Bron never holds or controls user private keys, funds, or assets. All transactions are user-initiated and executed directly with third-party smart-contract protocols. Swap and staking functions are performed via independent third-party APIs. Bron only provides technical access and does not pool, intermediate, or custody user assets.
Program Documentation
- 📋 Policy — Responsible vulnerability disclosure, testing rules, scope and legal notice
- 💰 Rewards — Reward tables, CVSS v4.0 ranges and payout conditions
- 📝 Report — Report format, reproduction steps and PoC requirements
- 🏆 Hall of Fame — Acknowledgments to researchers
MPC Cryptography Library
The bron-crypto repository is an open source MPC (Multi-Party Computation) cryptography library that implements threshold signature schemes. This library is part of the Bron Bug Bounty Program and is licensed under Apache License 2.0.
Repository: github.com/bronlabs/bron-crypto
Security Policy: View Security Policy
For detailed information about scope and experimental features, please refer to the SECURITY.md file in the repository. All reports must be submitted via email to [email protected].
Quick Start
Submit reports to: [email protected]
Acknowledgment: 3 business days | Initial triage: up to 10 business days
All accepted submissions earn a non-transferable Bron NFT with a complimentary subscription tier. A Bron wallet is required to receive bounty payouts. See Rewards for details.