Aave DAO Approves Bug Bounty Restructure for Aave V3 and Aave V4

Aave Labs proposed splitting Aave DAO’s bug bounty system into subsystem-specific programs, with Core Aave V3’s maximum critical payout set at $5 million across multiple security platforms.

APT

AAVE

41d ago

Summary

Aave Labs proposed restructuring Aave DAO’s bug bounty framework into subsystem-specific programs distributed across three platforms. Under the proposal, Aave V3, V2, and GHO would be managed on Immunefi, Aave V4 and App Stack on Sherlock, and Aptos Aave V3 on Cantina. The framework sets Core Aave V3’s maximum critical bug bounty reward at $5 million. The proposal focuses on reorganizing how security incentives are managed across Aave’s major protocol components.

Terms & Concepts

Bug bounty: A security reward program that pays researchers for finding and reporting software vulnerabilities before attackers exploit them.
Aave DAO: A decentralized autonomous organization that governs proposals and decisions related to the Aave protocol.
GHO: Aave’s native decentralized stablecoin designed to maintain a value pegged to a reference asset, typically the U.S. dollar.