Bug Bounty Program

In addition to the Certik audit, Bullana ($BULL) is committed to fostering a culture of continuous security improvement and community engagement. To this end, we are launching a bug bounty program, inviting security researchers and ethical hackers to identify and report potential vulnerabilities in our smart contracts and systems.

Program Overview

The Bullana ($BULL) bug bounty program is designed to incentivize the security community to thoroughly scrutinize our codebase and systems, helping us identify and address potential vulnerabilities before they can be exploited. By leveraging the collective expertise of the security community, we aim to further enhance the security posture of our project.

Scope

The bug bounty program covers the following areas:

• SPL Program (Smart Contracts): All Bullana ($BULL) smart contracts deployed on the Ethereum network, including token contracts, staking contracts, and any other associated contracts.

• Website and Frontend: The official Bullana ($BULL) website and any associated frontend applications.

• Backend Systems: Any backend systems or APIs used by the Bullana ($BULL) project.

Rewards

Successful bug submissions will be rewarded based on the severity and impact of the reported vulnerability. The reward structure is as follows:

The reward amounts will be launched later.

The reward amounts may be adjusted based on the complexity and impact of the vulnerability, as well as the quality of the submission.

Submission Process

To participate in the Bullana ($BULL) bug bounty program, researchers should follow these steps:

1. Review the Program Rules: Carefully review the program rules and guidelines to ensure compliance with responsible disclosure practices.

2. Identify Vulnerabilities: Conduct thorough testing and analysis to identify potential vulnerabilities within the defined scope.

3. Submit Report: Submit a detailed report of your findings, including proof of concept (PoC) and all relevant information, through our designated bug bounty platform.

Responsible Disclosure

Bullana ($BULL) expects all participants in the bug bounty program to follow responsible disclosure practices. This includes:

• No Public Disclosure: Vulnerabilities should not be publicly disclosed until they have been acknowledged and addressed by our team.

• No Exploitation: Participants should not exploit or attempt to exploit any identified vulnerabilities.

• Coordination: Participants should work closely with our team to ensure a smooth and coordinated disclosure and remediation process.

Conclusion

The Bullana ($BULL) bug bounty program is an integral part of our commitment to security and transparency. By engaging the security community and incentivizing responsible vulnerability research, we aim to continuously improve the security of our smart contracts and systems. We encourage security researchers and ethical hackers to participate in our program and contribute to the ongoing security of the Bullana ($BULL) project.