Introduction Products Tokenomics Governance Security Resources

๐Ÿ’กNon-technical QA

Learn to earn while helping improve the VaultCraft dapp

Introduction:

Welcome to our UI/UX QA Bug Bounty Program! We believe in the power of community-driven development and are excited to invite skilled individuals to help us enhance the user experience and ensure the security of our decentralized application (dApp). This program encourages participants to explore the application thoroughly, identifying and reporting any UI/UX issues that may affect the overall usability and functionality.

Scope:

The bug bounty program covers the entire functionality of the dApp. Participants are encouraged to scrutinize every aspect of the user interface (UI) and user experience (UX) without executing any transactions to avoid incurring gas fees. The focus is on identifying issues that impact the core functionality of the dApp, including but not limited to depositing or withdrawing from Smart Vaults, locking Balancer LP tokens for veVCX, voting with veVCX, claiming and executing oVCX, incorrect or missing data values, connecting a wallet, page navigation, responsiveness, visual design, branding consistency, grammar and text copy, hyperlink accuracy, and overall user satisfaction.

Note that scope of this program is focused on UI/UX of the dApp. For our smart contract testing, please visit our Immunefi Bug Bounty.

Levels of Severity:

We have categorized the severity of identified issues into three levels to determine the reward payouts. Each level corresponds to the impact on the core functionality and the potential risk associated with the identified bug.

  • Critical (High Severity):

    • Description: Issues that significantly impair the core functionality of the dApp, leading to a severe degradation of the user experience.

    • Examples:

      • Non-responsive UI failing to prompt a transaction signature

      • Critical components not loading

      • Severe visual glitches affecting important elements.

      • Any bugs hindering the completion of essential tasks.

    • Reward: 10000 oVCX

  • Major (Medium Severity):

    • Description: Issues that have a noticeable impact on the user experience and may hinder the completion of specific tasks.

    • Examples:

      • Inconsistencies in UI design or branding.

      • Navigation issues affecting user flow.

      • Data, values, or charts failing to load in a reasonable amount of time.

      • Non-critical functional bugs affecting specific features.

    • Reward: 5000 oVCX

  • Minor (Low Severity):

    • Description: Minor issues that do not significantly impact core functionality but may affect the overall polish and professionalism of the dApp.

    • Examples:

      • Spelling or grammatical errors.

      • Incorrect logos or naming of third-parties.

      • Cosmetic UI issues with non-essential elements.

      • Suggestions for usability improvements.

    • Reward: 1000 oVCX

How to Participate:

  1. Join the #non-technical-qa channel in Discord to be awarded the role of โ€œVaultcraft Community Q&A teamโ€ along with a different colored name tag.

  2. Explore app.vaultcraft.io and thoroughly test its UI/UX.

  3. Identify, document, and submit any issues, including a clear description and steps to reproduce through Issues ยท Popcorn-Limited/vaultcraft ยท GitHub. Also include your Discord username to associate your submission with your contact information.

  4. The team will follow up with you directly with any questions and to confirm the validity of your submission. oVCX rewards will be distributed within 30 days of the closure of your bug submission ticket.

  5. Repeat! You are encouraged to submit as many valid bugs as you can find. Remember to try different devices, browsers, input values (decimals, commas, etc), keyboard combos, and configurations.

Rules and Guidelines:

  • Participants must refrain from executing transactions to avoid gas fees.

  • Participants are eligible for rewards for each unique, valid submission.

  • Submissions must include clear and concise documentation of the identified issues.

  • Duplicate submissions will not be eligible for rewards.

  • Only submissions that have not been previously reported will be considered for rewards.

  • Participants are expected to adhere to ethical guidelines and avoid exploiting any vulnerabilities.

  • Reviewers reserve the right to define the validity of bug submissions.

Reward Payouts:

Rewards will be paid out in oVCX, with the amount determined by the severity level of the identified issues. Payouts will be made within 30 days of the closing of a valid bug submission.

Previous๐Ÿ› Bug BountyNextTutorials

Last updated