Skip to content

Security: succinctlabs/telepathy-contracts

Security

SECURITY.md

Succinct Bug Bounty Program

Overview

This bug bounty program is specifically for Telepathy’s smart contract and circuit code.

Our bug bounty security guidelines are based on Immunefi’s vulnerability severity classification system, and are subject to change at any time.

The bug bounty program is administered by Succinct. All bug bounty decisions made are final. An Immunefi-based bug bounty program is coming soon.

Security Classifications and Bounty Amounts

Severity Description Bounty
Critical
  • Incorrect light client state
  • Incorrect message passing
  • Permanent freezing of the protocol
Up to $100,000
High
  • Temporary freezing of the protocol
Up to $25,000

Report Submission

You can contact us at [email protected] to provide a thorough account of the attack vector. Our team will respond within 24 hours and may ask for further details or provide information on the bug bounty's next steps.

There aren’t any published security advisories