Bug Bounty Program updates are managed by Immunefi. When requesting changes to your bug bounty program, please review the requested updates against your current program to ensure there is no conflicting information between your in-scope and out of scope rules, assets, and impacts. Reviewing the intended program updates before requesting the changes from Immunefi will help maintain clarity and consistency within the scope of your bug bounty after the updates have occurred.
If you would like to update your bug bounty program, follow the steps outlined below.
However, if you are planning to rebrand, pivot, or do a redesign, please contact us via our direct communications channel (Telegram or email) to let us know. We will pause your current program and connect you with a sales team member who will help you launch a new program.
Note: Any open bug reports should be reviewed within the parameters of the bug bounty program at the time of submission. With that said, if a new bug report is submitted AFTER a program change request is logged with Immunefi (as outlined below), it can be reviewed against the updated version you are requesting, regardless of publication status.
Steps to request an update:
You must complete all of the steps below before we can update your bug bounty program.
1) As a first step, please open the Bug Bounty Program draft shared with you during pre-launch of your program. The 'Suggesting mode' should be turned on in the upper right corner of the document, as below:
2) Complete the Bug Bounty Program Change Request form. If you have any additional questions, please contact our Customer Experience team via Telegram.
3) A member of our team will confirm receipt of the change to you via Telegram or email and follow up with you once the change has been pushed live to your program page.