We are currently partnering with Gitcoin to provide bounties for vulnerabilities in our contracts. The rewards are small as these contracts have not yet been audited. The bounties size will be reviewed upward once the audits have been performed.

Contract eligible for bounty

• MetaERC20Wrapper.sol

What vulnerabilities should you look for?

We of course want to know every vulnerability, but in particular:

• Risk of funds being stolen
• Risk of funds being frozen or lost
• Risk of invalid balance changes

We follow many of the bug bounty rules that the Ethereum Foundation does:

• Decisions on the eligibility and size of a reward are the sole discretion of Horizon Games.

• Public disclosure of a vulnerability makes it ineligible for a bounty. Instead issues must be submitted to [email protected].

• Issues must be new to the team. They can’t have already been identified by another user or by an audit.

• No employees, contractors or others with current or prior commercial relationships with Horizon Games are eligible for rewards.

• Provide the steps required to demonstrate an issue. If we cannot reproduce an issue we will not be able to reward it.

Bounty size

The size of the bounty will vary depending on the severity of the issue discovered. The severity is calculated according to the OWASP risk rating model based on Impact and Likelihood.

Decisions on the eligibility and size of a reward are guided by the rules above, but are, in the end, determined at the sole discretion of Horizon Games

Critical: up to $3,000
High: up to $1,500
Medium: up to $500
Low: up to $250

Other considerations

In addition to severity, other variables are also considered when Horizon evaluates the eligibility and size of a bounty, including (but not limited to):

• Quality of description
  Higher rewards are paid for clear, well-written submissions.

• Quality of reproducibility
  Please include test code, scripts and detailed instructions. The easier it is for us to reproduce and verify the vulnerability, the higher the reward.

• Quality of fix, if included
  Higher rewards are paid for submissions with clear description of how to fix the issue.

@PhABC lmk if you're good with this, I can update the repo name, but then we'll need to update the names and docs within the code and the npm pkg as well

I have deployed ERC20Wrapper.sol on Kovan with Remix, and used the setApprovalForAll() function, but when I try to run the deposit function with this token it always fails with a false Transaction mined but execution failed. I have the tokens in my wallet and I have given some Wei to the deposit function call but I can't quite seem to get it to work, any advice?

Should I be using MetaERC20Wrapper instead of ERC20Wrapper?

By @Agusx1211

Do you have an example of implementation of this contract?
In the readme there is only an example of a function call.
If you can share a complete example.

Thanks

By @Agusx1211

By @Agusx1211