Build Your Bounty Program - (Final)

CHIAHAO TSAICHIAHAO TSAI
1 min read

[繁體中文] [Part I][Part II]

You are ready to announce the bounty program after several preparations and rehearsals and ready to receive the report from worldwide. What's the routine task and how to process these mass (or mess) reports?

The lifecycle of the report can be simplified into these stages:

  1. received and ack.

  2. verification and evaluation.

  3. fix and reward.

Receive and Acknowledgement

As the public bounty program, you need to set up a channel to receive the report from worldwide individuals. The channel could be a mail address, a message form, or 3rd service. It should be as easy as possible and make it simple but secure. Make

0
Subscribe to my newsletter

Read articles from CHIAHAO TSAI directly inside your inbox. Subscribe to the newsletter, and don't miss out.

Written by

CHIAHAO TSAI
CHIAHAO TSAI

backend engineer and insecure researcher