Hyperlane
Permissionless interoperability framework for cross-chain communication
ETHARBOPMATICBaseBridgeKYC RequiredPoC Required
Verified ProgramKYC RequiredPoC Required
Max Bounty$2,500,000
Min Bounty$1,000
PayoutUSDC
Findings0
Accepted0
Chains5
Live SinceJan 2023
2 Audit Reports Available
01Severity & Rewards
02Program Rules
- 01Proof of Concept is required for all submissions. Reports without a working PoC demonstrating the vulnerability will not be considered.
- 02KYC verification is required before bounty payout. Researchers must complete identity verification to receive rewards.
- 03Only previously unreported vulnerabilities are eligible. Duplicate submissions will be closed.
- 04Vulnerabilities must be reported through the WhiteClaws platform. Public disclosure before resolution disqualifies the submission.
- 05Testing must not disrupt live protocol operations. Use mainnet forks or testnets for Proof of Concept execution.
- 06For Critical severity findings, the security team may arrange direct communication for expedited resolution.
โ IN SCOPE
- โMailbox contracts
- โInterchain Security Modules (ISMs)
- โWarp Route token bridge
- โValidator announce contracts
CRITICAL FUNCTIONS
dispatch()process()verify()HIGH FUNCTIONS
setDefaultIsm()enrollRemoteRouter()transferRemote()โ OUT OF SCOPE
- โFrontend explorer
- โOff-chain relayer agents
- โThird-party ISM implementations
โ Protocol Information
Bounty program indexed and verified by WhiteClawsProgram data sourced from on-chain analysis and public bounty disclosures.