bug bounty

term

securityhacking

A program that pays researchers for responsibly reporting security flaws.

Bug bounties put responsible disclosure on a formal footing: a defined scope, rules, and rewards turn would-be adversaries into paid allies. They do not replace internal security, but they widen the set of eyes looking for what you missed.

Also known as: bug-bounty, vulnerability reward

All glossary entries