We are determined to achieve maximum security for all that we do at Sipher. This means that we aim to be transparent in our actions.

In strong collaboration with VeriChains we are proud to share the following audit reports:

VeriChains Token Generation Audit Report & IBCO Audit Report (updated with the 2nd audit report)

VeriChains Staking & Liquidity Mining Audit Report

Besides VeriChains we invite all of our community members and beyond to start digging in our contracts in search of vulnerabilities through our bug bounty program. We find security one of the most important factors and therefore anyone that finds serious vulnerabilities will be rewarded graciously.

Please be aware that this program is aimed at smart contracts on-chain. Vulnerabilities found in the contracts on-chain are eligible for a bug bounty. Anything related to the web front-end or whatsoever is not part of this program. However we do advise you to contact our team with these issues at our e-mail security@sipher.xyz — we’ll always reward you accordingly.

The scope of the bounty program is limited to the liquidity mining contracts above.

To assess the severity of these vulnerabilities or bugs, we will be using the CVSS scoring system as shown in the image below;

We believe that any serious vulnerability should be rewarded accordingly.

Whenever a vulnerability is found that could result in the loss of user funds, we can reward up to $250,000. The exact breakdown of the payments can be found below;

Payouts will be made in USDC/T after we confirm the vulnerability and the person in question successfully cooperates with our team to solve the issues.

Whenever you find a vulnerability, please reach out to security@sipher.xyz with a clear breakdown of the vulnerability and a way for us to get in touch.