Sherlock V2
  • 👋Intro to Sherlock
  • 🙋FAQ
  • 📚Glossary
  • ‼️Disclaimers
  • Audits
    • 🧑‍💻Protocol Teams
      • How it Works for Protocols
      • Audit Timeline
      • Scheduling Process
      • Audit Preparation
      • Protocol Involvement During the Audit Process
      • Protocol Involvement Post-Audit
      • Rescheduling and Cancellations
      • Interim Updates and Upgrades
    • 🕵️Watsons
      • Lead Senior Watson Selection Process
      • Fix Review Process
      • Contest Points
      • How to Score Issue Points in a Contest
      • Meeting the Payout Criteria
      • Leaderboard Points Example
      • FAQ
    • 🧑‍⚖️Judging
      • Judging Conduct Guidelines
      • Criteria for Issue Validity
        • Criteria Changelog
      • Lead Judge
      • 🧑‍⚖️Community Judging
      • Dedicated Judge
      • Discussion
      • Sherlock's Exclusive Judging Apprentice Program
    • 🤝Referral Program
  • Bug Bounties
    • 🌱Pre-Launch Bounty
    • 🚀Post-Launch Bounty
      • 📜Platform Rules
      • ⚖️Dispute Resolution
  • Coverage
    • 🛡️Sherlock Shield
    • 💰Stakers
      • Overview
      • Lockup Period
      • Payout Flow
      • Staking APY
    • 🧑‍💻Protocol Teams
      • Getting Started
      • Coverage Premiums
      • Pricing
      • Composability and Coverage
      • Payout Flow
      • FAQ
    • 📝Claims
      • Claims Process
  • Tokens
    • SHER
    • Receipt NFTs
  • Governance
    • Roles
  • Developer
    • Overview
    • Stake Position Lifecycle
    • Claim Lifecycle
    • Protocol Lifecycle
    • SHER Distribution
    • Deployed Contracts
    • Contract Reference
    • Audits
Powered by GitBook
On this page
  1. Coverage

Sherlock Shield

Sherlock now includes bug bounty and exploit coverage with every audit

Welcome to Sherlock Shield!

Every protocol team that goes through a Sherlock audit gets access to bug bounty and exploit coverage on their audited code.

Here's how it works:

  1. Complete an audit with Sherlock

  2. Complete the fix review

  3. Sherlock sets up and pays for your small pre-launch bug bounty

  4. Confirm the details of your post-launch bug bounty program

  5. Post-launch, Sherlock covers up to $500k of bug bounty and exploit payouts

After completing the fix review, Sherlock ensures that there is always a bug bounty on your code! With Sherlock's dual pre-deployment and post-deployment bug bounties, whitehats will be working around the clock to keep your protocol safe.

Coverage Amount Criteria

The amount of coverage Sherlock gives is based on the vulnerabilities found in the Sherlock audit:

Each Medium severity vulnerability is worth 1 point, and each High severity vulnerability is worth 5 points. Additionally, there are multipliers for the type of audit done:

Audit type
Points Multiplier

Recommended

0.75

Minimum

1.0

Best Efforts

2.0

Private

1.5

Collaborative

1.5

Like golf, you want your score to be as low as possible so you can access the maximum amount of coverage:

Points
Coverage Amount

0

$500,000

Less than 3

$250,000

Less than 6

$200,000

Less than 9

$150,000

Less than 12

$100,000

Less than 15

$50,000

Less than 18

$25,000

Less than 21

$10,000

Less than 30

$5,000

30 or more

$1,000

PreviousDispute ResolutionNextStakers

Last updated 9 days ago

Note: Sherlock does not guarantee payment or the availability of funds. Payouts are determined by the of the Sherlock protocol on Ethereum mainnet. Please review the to better understand the coverage offering.

🛡️
on-chain claims process
Sherlock Disclaimers