FLUX Protocol takes security seriously. We use a combination of internal reviews, external audits, and an active bug bounty program to ensure the safety of user funds.
| Version | Supported |
|---|---|
| 2.1.x | ✅ |
| 2.0.x | ✅ |
| 1.x.x | ❌ |
We offer bounties for vulnerabilities found in our smart contracts and core infrastructure.
| Severity | Reward (USDC) |
|---|---|
| Critical | Up to $500,000 |
| High | Up to $100,000 |
| Medium | Up to $20,000 |
| Low | Up to $5,000 |
programs/flux-coreprograms/flux-incineratorsdk/src/core
Please do not open public issues for security vulnerabilities. Send a PGP-encrypted email to security@flux.protocol.
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: OpenPGP.js v4.10.10
Comment: https://openpgpjs.org
xsBNBGB+r+wBCAC9.... (fake key content for realism) ...
...
=r4K+
-----END PGP PUBLIC KEY BLOCK-----