🛡️Sherlock Shield
Sherlock now includes bug bounty and exploit coverage with every audit
Welcome to Sherlock Shield!
Every protocol team that goes through a Sherlock audit gets access to bug bounty and exploit coverage on their audited code.
Here's how it works:
Complete an audit with Sherlock
Complete the fix review
Sherlock sets up and pays for your small pre-launch bug bounty
Confirm the details of your post-launch bug bounty program
Post-launch, Sherlock covers up to $250k of bug bounty and exploit payouts
After completing the fix review, Sherlock ensures that there is always a bug bounty on your code! With Sherlock's dual pre-deployment and post-deployment bug bounties, whitehats will be working around the clock to keep your protocol safe.
Coverage Amount Criteria
The amount of coverage Sherlock gives is based on the vulnerabilities found in the Sherlock audit:
Each Medium severity vulnerability is worth 1 point, and each High severity vulnerability is worth 5 points. Additionally, there are multipliers for the type of audit done:
| Audit type | Points Multiplier |
|---|---|
Recommended | 0.75 |
Minimum | 1.0 |
Best Efforts | 2.0 |
Private | 1.5 |
Collaborative | 1.5 |
Like golf, you want your score to be as low as possible so you can access the maximum amount of coverage:
| Points | Coverage Amount |
|---|---|
Less than 3 | $250,000 |
Less than 6 | $200,000 |
Less than 9 | $150,000 |
Less than 12 | $100,000 |
Less than 15 | $50,000 |
Less than 18 | $25,000 |
Less than 21 | $10,000 |
Less than 30 | $5,000 |
30 or more | $1,000 |
Note: Sherlock does not guarantee payment or the availability of funds. Payouts are determined by the on-chain claims process of the Sherlock protocol on Ethereum mainnet. Please review the Sherlock Disclaimers to better understand the coverage offering.
Last updated