Bug bounty presence & max payout

OpenEden's assessment for RD-F-007 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No active bug bounty program found on any platform. Immunefi: null per data cache (platform: null, max_payout_usd: null). Sherlock: no program found. Cantina: no program found. HackenProof: 403 on direct URL. SECURITY.md absent from GitHub repo (cache security_md_present: false). No responsible disclosure email published in docs.openeden.com as of 2026-05-16. No disclosure path of any kind is publicly accessible.

Sources #

GitHub
OpenEden Vault Audit Repo — GitHubOpenEden vault.audit repo — SECURITY.md absent; cache security_md_present: falseretrieved 2026-05-16
Docs
OpenEden Official Documentationdocs.openeden.com — no security disclosure page foundretrieved 2026-05-16

Methodology #

Check whether a public bug bounty program is active for this protocol and record the maximum payout in USD.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol openeden factor RD-F-007 score red collected_at 2026-05-16 10:11:45