February 24, 2022
More than 20 contributors from around the world have spent nearly a year developing Mars from scratch in the Rust programming language. We’ve run internal- and community-based testing programs. We’ve analyzed attack vectors across other leading blockchains and undergone audits from Terra’s top security firms — Oak Security and Halborn.
Now, as we approach our launch, Delphi Labs Ltd. has partnered with Web3’s leading bug bounty platform, Immunefi, to offer up to $1.5 million in pre-launch bug bounties to uncover vulnerabilities in the Mars protocol smart contracts.
Whitehat hackers can earn up to $1 million (payable in USDC) per vulnerability in the following bug bounty tiers:
Mars is an advanced credit protocol which supports the lending and borrowing of Terra-based assets. Individuals can deposit assets for yield and optionally use them as collateral to borrow additional assets in a process known as Contract-to-Borrower (C2B) lending. Mars also supports Contract-to-Contract (C2C) lending, which allows smart contracts to borrow from the protocol without first posting collateral.
The Mars + Immunefi bug bounty is focused on preventing:
Prior to the official launch of Mars, the bounties will have an overall hard cap of $1,500,000. If multiple bug reports are submitted that exceed that amount, the rewards will be provided on a first come, first served basis.
Rewards for critical smart contract vulnerabilities are further capped at 10% of mainnet economic damage, with the main consideration being the funds affected in addition to public relations and brand considerations, at the discretion of Mars’ contributors. However, there is a minimum reward of $100,000 for critical bug reports.
Mars contributors are committed to security and transparency, and this bug bounty is among the Top 15 largest in Immunefi’s history. Visit Immunefi’s website now to learn what’s in scope, what’s out and exactly how to participate here: https://immunefi.com/bounty/marsprotocol/.
DISCLAIMER: This article does not constitute investment advice. Before interacting with Mars, review the project disclaimers here.
Where we venture, the territory is unknown. To succeed, we need your help. Journey with us by following Mars on Twitter now.
