# Bug Bounty

A bug bounty program with Immunefi was launched on October 11, 2022. This bug bounty program is focused on the Beanstalk smart contracts and preventing the loss of user funds. The maximum bounty is **1,100,000 Beans**.

You can find the bug bounty program and submit bug reports [here](https://immunefi.com/bounty/beanstalk):

{% embed url="<https://immunefi.com/bounty/beanstalk/>" %}

In order to be considered for the maximum potential reward, bug reports must come with (1) a Proof of Concept (PoC), and (2) code implementing the fix.

Bug reports that do not come with a PoC and code implementing a fix may qualify for a maximum of up to 30% of the potential reward outlined below, as determined by the Beanstalk Immunefi Committee (BIC). You can read more about the BIC here:

* [BIC Process](/almanac/governance/beanstalk/bic-process.md)
* [BICM Dashboard](/almanac/governance/beanstalk/bicm-dashboard.md)

All vulnerabilities noted in [any audit reports in the Beanstalk Audits repository](https://github.com/BeanstalkFarms/Beanstalk-Audits) (or otherwise known by the BIC or [BCM](/almanac/governance/beanstalk/bcm-process.md)) are not eligible for a reward.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.bean.money/almanac/protocol/bug-bounty.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.