Home / Companies / GitLab / Blog / Post Details
Content Deep Dive

We are increasing bounties in our bug bounty program

Blog post from GitLab

Post Details
Company
Date Published
Author
Heather Simpson
Word Count
257
Company Posts That Month
30
Language
English
Hacker News Points
-
Post removed?
No
Summary

Since the public launch of their bug bounty program in December 2018, the company has received 1,282 reports from external security researchers and paid out $515,899 in rewards. Initially, they adopted a model where part of the bounty was paid immediately upon triage of a report, but as of November 18, 2019, they increased awards for critical and high-severity vulnerabilities to incentivize the community further. The new payout structure offers $20,000 for critical vulnerabilities and $10,000 for high-severity ones, while the criteria for program scope, severity assessment, and engagement rules remain unchanged. This initiative acknowledges the significant contributions of the security research community, enhancing the security of the company's products. Additionally, a bug bounty contest running from October 1 to November 30 offers participants a chance to win GitLab swag.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.