Focus on what matters most to you and rest easy: Our Managed Triaging service reduces the amount of time your team will spend working through all report submissions and brings their attention to the ones that matter. This allows you and your team to allocate more time building your project and not worry about missing a critical vulnerability report overnight and on weekends.
When you sign up for this service, all reports submitted to your program will be vetted by one of our world class security triagers, 24 hours a day, 7 days a week. By vetting each report, Immunefi can ensure that these reports have merit before they are escalated to your project.
This means that you can spend less time reviewing invalid reports and more time fixing bugs.
How does it work?
There are three subscription options for the premium triaging feature.
Regardless of which subscription option you choose, signing up for our premium triaging service means that one of our expert triagers will be subscribed whenever a whitehat submits a report to your program. If, after analyzing the report, our triager believes that it is valid, they will escalate it. If they believe that the report is not valid, out of scope, or spam, they will close it. The report will always be escalated to you within 12 hours for Blockchain, DLT, and Smart Contract submissions, or 24 hours for Web/App submissions.
We will also check to ensure that the reported severity is correct, and we will provide you with a quarterly report on your program’s metrics.
When an Immunefi triager escalates a report, you will be notified so that you can self-triage it. You do not need to acknowledge these reports to abide by your SLA, but you will still need to resolve it once it has been escalated (see our SLA article for more information).
Note: All reports closed by Immunefi are still available for you to access and re-open.
How do we sign up?
If you would like to sign up for Managed Triage, have your project admin reach out to us by following this link.