SherlockSherlock Yield Strategy Bug Bounty Post-Mortem
Sherlock Yield Strategy Bug Bounty Post-MortemNOTE FOR SHERLOCK LIQUIDITY PROVIDERS: This type of bug bounty payout does not impact any of the staking pool, and all staked funds used for Sherlock coverage remain unaffected.OverviewOn July 14th, 2022, GothicShanon89238 reported an issue to Sherlock through Immunefi concerning Sherlock's yield strategy integration with Euler. The issue has since been fixed.No funds were immediately at risk, but the issue could eventually have resulted in a...
SherlockWhat is Sherlock?
TL;DRSherlock is a new type of security solution for protocol teams. Sherlock provides teams with all the tools they need to securely launch decentralized apps:Audits from leading security firms and independent security expertsBug bounty paid for by SherlockSmart contract coverage for on-chain exploitsWith these tools, protocol teams are set up for success and can get back to building. Even further, the users of those protocols can sleep easier knowing there is recourse even if a bug slips th...
SherlockSherlock Seed Round
What is Sherlock?Sherlock is a new type of security solution for protocol teams. Sherlock provides teams with all the tools they need to securely launch decentralized apps:Audits from leading security expertsBug bounty paid for by SherlockSmart contract coverage against exploitsWith these tools, protocol teams are set up for success and can get back to building. Even further, the users of these protocols can sleep easier knowing there is recourse even if a bug slips through the protocol’s str...
SherlockSherlock Yield Strategy Bug Bounty Post-Mortem
Sherlock Yield Strategy Bug Bounty Post-MortemNOTE FOR SHERLOCK LIQUIDITY PROVIDERS: This type of bug bounty payout does not impact any of the staking pool, and all staked funds used for Sherlock coverage remain unaffected.OverviewOn July 14th, 2022, GothicShanon89238 reported an issue to Sherlock through Immunefi concerning Sherlock's yield strategy integration with Euler. The issue has since been fixed.No funds were immediately at risk, but the issue could eventually have resulted in a...
SherlockWhat is Sherlock?
TL;DRSherlock is a new type of security solution for protocol teams. Sherlock provides teams with all the tools they need to securely launch decentralized apps:Audits from leading security firms and independent security expertsBug bounty paid for by SherlockSmart contract coverage for on-chain exploitsWith these tools, protocol teams are set up for success and can get back to building. Even further, the users of those protocols can sleep easier knowing there is recourse even if a bug slips th...
SherlockSherlock Seed Round
What is Sherlock?Sherlock is a new type of security solution for protocol teams. Sherlock provides teams with all the tools they need to securely launch decentralized apps:Audits from leading security expertsBug bounty paid for by SherlockSmart contract coverage against exploitsWith these tools, protocol teams are set up for success and can get back to building. Even further, the users of these protocols can sleep easier knowing there is recourse even if a bug slips through the protocol’s str...
Subscribe to Sherlock
Subscribe to Sherlock
Share Dialog
Share Dialog
<100 subscribers
<100 subscribers
This is the quick start guide for security experts interested in competing for $50k+ prize pools in Sherlock’s next-generation audit model.
For the full details, check out the Audit section of the Sherlock docs.
Good news: If you’ve competed in Code Arena in the past, this experience will be quite familiar.
However, there are some differences:
Only Medium and High severity bugs are rewarded
The top 10% on Sherlock’s leaderboard are eligible to be Lead Senior Watsons with $10k guaranteed pay per audit week
Rankings are ELO-style instead of cumulative (based on your last 5 contest results)
Lead Senior Watsons are responsible for fix reviews
Contests will be judged and paid out in under 2 weeks by Sherlock’s in-house judges
Note: The Sentiment contest was originally scheduled for 2 weeks but has been extended to 3 weeks due to an updated scope. The prize pool has been increased to 75k USDC.
The first contest starts on Monday, August 29th.
You’ll be able to sign up here starting on Monday.
More details about Sentiment and the codebase will be available in the coming days but here’s a quick look:
Sentiment enables on-chain, permissionless, undercollateralized borrowing
3,630 nSLOC (according to solidity-metrics)
85% test coverage (as of August 17th)
Contest will last 3 weeks
This is the quick start guide for security experts interested in competing for $50k+ prize pools in Sherlock’s next-generation audit model.
For the full details, check out the Audit section of the Sherlock docs.
Good news: If you’ve competed in Code Arena in the past, this experience will be quite familiar.
However, there are some differences:
Only Medium and High severity bugs are rewarded
The top 10% on Sherlock’s leaderboard are eligible to be Lead Senior Watsons with $10k guaranteed pay per audit week
Rankings are ELO-style instead of cumulative (based on your last 5 contest results)
Lead Senior Watsons are responsible for fix reviews
Contests will be judged and paid out in under 2 weeks by Sherlock’s in-house judges
Note: The Sentiment contest was originally scheduled for 2 weeks but has been extended to 3 weeks due to an updated scope. The prize pool has been increased to 75k USDC.
The first contest starts on Monday, August 29th.
You’ll be able to sign up here starting on Monday.
More details about Sentiment and the codebase will be available in the coming days but here’s a quick look:
Sentiment enables on-chain, permissionless, undercollateralized borrowing
3,630 nSLOC (according to solidity-metrics)
85% test coverage (as of August 17th)
Contest will last 3 weeks
No activity yet