Horizon Protocol Smart Contracts — Mainnet Hacken Bug Bounty Program
In our ongoing efforts to ensure the safest trading environment for our users, we are pleased to announce a new bug bounty program for Horizon Protocol mainnet, hosted by HackenProof. As we continue to build and improve Horizon Protocol, we invite you to contribute your expertise to help ensure the security of our systems.
About Hacken:
Hacken, a cybersecurity firm, specializes in services like vulnerability assessment, penetration testing, and blockchain security to fortify organizations, with a focus on the blockchain and cryptocurrency sector. Additionally, Hacken operates HackenProof, a bug bounty platform connecting security researchers with companies seeking vulnerability assessments. Researchers are incentivized with monetary rewards or recognition for identifying and reporting software vulnerabilities through the facilitated process offered by HackenProof.
Bug Bounty Program:
To enhance the security of our protocol, we are looking for your keen eye in identifying any existing vulnerabilities. For this bug bounty program, we are especially interested in issues related to incorrect behavior of the smart contract which could cause unintended functionality. Examples can be found below, under the “Focus Area” header.
Rewards:
By helping us identify (critical) vulnerabilities, you are able to earn rewards. The reward amounts vary based on the severity and impact of the reported vulnerabilities.
- Critical: $40,000 — $60,000
- High: $20,000 — $40,000
Target: Horizon Protocol Smart Contracts
Focus Areas:
- In-Scope: Stealing or loss of funds. Unauthorized transactions. Transaction manipulation. Attacks on logic (behavior of the code is different from the business description). Reentrancy. Reordering. Over and underflows.
- Out of Scope: Theoretical vulnerabilities without proof. Old compiler versions. The compiler version is not locked. Vulnerabilities in imported contracts. Code style guide violations. Redundant code. Gas optimizations. Best practice issues.
Guidelines:
Responsible and transparent reporting is essential. To help this process go smoothly, Hacken has set several guidelines. All participants must follow them, so make sure to read them on HackenProof. These include:
- Program Rules
- Disclosure Guidelines
- Eligibility and Coordinated Disclosure
Get Started:
Ready to contribute to the security of Horizon Protocol? Visit HackenProof to get started!
Horizon Protocol is a decentralized derivatives trading and liquidity protocol that provides decentralized access to the real-world economy through synthetic assets. Through Horizon Protocol, users can access swaps and perpetual futures of RWA (real-world assets), including, fiat (i.e. USD, EUR, JPY, etc.), and commodities (i.e. gold, silver, etc.).
With a peer-to-pool model where a counter-party is not required for trading, Horizon Protocol can offer DeFi users low fees, deep liquidity, and zero slippage when trading borderless synthetic assets. Horizon Protocol sets itself apart with a strong focus on seamless UI/UX and educational content to help the community understand the power of DeFi derivatives.