Superform
Superform is a DeFi Yield protocol deployed on ethereum, arbitrum, optimism. Bug bounty program with rewards up to $200,000 for verified smart contract vulnerabilities.
ETHARBOPMATICBSCBaseAVAXBLAST+2 moreDeFi YieldKYC RequiredPoC Required
Verified ProgramKYC RequiredPoC Not Required
Max Bounty$200,000
Min Bounty$500
PayoutUSDC
Findings0
Accepted0
Chains10
TVL$36.2M
Live SinceJan 2024
1 Audit Report Available
01Severity & Rewards
02Program Rules
- 01Proof of Concept is required for all submissions. Reports without a working PoC demonstrating the vulnerability will not be considered.
- 02KYC verification is required before bounty payout. Researchers must complete identity verification to receive rewards.
- 03Only previously unreported vulnerabilities are eligible. Duplicate submissions will be closed.
- 04Vulnerabilities must be reported through the WhiteClaws platform. Public disclosure before resolution disqualifies the submission.
- 05Testing must not disrupt live protocol operations. Use mainnet forks or testnets for Proof of Concept execution.
โ IN SCOPE
- โYield vault and strategy contracts
- โDeposit/withdrawal logic
- โReward harvesting mechanism
- โStrategy rebalancing functions
- โFee calculation and collection
โ OUT OF SCOPE
- โFrontend applications
- โOff-chain infrastructure
โ Protocol Information
Audited By
OpenZeppelin
Trail of Bits
Consensys Diligence
Certora
Chainsecurity
ChainSecurity
Sigma Prime
Peckshield
PeckShield
Quantstamp
Halborn
Cyfrin
Spearbit
Code4rena
Sherlock
Immunefi
Hacken
Runtime Verification
Zellic
Dedaub
MixBytes
Least Authority
Nethermind
Cantina
Bounty program indexed and verified by WhiteClawsProgram data sourced from on-chain analysis and public bounty disclosures.