Bug Bounty Program on ImmuneFi

ImmuneFi is a platform that allows crypto projects to host bug bounty programs for a wide community of white hat hackers. These bug bounty programs provide an incentive for members outside of a crypto project's community to assess its smart contracts for vulnerabilities or exploits that could put user funds at risk.

The BarnBridge community has discussed how to implement such a program in both the forum and the Discord server.

• Community Forum Discussion: https://forum.barnbridge.com/t/set-aside-funds-for-an-immunefi-bug-bounty-program/342
• ImmuneFi Discord AMA: https://discord.com/channels/748538797662273636/855117293771948082/858014525390848020

This vote is to assess two questions: whether a bug bounty should be maintained, and if so, what amount. The following points from the discourse to date should be noted:

• $100k - $250k represents a compelling reward range for ImmuneFi hackers, per CEO Travin Keith
• Bug bounty program funds do not need to be escrowed and could be invested in our own products when payouts are not owed
• Lack of a bug bounty program has cost BarnBridge points in its DeFi Safety Rating score

Please feel free to further discuss the vote in the forum or the #Governance channel for the duration of the vote.