Audit Comp | Acre-logo

Audit Comp | Acre

|

Acre is the liquidity layer for Bitcoin scaling. Users deposit BTC and receive stBTC representing their deposited BTC. The deposited BTC is deployed to Bitcoin layers that use BTC as their Proof-of-Stake asset, generating rewards for stBTC holders.

Solidity

Status

Finished
Rewards Pool
$50,000
Vault TVL
To be determined
Started
20 August 2024
Ended
03 September 2024
Rewards Token
USDC
nSLOC
1,340
  • Triaged by Immunefi

  • PoC required

  • Vault program

This Audit Competition Is Over

Audit Competition cards for security researchers with paid reports are available here

All paid bug reports are available in original format here

Started
20 August 2024 08:00 UTC
Ended
03 September 2024 08:00 UTC

VaultImmunefi vault program

Funds available

$0

30d Avg. Funds availability

$0

Assets in vault

    Public vault address

    0x73aD3D8A48B1AEaDa94929A9Cd42c8e911B270C3

    Rewards

    Audit Comp | Acre provides rewards in USDC on Ethereum, denominated in USD.

    Rewards by Threat Level

    Smart Contract
    Critical
    Portion of the Reward Pool
    High
    Portion of the Reward Pool
    Medium
    Portion of the Reward Pool
    Low
    Portion of the Reward Pool
    All categories *
    Insight
    Portion of the Reward Pool

    The following reward terms are a summary, for the full details read our Acre Audit Competition Reward Terms

    The reward pool of $50,000 USD will be entirely distributed among participants.

    • 10% of the total reward pool or a maximum of $50k, whichever is lower, is allocated to guaranteed rewards for Insight reports, regardless of whether 0 or more bugs are found or not.

    For this audit competition, duplicates and private known issues are valid for a reward.

    Rewards are distributed according to the impact of the vulnerability based on the Immunefi Vulnerability Severity Classification System V2.3.

    Reward Payment Terms

    Payouts are handled by the Acre team directly and are denominated in USD. However, payments are done in USDC

    Rewards will be distributed all at once based on Immunefi’s distribution formula after the event has concluded and the final bug reports have been resolved.

    Insight Rewards Payment Terms

    Insight Rewards: Portion of the Rewards Pool

    • The "Insight" severity was introduced on Audit Competition & Attackathon programs to recognize contributions that extend beyond identifying immediate vulnerabilities. Currently, it's not an option to select the Insight severity when submitting a report. However, our team or program will designate it accordingly if applicable. "Insights" underscores our commitment to valuing all types of contributions that contribute to a more secure environment and will always be rewarded. View more information about Insights. Duplicates of Insight reports weren't rewarded in any previous Audit Competitions, neither they will be rewarded in this Audit Competition or any other Audit Competition going forward.

    Program Overview

    Acre is a liquid staked Bitcoin protocol. Users deposit BTC and receive stBTC representing their deposited BTC. The deposited BTC is deployed to Bitcoin layers that use BTC as their Proof-of-Stake asset, generating rewards for stBTC holders. Acre allows BTC holders to earn rewards on their BTC via stBTC. Acre provides a simple method for Bitcoin holders to benefit from the growth of Bitcoin scaling without losing exposure to BTC price.
    Strictly designed for a "bitcoin in, bitcoin out" experience, Acre is a portal to broad exposure by supporting Bitcoin scaling with minimal user effort. Acre supports native BTC deposits via Thresholds programmable and decentralized BTC bridge. Acre's goal is to offer the benefits of earning rewards on idle BTC without deep technical know-how. It is important to note that each transaction within the Acre protocol is completely visible on-chain for everyone to monitor.

    For more information about Acre, please visit https://acre.fi Acre provides rewards in USDC, denominated in USD.

    KYC not required

    No KYC information is required for payout processing.

    Proof of Concept

    Proof of concept is always required for all severities.