Horizon Protocol V2 — Hacken Bug Bounty Program Now Live On Testnet

Horizon Protocol
2 min readDec 18, 2023

--

We are excited to announce the launch of our bug bounty program for Horizon Protocol V2 on testnet (including the new Horizon Futures), hosted on HackenProof. Horizon Protocol is dedicated to further enhancing the security of the protocol. Building upon the existing measures, we are continuously working to strengthen our platform. As we progress in fortifying our platform, we invite you to contribute your expertise in ensuring the security and resilience of our systems.

About Hacken:
Hacken, a cybersecurity firm, specializes in services like vulnerability assessment, penetration testing, and blockchain security to fortify organizations, with a focus on the blockchain and cryptocurrency sector. Additionally, Hacken operates HackenProof, a bug bounty platform connecting security researchers with companies seeking vulnerability assessments. Researchers are incentivized with monetary rewards or recognition for identifying and reporting software vulnerabilities through the facilitated process offered by HackenProof.

Bug Bounty Program:

To enhance the security of our protocol, we are seeking your assistance in identifying vulnerabilities. Our bug bounty program is particularly interested in issues related to incorrect smart contract behavior resulting in unintended functionality. Examples can be found in the “Focus Area” section. Your contributions will play a pivotal role in creating a robust and secure environment for our users.

Range of Rewards:

Engage in our bug bounty program, and you could earn rewards based on the severity and impact of the reported vulnerabilities:

* Critical: $10,000 — $20,000

* High: $5,000

Focus Areas:

  • Target: https://github.com/Horizon-Protocol/Horizon-Smart-Contract/tree/testnet-contracts
  • In-Scope: Smart Contract Vulnerabilities: Stealing or loss of funds, unauthorized transactions, transaction manipulation, attacks on logic where the code behavior deviates from the business description, reentrancy, reordering, over and underflows.
  • Out of Scope: Smart contract vulnerabilities: Theoretical vulnerabilities without proof, old/unlocked compiler versions, vulnerabilities in imported contracts, code style guide violations, redundant code, gas optimizations, and best practice issues.

Disclosure Guidelines:

Participants are required to adhere to the disclosure guidelines set by Hacken. Responsible and transparent reporting is essential:

  • Do not discuss the program or any vulnerabilities (even resolved ones) outside it without express consent.
  • No vulnerability disclosure is allowed at the moment.
  • Please do NOT publish/discuss bugs.

Get Started:

Ready to contribute to the security of Horizon Protocol? Visit HackenProof to get started!

Horizon Protocol is a DeFi platform that facilitates the on-chain trading of synthetic assets that represent the real economy. Horizon Protocol seeks to provide exposure to real-world assets risk/return profiles via smart contracts on the blockchain.

--

--