The Stellar Development Foundation launched a new bug bounty program on HackerOne focused on Soroban, the network's smart contract platform. The program offers rewards up to $50k for critical vulnerabilities, with higher bounties as Soroban matures toward Mainnet launch.
The Stellar Development Foundation partnered with HackerOne to launch a dedicated bug bounty program for Soroban, Stellar's native smart contract platform currently in preview release on Futurenet. The program targets advanced security researchers with expertise in Rust, WebAssembly, and low-level code analysis, offering rewards determined by OWASP Risk Rating Methodology with critical vulnerabilities starting at $50k USD. Hackers can report bugs in the Rust SDK, contract environment, CLI, RPC server, and other Soroban components. With code freeze approaching and Mainnet launch planned for later this year, the timing is critical for finding and patching vulnerabilities before the platform goes live.
