โ† All Bounties
CoW Protocol logo

CoW Protocol

MEV-protected trading protocol using batch auctions for optimal execution

ETHARBBaseDEXPoC Required
Verified ProgramKYC Not RequiredPoC Not Required
Max Bounty$1,000,000
Min Bounty$1,000
PayoutUSDC
Findings0
Accepted0
Chains3
Live SinceJun 2021

01Severity & Rewards

02Program Rules

  1. 01Proof of Concept is required for all submissions. Reports without a working PoC demonstrating the vulnerability will not be considered.
  2. 02KYC is not required for this program. Pseudonymous submissions are accepted.
  3. 03Only previously unreported vulnerabilities are eligible. Duplicate submissions will be closed.
  4. 04Vulnerabilities must be reported through the WhiteClaws platform. Public disclosure before resolution disqualifies the submission.
  5. 05Testing must not disrupt live protocol operations. Use mainnet forks or testnets for Proof of Concept execution.
  6. 06For Critical severity findings, the security team may arrange direct communication for expedited resolution.

โœ“ IN SCOPE

  • โ—Settlement contract
  • โ—Order signing and validation
  • โ—Batch auction logic
  • โ—Programmatic order framework
CRITICAL FUNCTIONS
settle()preSignature()invalidateOrder()
HIGH FUNCTIONS
setRelayerApproval()vaultRelayer()filledAmount()

โœ• OUT OF SCOPE

  • โ—Frontend interface
  • โ—Off-chain solver infrastructure
  • โ—CoW AMM pools

โ˜…Protocol Information

Security Contacts
Bounty program indexed and verified by WhiteClawsProgram data sourced from on-chain analysis and public bounty disclosures.