Gearbox Bug Bounty
Review Gearbox code. Prevent hacks. Build rep. Get paid.
bounty
up to 200K
17 months ago
job details
Program Overview
earbox is a generalized leverage protocol: it allows you to take leverage in one place and then use it across various DeFi protocols and platforms in a composable way. The protocol has two sides to it: passive liquidity providers who earn higher APY by providing liquidity; and active traders, farmers, or even other protocols who can borrow those assets to trade or farm with even x10 leverage.
The core vision is to become a backend composable leverage protocol that all kinds of users have but don’t even need to interact directly with any interface.
- For more information about Gearbox, please visit: https://docs.gearbox.finance/
- Dev docs are available at https://dev.gearbox.fi/
- To see the dApp, please visit: https://app.gearbox.fi/accounts/.
Focus
This bug bounty program is focused on their smart contracts and is focused on preventing:
- Thefts and freezing of principal of any amount
- Thefts and freezing of unclaimed yield of any amount
- Unexpected sandwiching or manipulation of user trades
- Incorrect use of oracles or their malfunction
- Any Cream-style mathematic attack on the protocol work
- Theft of governance funds
Rewards by Threat Level
- Critical: Up to USD $200,000
- High: USD $65,000
- Low: USD $6,500
For more details and threats in scope, check the full description.