The 1inch ecosystem comprises interconnected smart contracts that aggregate liquidity from various decentralized exchanges to execute optimal token swaps.
Target | Type | Severity | Reward |
---|---|---|---|
https://github.com/1inch/limit-order-protocol Copy Limit order protocol | Smart Contract | None | Bounty |
https://github.com/1inch/fusion-protocol Copy Limit order settlement | Smart Contract | None | Bounty |
https://github.com/1inch/token-plugins Copy Token-plugins | Smart Contract | None | Bounty |
https://github.com/1inch/farming Copy Farming contracts | Smart Contract | None | Bounty |
https://github.com/1inch/delegating Copy Delegating contracts | Smart Contract | None | Bounty |
https://github.com/1inch/calldata-compressor Copy Calldata Compressor and Decompressor | Smart Contract | None | Bounty |
Limit order protocol
Limit order settlement
Token-plugins
Farming contracts
Delegating contracts
Calldata Compressor and Decompressor
The following vulnerabilities are considered in-scope:
All in-scope vulnerability reports must include a Proof of Concept (PoC) that demonstrates real-world impact. Submissions without a PoC will not be considered.
Vulnerabilities identified in out-of-scope resources are generally not eligible for rewards unless they present a significant business risk, as determined at our sole discretion.
The following items are generally excluded from reward eligibility due to insufficient severity or lack of relevance to the program’s defined scope:
We value all valid reports that help us strengthen our security. To qualify for a monetary reward, the following eligibility conditions must be fulfilled: