Security
The Olive Branch Network Bug Bounty Program
Security and transparency are core to the Olive Branch Network. As a community-driven protocol, we believe the strongest systems are built in the open and improved with the help of the community.
If you discover a vulnerability or critical issue affecting the Olive Branch Network, we encourage responsible disclosure so we can review, fix, and strengthen the ecosystem together.
Scope
We are currently accepting responsible disclosures for the following contracts deployed on Base.
Reward Tiers
Payouts are made in $OBN and are determined by severity, impact, exploitability, and reproducibility.
Minor UI/UX issues, low-risk logic issues, and small gas optimizations.
Bugs that may cause limited financial impact or unintended protocol behavior.
Vulnerabilities that enable fund misdirection, major disruption, or serious protocol risk.
Issues that allow direct theft of funds, permanent denial of service, or protocol-level compromise.
Participation Rules
- In-scope only: Reports must relate directly to the contracts listed above.
- No mainnet exploitation: Do not exploit vulnerabilities on mainnet. Use safe test environments when demonstrating issues.
- Clear reports required: Include a detailed explanation, reproduction steps, technical impact, and any relevant proof of concept.
- First valid report wins: Duplicate reports may be ineligible if a valid submission was received earlier.
- Responsible disclosure only: Do not publicly disclose vulnerabilities until the issue has been resolved by the OBN team.
How to Submit
Submit your findings through our official Bug Bounty Submission Form.
Submit a Bug ReportReview timeline: Our team aims to review submissions within 7 business days.
Reward distribution: If a report is validated, rewards are distributed in $OBN from the official airdrop wallet: