entity or any email address.
Upon receipt of your mail, we will reply you with the result within 5 days. SheepDex will confirm the potential vulnerability, assess the risk, determine the impact and assigns a processing priority. If the vulnerability is confirmed, the priority determines how the issue is handled throughout the remaining steps in the process.