The place to protect open source
Make money for finding or fixing security vulnerabilities in any open source project.
Protect packages that are used over 1 billion times each day


The truly open bounty platform
No more redactions
Say goodbye to suspicious backroom conversations.
Save the world
See how many people you're protecting.
Share with friends
Share your open source success!

Disclose
Dive into open source, and discover new vulnerabilities.
Patch
Browse vulnerabilities, choose your bounty and write your fix.
Review
Review community code. Contact us to find out more.