Learn more about the Bug Bounty program, including a recap of 2019’s bugs, our expanded scope, new features, and more.
March 25, 2020
Blog posts about Bug Bounty
11 post(s)
Newest
Read about some big changes for the coming year: full legal protection for researchers, more GitHub properties eligib...
February 19, 2019
Last month GitHub celebrated the fourth year of our Security Bug Bounty program. As we’ve done in the past, we’re sha...
March 14, 2018
Coinbase loves bug bounties. We think they fundamentally change the economics of vulnerability reporting. Instead of ...
October 18, 2017
We’re coming up on four years since the Bug Bounty program was first announced. A lot has changed in that time, and w...
October 18, 2017
In honor of our Bug Bounty Program’s third birthday, we kicked off a promotional bounty period in January and Februar...
March 14, 2017
Last month, we announced the third anniversary of our Bug Bounty Program. While there’s still time to disclose your f...
February 22, 2017
The GitHub Bug Bounty Program is turning three years old. To celebrate, we’re offering bigger bounties for the most s...
January 9, 2017
Despite the best efforts of its writers, software has vulnerabilities, and GitHub is no exception. Finding, fixing, a...
February 4, 2016
One of the best ways we protect our members is by identifying vulnerabilities prior to launch through a careful desig...
June 17, 2015
It’s already been a year since we launched the GitHub Security Bug Bounty, and, thanks to bug reports from researcher...
January 28, 2015