Bug Bounty

Help Protect Popcorn and Earn Bounties of up to $150k
Popcorn and Immunefi launched a bug bounty program to further enhance protocol security and reward hero hackers.
Read about the partnership on Medium.

What is Immunefi?

Immunefi is the leading bug bounty and security services platform for Web3, which features the world’s largest bounties and the first ever operational bug bounty protocol. Immunefi guards over $25 billion in user funds across projects like Synthetix, Chainlink, SushiSwap, PancakeSwap, Bancor, Cream Finance, Compound, Alchemix, Nexus Mutual, and others.
Immunefi is chain-agnostic, meaning that we host bug bounties for blockchain projects across all chains and networks.

Maximizing Smart Contract Security

This bug bounty program focuses on smart contracts, with the goal of preventing:
  • Thefts and freezing of principal of any amount
  • Thefts and freezing of unclaimed yield of any amount
  • Temporary freezing of funds
  • The inability to call a contract
  • Gas drainage / freezing of funds caused by gas overflow
  • Smart contracts failing to deliver promised returns
Rewards are distributed based on the impact of the vulnerability. Immunefi’s Vulnerability Severity Classification System considers the potential consequences of a threat, as well as the likelihood of its success, to determine which class an issue falls under.
Vulnerabilities that fall under Critical, High, or Medium classes are eligible for rewards in this bounty. Critical vulnerabilities can earn a reward of up to $150,000, while High and Medium vulnerabilities can earn up to $25,000 and $1,000, respectively.