Bug Bounty Program – 500,000 FIG Tokens in Rewards

We are excited to introduce our fully functional product to the Filecoin ecosystem, now live on mainnet. To ensure our protocol remains secure and ready for adoption, we’ve launched a mainnet Bug Bounty Program. This allows us to address potential issues with the help of external users and security researchers.

We invite you to participate, test the FILLiquid mainnet, find vulnerabilities, and earn rewards in FIG tokens. Rewards will be based on the severity of the vulnerabilities identified.

Reward Structure

• Critical: Up to 500,000 FIG for each verified critical bug

• High: Up to 50,000 FIG for each verified high-severity bug

Vulnerability Categories

We are seeking reports of vulnerabilities across the following categories. Any bugs found outside of these examples will be reviewed and categorized by our team.

Up to 500000 FIG reward:

• Exploits in staking/farming contracts that result in FIG token theft or loss of staked assets

• Borrowing exploits that drain reserve funds or cause unaccounted FIG rewards

• Failures in the liquidation mechanism preventing bad debt repayment

• FIT exchange rate manipulation

Up to 50000 FIG reward:

• Wallet integration issues that compromise private keys or user funds

• Bypassing authorization controls to access other user accounts

• Manipulating on-chain data to falsely trigger liquidations

• Unintended high FIG rewards from farming

Participation

To participate in the bug bounty program and submit your findings, please visit the form link below:

Submit Vulnerabilities Here:

Your feedback is vital in strengthening the security of our platform as we continue to grow. We look forward to your contributions!

Rules

To be eligible for a reward, the following rules apply:

• You must be the first to report the unique vulnerability, and it must be previously unreported.

• A detailed explanation of the vulnerability and steps to reproduce must be provided.

• You must explain the potential impact of the vulnerability.

• Reports with attached working exploits will receive higher rewards.

Terms:

- Issues already submitted by another participant will not qualify for rewards.

- Reward determinations are at the sole discretion of the FILLiquid team, based on the severity, reproducibility, and quality of reports.

- The terms of the bug bounty program may be amended during the program period.

- Rewards will be distributed at the end of the mainnet bug bounty period.