Grafana Labs has partnered with Intigriti, a leading bug bounty platform, to enhance and expand its bug bounty program, enabling a more efficient collaboration with global security researchers. This partnership allows Grafana Labs to focus on valid reports and broaden the scope to include more products, while Intigriti manages initial triage to ensure submissions are in scope, not duplicates, and reproducible. The program currently covers Grafana OSS and other open-source backends, with plans to include additional products over time. Bounties are awarded based on the CVSS 3.1 scoring system, and payments are processed through Intigriti, with bonuses for high-quality reports. The move to Intigriti addresses challenges faced during self-hosting, such as limited reach and inefficient triage, while continuing to prioritize transparency through the publication of CVEs and offering credits to researchers.