Flow

Flow is a decentralized platform that anyone can access, everyone can trust, and no-one can censor or block.

Web2Web3

Bounty

Please visit the official website for the latest information.

Flow Responsible Disclosure

Flow was built from the ground up with security in mind. Our code, infrastructure, and development methodology help us keep our users safe.

We appreciate and encourage the security researcher community to report potential vulnerabilities in our assets. If you identify a vulnerability, please notify us at [email protected]

Assets In Scope

*.flow.com
*.onflow.org

Rewards are based on the severity of the vulnerability. Reward amounts, if any, will be determined by us in our sole discretion. A maximum of $1M of rewards per person or organization shall be paid within any 12 consecutive months based on the reward value at time of payment.

Recommended Blogs

Securing NASA For Certificate📜 P3 Vulnerability

Manan Sanghvi

•

Jan 26, 2025

Bypassing LFI (Local File Inclusion)

Abhishek

•

Jun 3, 2021

SQL Injection & Remote Code Execution - Double P1

Jerry Shah

•

Sep 13, 2020