TomoChain is organizing a bug bounty program and releases Testnet
By Inkarias - 2019-11-26
TomoChain (TOMO) is a cryptocurrency-oriented infrastructure. It aims to solve the problems related to the scalability of some currencies like Ethereum (ETH). The team is currently organizing a bug bounty program in collaboration with Hackerone where the rewards are based on severity per CVSS (the Common Vulnerability Scoring Standard).
TomoChain team has shared the following response targets for hackers participating in the program:
- Time to first response (from report submit) - 2 business days
- Time to triage (from report submit) - 2 business days
- Time to bounty (from triage) - 1 business days
During this private program, any vulnerabilities resolved or not shouldn’t be shared outside of the program without express consent from the organization. Users wishing to participate need to provide detailed reports with reproducible steps. If the report is not detailed enough to reproduce the issue, the issue will not be eligible for a reward at all (with maximum one vulnerability per report). Users may use the source code of the projects to help discovering bugs. Any activities conducted in a manner consistent with this policy will be considered authorized conduct and we will not initiate legal action against the responsible. If legal action is initiated by a third party against that person in connection with activities conducted under this policy, the team will directly take steps to make it known that actions were conducted in compliance with this policy.
Finally, the Tomo tesnet is now available to public, and the different products can be directly seen by following the links below:
- TomoChain network stats: https://stats.testnet.tomochain.com
- TomoDex (a DEX’s based on TomoX protocol): https://dex.testnet.tomochain.com
- TomoRelayer (TomoX Governance DApp): https://relayer.testnet.tomochain.com