How do I report a security vulnerability / bug bounty finding to ChainGPT?

ChainGPT runs a bug bounty for the core components of its ecosystem.

Rewards (paid in $CGPT)

• Critical (loss of funds or network downtime): up to $5,000 in CGPT.
• Non-critical (no financial loss; UX impact with a workaround): up to $500 in CGPT.

Awards are at ChainGPT's discretion and subject to reclassification/verification.

Scope

ChainGPT AI Model & Chatbot (note: incorrect chatbot answers do NOT qualify), AI-based tools & utilities, the DevAssist browser extension, ChainGPT Blockchain (Layer 1 & Layer 2), the blockchain ecosystem (web wallet, wallet extension, explorer, Wormhole, DEX), and the docs (github.com/ChainGPT-org/docs).

How to report

1. Create a ticket at help.chaingpt.org and start your message with "Critical" or "Non-critical" plus a brief title.
2. Describe the issue clearly, reference the source code, and include steps to reproduce, version/system info, and any suggested fix.

The team responds within two business days on whether it qualifies. Only reports submitted via [email protected] / the help center are considered — please don't DM the team (DMs aren't answered). Full terms + CertiK details: https://skynet.certik.com/projects/chaingpt

Still need help? Contact support.