|
The Support Scope governs all routine aspects of ecosystem support, including governance process infrastructure and management, Star support and Ecosystem Actor support.
This Article defines ecosystem security infrastructure and processes to protect the Sky Protocol and its users.
This Section manages Sky Ecosystem security infrastructure and initiatives.
View Provenance
As one of the most important DeFi protocols with a high TVL, the Sky Protocol is a honeypot for hackers and other nefarious actors. The Sky Protocol must always be protected by an active Bug Bounty Program. This document regulates the budget and processes of the Bug Bounty Program, which serves to protect the Sky Protocol and its users from hacks and exploits. The Bug Bounty Program is conducted on the Immunefi platform.
The subelements herein describe the Bug Bounty Program’s terms and conditions for rewards.
The subelements herein describe the payment terms for the Bug Bounty Program for Sky Critical Infrastructure.
View Provenance
All bounty payouts are handled by Sky Governance. Upon confirmation, bug bounty payouts should be included in the next possible Executive Vote. This would involve sending USDS directly from the protocol’s buffer to the whitehat hacker.Immunefi will publicly contact one of the Governance Facilitators with the request, including a specification of the respective vulnerability report, the requested amount and the Ethereum mainnet addresses of the beneficiaries. This should also include the payment details of the Immunefi fee, if it applies. Immunefi and the Sky Governance Facilitators should make sure the payout is made within one full calendar month after the report was approved.For Bug Bounty rewards over USD 1,000,000: after the first million is paid out, the remaining amount is paid out over time with up to USD 1,000,000 per consecutive month until the determined amount for payout is reached.