Earn $100k USD by finding Flow bugs
If you believe you may have found a security vulnerability in one of our products or platforms, send us an email: email@example.com
Read our Responsible Disclosure Guidelines
We run closed bug bounty programs, but beyond that, we also pay out rewards once per eligible bug to the first responsibly disclosing third party. Rewards are based on the seriousness of the bug, but the minimum is $2,500 USD and we are willing to pay $100,000 or more (To a maximum of $1M of rewards per person or organization within any 12 consecutive months) at our sole discretion.
|Critical-Impact Vulnerability||min. $100k|
|High-Impact Vulnerability||min. $50k|
To qualify, the bug must fall within our scope and rules, be previously unknown to us, have a material impact and be demonstrably exploitable, and require action by us.