Gearbox Bug Bounty

Program Overview

earbox is a generalized leverage protocol: it allows you to take leverage in one place and then use it across various DeFi protocols and platforms in a composable way. The protocol has two sides to it: passive liquidity providers who earn higher APY by providing liquidity; and active traders, farmers, or even other protocols who can borrow those assets to trade or farm with even x10 leverage.

The core vision is to become a backend composable leverage protocol that all kinds of users have but don’t even need to interact directly with any interface.

• For more information about Gearbox, please visit: https://docs.gearbox.finance/
• Dev docs are available at https://dev.gearbox.fi/
• To see the dApp, please visit: https://app.gearbox.fi/accounts/.

Focus

This bug bounty program is focused on their smart contracts and is focused on preventing:

• Thefts and freezing of principal of any amount
• Thefts and freezing of unclaimed yield of any amount
• Unexpected sandwiching or manipulation of user trades
• Incorrect use of oracles or their malfunction
• Any Cream-style mathematic attack on the protocol work
• Theft of governance funds

Rewards by Threat Level

• Critical: Up to USD $200,000
• High: USD $65,000
• Low: USD $6,500

For more details and threats in scope, check the full description.