Claim $15.5M: Uniswap’s Largest Bug Bounty Program Is On

Cryptos: 21,334
Exchanges: 1,862
Market Cap: $3.25T 2.33%
24h Vol: $240,244,554,045 15.70%
Dominance: BTC: 56.4% ETH: 12.7%
Gas: 7 GWEI

Connect

News

Crack the Code, Claim $15.5 Million: Uniswap’s Largest Bug Bounty Program Is On

Written by Aaron S.,

Editor-In-Chief

Last Updated: November 26, 2024

Key Takeaways

Uniswap v4's $15.5 million bug bounty offers the largest payout in history for critical vulnerabilities in core contracts;
The program incentivizes all levels of findings, with rewards up to $1 million for high-severity and $100,000 for medium-risk issues;
Beyond core contracts, the bounty covers websites, wallets, and backend systems, ensuring v4's comprehensive security.

Crack the Code, Claim $15.5 Million: Uniswap’s Largest Bug Bounty Program Is On

As part of the much-anticipated Uniswap $505.38M v4 release, Uniswap Labs has introduced a bug bounty program, offering $15.5 million for critical vulnerability discoveries.

To qualify for the maximum payout, participants must identify vulnerabilities in the Uniswap v4 core contracts code that require a code revision.

Lesser findings will still be rewarded, with payouts for “high” severity issues reaching up to $1 million, “medium” risks earning $100,000, and lower-level discoveries handled on a case-by-case basis. Yet, identifying a "critical" exploit could secure $15.5 million.

DEX vs CEX: Which is Best for YOU? (Explained with Animation)

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

A statement from Uniswap Labs on X highlighted the scale of the effort:

Introducing the largest bug bounty in history. We're rewarding up to $15.5M to anyone that finds a critical vulnerability in v4 core contracts. Find a critical bug, become a millionaire.

Though Uniswap has described this as the largest bug bounty in history, comparisons have been drawn to other high-profile payouts.

For instance, the cybersecurity platform Immunefi allocated a $14.82 million bounty in 2021, one of the largest payments for a single vulnerability at the time. If Uniswap's top reward were claimed as a sum, it would indeed surpass Immunefi’s record.

The initiative builds on Uniswap’s earlier security efforts. During a $2.35 million security competition for v4 prior to its official release, over 500 researchers participated, but no significant vulnerabilities were uncovered.

This new $15.5 million program reflects a commitment to ensuring the robustness of v4, which plays a critical role in the platform’s ecosystem.

The scope of the bounty extends beyond the core contracts. It includes assessments of related components such as additional contracts, backend infrastructure, websites, and wallet codes linked to Uniswap v4.

Uniswap's bug bounty program isn’t the only development stirring excitement in the DeFi space. Ronin has just launched Katana DEX v3, bringing a fresh approach to rewards and liquidity pools. What changes are in store for users? Read the full story.