GitHub Launches Bug Bounty Program, Offers Between $100 and $5,000 14

Posted by timothy on Thursday January 30, 2014 @03:30PM from the bounteous-maximus dept.

An anonymous reader writes "GitHub today launched the GitHub Bug Bounty program 'to better engage with security researchers.' In short, the company will pay between $100 and $5,000 for each security vulnerability discovered and responsibly disclosed by hackers. The program currently covers the GitHub API, GitHub Gist, and GitHub.com. GitHub says its other Web properties and applications are not part of the program, but it says vulnerabilities found 'may receive a cash reward at our discretion.'"

GitHub Launches Bug Bounty Program, Offers Between $100 and $5,000

This discussion has been archived. No new comments can be posted.

Load All Comments

Search 14 Comments Log In/Create an Account

Comments Filter:

- Re: (Score:1, Interesting)
  
  by Anonymous Coward writes:
  
  In the GitHub system, not GitHub user code, numbnuts.
  But seriously, this whole gameification of work is getting pathetic. Everyone's a freelance mercenary fighting for scraps, and kids brought up on a battery of constant useless testing lap it up. No benefits and no job security.
  - - - voluntary, permanent ignorance (Score:3)
        
        by raymorris ( 2726007 ) writes:
        
        That is true only if you start from the premise that the vast majority of people are stupid. In this case, that the vast majority of programmers / testers are stupid.
        Employment 40 hours per week is already an option for any programmer or tester who would participate.
        They look at it and guesstimate "running Nessus overnight will take 10 minutes of my time. If there are promising hits following up on the most likely will take ... ".
        One of three things must be true before a programmer participates:
        A) These pr
a WHOLE 100$ (Score:1)

by Anonymous Coward writes:

Isn't the bounty range a little low?
- Re: (Score:2)
  
  by kthreadd ( 1558445 ) writes:
  
  No. Not really. That's just the lower bound.
GitHub is non-free (Score:1)

by Anonymous Coward writes:

GitHub does not make the source code to it's software available under a free software license and includes non-free JavaScript. The service will also recommend non-free programs which is unethical. You should therefore not use the service, nor should you assist in improving it.
- Re: (Score:3)
  
  by Ibiwan ( 763664 ) writes:
  
  Go home, RMS; you're drunk!
- Re: (Score:2)
  
  by yakatz ( 1176317 ) writes:
  
  GitHub is one of the best designed Project-Hosting-as-a-Service websites that exists. They pay for hosting an untold number of free open-source repositories by selling their services to teams and companies. You can even buy a GitHub appliance that you host in your own network to make sure your code never leaves.
  
  If you want to use one of the "free as in speech" Git platforms, by all means, just do. But if you want a GUI, bug tracker, wiki, web hosting, etc. that cost a significant amount of money to develop

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

GitHub Launches Bug Bounty Program, Offers Between $100 and $5,000 14

GitHub Launches Bug Bounty Program, Offers Between $100 and $5,000 More Login

GitHub Launches Bug Bounty Program, Offers Between $100 and $5,000

Re: (Score:1, Interesting)

voluntary, permanent ignorance (Score:3)

a WHOLE 100$ (Score:1)

Re: (Score:2)

GitHub is non-free (Score:1)

Re: (Score:3)

Re: (Score:2)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot