# Bug Bounty

The bug bounty program is focused around our smart contracts, websites, and apps with a primary interest in the prevention of loss of user funds, either by direct draining of locked funds or social engineering attacks by redirecting users or forcing them to sign a transaction.

**Smart Contracts and Blockchain**

| Level    | ​   |
| -------- | --- |
| Critical | USD |
| High     | USD |
| Medium   | USD |
| Low      | USD |

\*All bug reports must include a Proof of Concept demonstrating how the vulnerability can be exploited to be eligible for a reward. This may be a smart contract itself or a transaction. 

**Website and Apps**

| Level      | ​Payout |
| ---------- | ------- |
| Critical\* | USD     |
| High       | USD     |
| Medium     | USD     |

\*XSS reports are restricted to those that have an impact of prompting a user to sign a transaction or a redirect. All payouts are done by the **MantleSwap** team and are pegged to the **USD** values and are payable in **$MANT**.