Status strives to be a secure communication tool that upholds human rights. Designed to enable the free flow of information, protect the right to private, secure conversations, and promote the sovereignty of individuals.
Target | Type | Severity | Reward |
---|---|---|---|
https://apps.apple.com/us/app/status-private-communication/id1178893006 | iOS | None | Bounty |
https://status-im-files.ams3.cdn.digitaloceanspaces.com/StatusIm-Mobile-v1.19.0-d6a6c4.apk | Android | None | Bounty |
macOS desktop application available at https://status.app/ for Intel and Silicon macOS desktop application | Other | None | Bounty |
https://status.app/api/download/windows Windows desktop application | Other | None | Bounty |
https://status.app/api/download/linux Linux desktop application | Web | None | Bounty |
*.status.im | Web | None | Bounty |
Status Smart Contracts | Smart Contract | None | Bounty |
*.status.app | Web | None | Bounty |
macOS desktop application
Windows desktop application
Linux desktop application
Target | Type | Severity | Reward |
---|---|---|---|
https://discuss.status.im/ | Web | None | Bounty |
test.*.status.im | Web | None | Bounty |
dev.*.status.im | Web | None | Bounty |
No specific focus area has been defined so far.
The following issues are considered out of scope:
Feedback
We want to ensure that we are running properly our bug bounty program, for that reason we would love to hear your comments. If you would like to provide feedback on how we can improve our program, please contact us at [email protected].
Safe Harbor
Any activities conducted in a manner consistent with this policy will be considered authorized conduct, and we will not initiate legal action against you. If a third party initiates legal action against you in connection with activities conducted under this policy, we will take steps to make it known that your actions were conducted in compliance with this policy.
Thank you for helping keep Status.im and our users safe; happy hacking!
Disclaimer
All testing environment without clear impact for Status Company is not eligible for the bounty and will be marked as "Out of scope".