Primitive
Primitive is an AMM launching in December on Ethereum mainnet, Arbitrum One, and Optimism. It is a next-generation smart contract protocol optimized for safety.
Arbitrum
ETH
Optimism
Defi
AMM
Options
Solidity
Maximum Bounty
$100,000Live Since
04 March 2021Last Updated
26 May 2023PoC required
Select the category you'd like to explore
Assets in Scope
Impacts in Scope
Critical
Loss of user funds
Critical
Loss of governance funds
High
Temporary freezing of funds for any amount of time
Medium
Unable to call smart contract
Medium
Smart contract gas drainage
Low
Smart contract fails to deliver promised return
Out of scope
Program's Out of Scope information
The following vulnerabilities are excluded from the rewards for this bug bounty program:
All programs
- Attacks that the reporter has already exploited themselves, leading to damage
- Attacks that rely on social engineering
- Attacks requiring access to leaked keys/credentials
Smart Contracts/Blockchain
- Incorrect data supplied by third party oracles
- Not to exclude oracle manipulation/flash loan attacks
- Basic economic governance attacks (e.g. 51% attack)
- Lack of liquidity
- Best practice critiques
- Sybil attacks
The following activities are prohibited by bug bounty program:
- Any testing with mainnet or public testnet contracts; all testing should be done on private testnets
- Any testing with pricing oracles or third party smart contracts
- Attempting phishing or other social engineering attacks against our employees and/or customers
- Any testing with third party systems and applications (e.g. browser extensions) as well as websites (e.g. SSO providers, advertising networks)
- Any denial of service attacks
- Automated testing of services that generates significant amounts of traffic
- Disassembly or reverse engineering of binaries for which source code is not published, not including smart contract bytecode
- Public disclosure of an unpatched vulnerability in an embargoed bounty