Gitcoin Passport bug bounty #133
Comments
|
Issue Status: 1. Open 2. Started 3. Submitted 4. Done Workers have applied to start work. These users each claimed they can complete the work by 264 years, 2 months from now. 1) jcbm123143 has applied to start work (Funders only: approve worker | reject worker). I already have a solution to other bugs in Gitcoin Passport that I emailed to passport@gitcoin.co and I will look for other bugs. I just want to share my knowledge to solve the bugs. I'm a seasoned QA engineer working for more than 10 year in software development for big tech I have connected passport previously shown 125% but now showing 65% and today i verfied ENS also still showing 65% .its as bug please recitify. i am a software engineer and love to work in this Found a bug and want to display to the team. Although I'm a beginner, I think I can manage Would love to work on this project I would like to work on this project. dPopp cho phép người dùng chứng minh danh tính của họ thông qua giao diện người dùng an toàn, phi tập trung Applying so I can keep note. Will submit or comment if bug found. I agree to keep the funder informed of my progress every few days. Using a concrete and standard equipment for my plan to bring out the standard building Learn more on the Gitcoin Issue Details page. |
|
I love this |
The integrity of our identity verification application is one of our highest priorities. Therefore, our bug bounty program for the Gitcoin Passport rewards up to $600 (paid in DAI).
Here’s how the bounty works.
What we want you to investigate
All code in the repository https://github.com/gitcoinco/dPopp is eligible for the bounty.
The Gitcoin product ecosystem, in general, is not part of this bug bounty program.
What vulnerabilities to look for
We, of course, want to know every vulnerability, but in particular:
How Gitcoin Passport works
Many social organizations, online particularly, have difficulty ensuring that every participant is a unique human and does not have multiple participating accounts. Most existing digital identity solutions are either centralized (e.g., national identity cards) or individualistic (e.g., most “self-sovereign” identity models). However, identity is naturally intersectional and social; everybody shares different data and relationships with a unique set of others. The Gitcoin Passport aims to provide a more collaborative and secure infrastructure for digital identity by capturing the richness of our diversely shared lives.
The Gitcoin Passport is an identity verification application. We have written software enabling people to grow personal ledgers of verifiable credentials about themselves and organizations to assess their identities to coordinate rights and responsibilities. The institutions define, verify, and utilize identity as functions of the networked records of the individuals. While we build the Passport agnostic to specific applications, we are actively exploring its benefits for personhood proofs and plurality in organizational designs.
The rules
We follow many of the bug bounty rules that the Ethereum Foundation does:
Bounty size
The bounty's size will vary depending on the severity of the issue discovered. We calculate the severity according to the OWASP risk rating methodology based on impact and likelihood.
We guide decisions on the eligibility and size of a reward by the rules above. Nevertheless, any determination is at the sole discretion of Gitcoin.
Other considerations
In addition to severity, we may also consider factors like:
Please also
Submission process
Please email securitybounty@gitcoin.co.
The text was updated successfully, but these errors were encountered: