Openzeppelin Stellar

Openzeppelin Stellar is a DeFi protocol deployed on ethereum. Bug bounty program with rewards up to $100,000 for verified smart contract vulnerabilities.

ETHDeFiKYC RequiredPoC Required

KYC RequiredPoC Not Required

Max Bounty$100,000

Min Bounty$500

PayoutUSDC

Findings0

Accepted0

Chains1

Live SinceMay 2025

01Severity & Rewards

02Program Rules

01Proof of Concept is required for all submissions. Reports without a working PoC demonstrating the vulnerability will not be considered.
02KYC verification is required before bounty payout. Researchers must complete identity verification to receive rewards.
03Only previously unreported vulnerabilities are eligible. Duplicate submissions will be closed.
04Vulnerabilities must be reported through the WhiteClaws platform. Public disclosure before resolution disqualifies the submission.
05Testing must not disrupt live protocol operations. Use mainnet forks or testnets for Proof of Concept execution.

✓ IN SCOPE

●Core protocol smart contracts
●Token contracts (ERC-20, ERC-721, etc.)
●Access control and admin functions
●Proxy and upgrade patterns
●Integration and adapter contracts

✕ OUT OF SCOPE

●Frontend applications
●Off-chain infrastructure

★Protocol Information

Resources

◆Website↗📄Docs↗⚙Dev Docs↗⌥GitHub↗🛡Bounty Policy↗

Audited By

OpenZeppelin

Security Contacts

Securitysecurity@openzeppelin.com Contactcontact@openzeppelin.com Legallegal@openzeppelin.com

Submit Finding →← Browse All Programs

Bounty program indexed and verified by WhiteClawsProgram data sourced from on-chain analysis and public bounty disclosures.