The YOLO system of Smart Contracts has begun orbital descent. After months of serious effort placed into streamlining and perfecting, we are opening up our smart contracts to our community of Web3 geniuses, developers, and degens, leading to yet another Bug Bounty program.
This is a chance for EVM experts and developers to help us discover bugs and vulnerabilities and earn some serious cash at the same time.
The program will reward discoveries based on three tiers of severity:
- HIGH: any vulnerability which has catastrophic implications, such as permanent Denial of Service (DOS), draining of user, liquidity provider or treasury funds, takeover of access or administrative privileges. Reward: $5,000 USDC
- MEDIUM: can corrupt important data, such as user participation tracking, or cause disruptions in the operation of the markets, such as delays in processing of rounds, less critical access control disruption issues. Reward: $1,000-$2,000 USDC
- LOW: minor, yet nontrivial oversights, causing loss or modification of noncritical data. Reward: $100-$500 USDC
Additionally, any significant gas efficiency improvement proposals with a minimum savings of 10k gas units or 20%, and which we implement, will be rewarded $200-$2000 USDC (depending on frequency of code call)..
YOLO contracts are easy to use, with minimal interfaces, clear upgrade paths, and importantly, secured through repeated revision and audits. Hop in and let's get going!
Post an Issue or PR in this repo with the following sections: impact, the vulnerability, and steps to correct. Head to our Discord channel #bug-reporting and give us a headsup or shout for help on reporting! You can also find the linked task on Dework at our YOLOrekt Main Space.
Oh and a few more contracts will be joining this repo soon. They'll be sure to contain some novel pattern goodies and incentivizing mechanisms.
To help onboard, we've provided some unit tests in this repository, as well as the class and deployment diagrams below.
