Skip to main content

Last year, the @sovtechfund fund invited us, the Sequoia PGP Project, to join their new Bug Resilience Program.

Today, I'm pleased to announce that we are publicly launching our bug bounty program with rewards of up to €10,000 for novel, security-relevant issues in Sequoia applications, libraries, or specifications. #pgp

https://sequoia-pgp.org/blog/2024/04/10/202404-bug-bounty/

Sequoia PGP gets a Bug Bounty Program

Sequoia is a modular OpenPGP implementation in Rust.
sequoia-pgp.org
#pgp @Sovereign Tech Fund
in reply to Sequoia PGP

daniel:// stenberg://
daniel:// stenberg://
tip for STF: the IBB bug-bounty (which #curl is part of) gives 20% of the bounty to the project and 80% to the reporter - which I think is nice because there is certainly work to be done from the project's part as well to deal with the issues ...
#curl
in reply to daniel:// stenberg://

tarakiyee
tarakiyee
@bagder Thank you for the tip Daniel! For the BRP bug bounty, we offer projects an equal "fixing" bounty for reach responsibly reported and fixed vulnerability for that very reason. @sequoiapgp @sovtechfund
@daniel:// stenberg:// @Sequoia PGP @Sovereign Tech Fund