The place to protect open source

Make money for finding or fixing security vulnerabilities in any open source project.

Protect packages that are used over 1 billion times each day

The truly open bounty platform

No more redactions

Say goodbye to suspicious backroom conversations.

Save the world

See how many people you're protecting.

Share with friends

Share your open source success!

Disclose

Dive into open source, and discover new vulnerabilities.

Patch

Browse vulnerabilities, choose your bounty and write your fix.

Review

Review community code. Contact us to find out more.