Armor
  • Armor.fi Living Documentation
  • Disclaimer / Terms
  • Roadmap
  • ArCore: Features and Highlights
    • A True Smart Cover Solution
      • Pay As You Grow and Only Pay What You Owe
      • Simplified Payments
      • KYC-less and Permissionless
    • Coverage Solutions Aggregator
    • Rewarding Governance
  • Products: ARMOR V1 Suite
    • Ecosystem Summary
      • Rewards Summary
      • Model Constants
    • arNXM: Yield Vault
      • Armor Treasury Reserve
      • Staking Guide
    • arNFT: Tokenized Coverage
      • Staking Guide
    • arCore: Smart Cover System
      • Covered Protocols
    • ArmorDAO: Hybrid Decentralization
  • Armor V2 Suite
    • vArmor Vault
    • arShield: Armored Shield Vaults
      • Staking Guide
  • arPro
  • BSC integration
  • $ARMOR Token
    • Tokenomics
    • Functions and Governance
    • Revenue Model
    • Aligned Incentives
    • Liquidity and User Rewards
      • Launch Schedule
      • Rewards Allocations
    • Risks Breakdown
  • FAQ
    • What is Armor?
    • Why Do I Need Armor?
    • How Does Armor Provide Cover?
    • What is arNFT?
    • What is arNXM?
    • How Do I Buy Armor Cover?
    • How Do I Sell Armor Cover?
    • Competitive Differences
  • Community Resources
    • Announcements
    • Telegram
    • Discord
    • Feature Requests
    • Medium
  • developer resources
    • Audits
    • Github Repos
    • Bug Bounties
      • Immunefi Bug Bounty
      • Armor Big Bounty Program
  • Media Resources
    • About
    • Slide Deck
    • Market Information
    • Brand / Logo / Token
    • Blog
    • Mentions
    • Contact / Inquiries
Powered by GitBook
On this page
  • The rewards are as follows:
  • Low — $1000
  • Medium — $5000
  • High — $10,000
  • Critical — up to $1,150,000----if loss is over $1M)
  • Please contact dao@armor.fi with any reports.
  1. developer resources

Bug Bounties

PreviousCompetitive DifferencesNextImmunefi Bug Bounty

Last updated 4 years ago

We typically conduct full unit tests with an internal audit and put mainnet smart contracts through external audits too, but you can never be too careful. That’s why we’re launching a bug bounty.

This bug bounty applies to all smart contracts used actively in live products on mainnet. All code can be found at .

The rewards are as follows:

Low — $1000

Low severity bugs affect the contract in a minimal way. A low severity bug, for example, may be the contract not applying to standards in a non-threatening way (such as there not being a total supply), or an external getter function not working correctly.

Medium — $5000

Medium severity bugs affect the contract in a minimally-harmful way. This includes bugs that lead to a small (but non-negligible) loss of funds or a loss of funds in extreme edge cases.

High — $10,000

High severity bugs are very harmful to the contract. They require the contract to be re-deployed or upgraded. An example of a high severity bug is an exploit that leads to severe loss of user funds.

Critical — up to $1,150,000----if loss is over $1M)

Critical severity bugs break the contract. They require the contract to be re-deployed or upgraded. An example of a critical severity bug is an exploit in which all user funds can be lost or an exploit that allows the contract to become completely disabled.

There is usually a description of the contract and main functions in the readme contained in the Github Repos linked to in the left panel under DEVELOPER RESOURCES.

Rewards will only be given to the bounty hunter that first submits the bug. The classification and reward given for any bug will be based on the OWASP risk rating system (above), but at the sole discretion of the token holders or Armor team.

Happy hunting!

Please contact with any reports.

https://github.com/ArmorFi
dao@armor.fi