SIDUS HEROES is a browser-based, play-to-earn Web3 game that grants players true ownership of in-game assets through blockchain technology. With one-click access—no downloads required across Android, iOS, PC, or Mac—the game delivers a seamless, immersive experience. By combining engaging gameplay with digital asset ownership, SIDUS HEROES fosters deeper player participation and a thriving in-game economy.
Program Overview The Sidus Heroes Bug Bounty Program invites developers and cybersecurity professionals to help secure its immersive Metaverse ecosystem by identifying vulnerabilities in core infrastructure components. This initiative plays a vital role in maintaining the platform’s integrity, mitigating security risks, and safeguarding user assets. The program covers vulnerabilities within the main modules defined in the project’s scope, contributing to a more robust and secure Web3 gaming experience.
Reward Structure All valid reports are evaluated using a standardized 4-tier severity model, with rewards based on the vulnerability’s impact and the component affected—such as smart contracts, in-game mechanics, wallet integrations, or backend APIs. Higher-tier rewards are issued for bugs that pose significant risks to user funds or platform functionality. Final reward amounts are determined by the Sidus Heroes security team based on severity, reproducibility, and impact.
Submission Requirements All bug reports must include a working proof of concept (PoC) and detailed steps to reproduce the issue. The submission must demonstrate a clear end-effect on an in-scope asset. Reports based solely on textual explanation or unsupported theories will not be eligible for rewards.
Payouts Rewards are denominated and paid in USDT, processed by the Sidus Heroes team upon successful report validation and completion of KYC.
