Skip to main content

Bug Bounty Program

Overview

The Bug Bounty Program page manages the platform's security vulnerability reward program. It provides detailed information about reward structures, submission processes, and security categories for both Smart Contracts and Web Applications. This is the most interactive page in the Legal & Security section, featuring dynamic content based on user selection.

Bug Bounty Page Bug Bounty Page

Page Structure

Hero Section

  • Subtitle: "Security Program"
    • Style: Uppercase, primary color, tracking-wider
  • Title: "Bug Bounty Program"
    • Style: text-4xl md:text-6xl, font-bold
  • Description: Overview of the bug bounty initiative and its purpose

Program Overview Section

Content

  • Section Title: "Program Overview"
  • Description: Explanation of the bug bounty program objectives
  • Important Note: Requirement for Proof of Concept (PoC)
    • Emphasis on demonstration of vulnerability
    • Clear submission requirements

Category Selection (Interactive Component)

Custom Component: BugBountySelectorItem

This is a reusable, interactive component for category selection.

Available Categories:

  1. Smart Contracts

    • Icon: FileTerminal from lucide-react
    • Label: "Smart Contracts"
    • Focus: Blockchain smart contract vulnerabilities

  2. Web App

    • Icon: Globe from lucide-react
    • Label: "Web App"
    • Focus: Web application security issues

Rewards Tables (Conditional Rendering)

The rewards table changes dynamically based on the selected category.

Smart Contracts Rewards

SeverityReward AmountBadge Color
CriticalUp to 100,000 KLVRed (bg-red-500/20)
HighUp to 50,000 KLVOrange (bg-orange-500/20)
MediumUp to 10,000 KLVYellow (bg-yellow-500/20)

Web App Rewards

SeverityReward AmountBadge Color
Critical70,000 KLVRed (bg-red-500/20)
High30,000 KLVOrange (bg-orange-500/20)
Medium5,000 KLVYellow (bg-yellow-500/20)

Submission Process Section

Section Title

  • Title: "How to Submit a Bug"
  • Description: Step-by-step submission guidelines

Submission Steps

The page outlines a 4-step process:

Step 1: Identify the Vulnerability

  • Discover a security vulnerability in the platform
  • Determine severity level (Critical/High/Medium)
  • Categorize as Smart Contract or Web App issue

Step 2: Document with Proof of Concept

  • Create detailed documentation
  • Include steps to reproduce
  • Provide PoC code/screenshots
  • Describe potential impact

Step 3: Submit Details

  • Click the "Submit Bug Report" button
  • Email client opens automatically
  • Send comprehensive report to security team

Step 4: Wait for Review

  • Security team reviews submission
  • Verification of vulnerability
  • Assessment of severity
  • Reward determination and distribution

Submit Button

  • Label: "Submit Bug Report"
  • Icon: Mail from lucide-react
  • Action: mailto:[email protected]
  • Behavior: Opens default email client
  • Style: Primary button with full width on mobile