The bug bounty program is focused on the prevention of negative impacts on the BlackPool protocol. We are looking for issues which can lead to substantial loss of money, critical bugs that could cause irreversible loss of funds.
You should let us know as soon as possible upon discovery of a potential security issue. And provide us a reasonable amount of time to resolve the issue before any disclosure to the public or a third-party.
We will not consider already known vulnerabilities and issues related located to the front-end code not leading to smart contract vulnerabilities or risks of loss of funds.
You must be the first reporter of the vulnerability and provide us enough information about the issue.
Please send us an email at firstname.lastname@example.org with the tag [bounty] in the subject