We value contributions from the community to strengthen the security of the core contracts. We want to reward any hackers in good faith who report vulnerabilities.

The scope of this bounty includes the Moonery and PoolTogether smart contracts. The determination of the bug severity will be made by the Moonery and PoolTogether team. We determine the severity of an issue according to the Smart Contract Security Alliance Severity Levels

Payouts will be as follows:

High: $25,000 BUSD Medium: $10,000 BUSD Low: $1,000 BUSD

The issue must:

  • Be a previously unreported, non-public vulnerability.

  • include enough detail for us to identify and reproduce the problem

All reports should start with an email to, and they will receive a response within 24 hours. Non-security issues are not eligible for this bounty.

Determinations of eligibility and all terms related to this award are at the sole and final discretion of the Moonery team.

Last updated