Bug Bounty Program

Prefect does not currently have an official bug bounty program but we appreciate when people reach out to us with potential exploits and or vulnerabilities.

Simple Bugs
$50 Reward

For bugs that protect the security of our product. Simple bugs includes issues that can be found with simple scans run against our endpoints.

EXPLOITATIVE BUGS
$200-$800

For bugs that risk exploitation deeper than surface level as described for simple bugs.

SIGNIFICANT BUGS
TBD

We can talk.

Caught a bug?

For more details or if you have bugs to report, please reach out to security@prefect.io.