# Bug Bounty Program – 500,000 FIG Tokens in Rewards

We are excited to introduce our fully functional product to the Filecoin ecosystem, now live on mainnet. To ensure our protocol remains secure and ready for adoption, we’ve launched a mainnet Bug Bounty Program. This allows us to address potential issues with the help of external users and security researchers.

We invite you to participate, test the FILLiquid mainnet, find vulnerabilities, and earn rewards in FIG tokens. Rewards will be based on the severity of the vulnerabilities identified.

### Reward Structure

* Critical: Up to 500,000 FIG for each verified critical bug
* High: Up to 50,000 FIG for each verified high-severity bug<br>

### **Vulnerability Categories**

We are seeking reports of vulnerabilities across the following categories. Any bugs found outside of these examples will be reviewed and categorized by our team.

### Up to 500000 FIG reward:

* Exploits in staking/farming contracts that result in FIG token theft or loss of staked assets
* Borrowing exploits that drain reserve funds or cause unaccounted FIG rewards
* Failures in the liquidation mechanism preventing bad debt repayment
* FIT exchange rate manipulation

### Up to 50000 FIG reward:

* Wallet integration issues that compromise private keys or user funds
* Bypassing authorization controls to access other user accounts
* Manipulating on-chain data to falsely trigger liquidations
* Unintended high FIG rewards from farming

### **Participation**

To participate in the bug bounty program and submit your findings, please visit the form link below:

\
**Submit Vulnerabilities Here:**&#x20;

[Google Sheet](https://docs.google.com/forms/d/1yGswv2xiXIaCiQRIICT9XJuRGtzO8AY6duHyzzmqDi4/edit)

Your feedback is vital in strengthening the security of our platform as we continue to grow. We look forward to your contributions!

### **Rules**

To be eligible for a reward, the following rules apply:

* You must be the first to report the unique vulnerability, and it must be previously unreported.
* A detailed explanation of the vulnerability and steps to reproduce must be provided.
* You must explain the potential impact of the vulnerability.
* Reports with attached working exploits will receive higher rewards.

\
**Terms:**

\- Issues already submitted by another participant will not qualify for rewards.

\- Reward determinations are at the sole discretion of the FILLiquid team, based on the severity, reproducibility, and quality of reports.

\- The terms of the bug bounty program may be amended during the program period.

\- Rewards will be distributed at the end of the mainnet bug bounty period.

\
[Website](https://filliquid.io/) | [Twitter](https://x.com/FILLiquid) | [Discord](https://discord.com/invite/filliquid) | [YouTube](https://www.youtube.com/@FILLIQUID) | [GitHub](https://github.com/FILL-Lab) | [Telegram](https://t.me/+3goIWl2G11NmZGNl)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.filliquid.io/economics/bug-bounty.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.