Challenge Overview
Detailed Requirements
Welcome to SEC Yield - Bug Bounty Challenge!
The goal of this challenge is to fix a number of reported bugs for java application.
A [Bug Bounty] challenge is a program that will pay community members to fix bugs reported.
Using Gitlab issues you will assign issues to yourself. In this [Bug Bounty] this issue vary widely in scope. Some are small cosmetic changes that shouldn't require more than an hour to diagnose and fix. And we have other changes that are more significant.
Challenge Scope
This challenge will remain open until all bugs are closed/solved, there are list of bugs listed in Gitlab and we might add more issues over the next two weeks to get fixed.
For this challenge, you will assign a bug that has corresponding complexity level (each level has corresponding money amount as outlined below) to yourself from our current list of Gitlab issues.
- Add yourself to the gitlab repo.
- Browse the issues and decide which one you would like to tackle first.
- Each member may only assign one issue to themselves at a time. Assign, work, create a pull request, look for the next issue.
- Please see the detailed instructions below in the submission guidelines for how this Bug Bounty will be managed.
- Deployment instructions for the app can be found in the README in the repo.
Bug values
Each bug has a weight assigned to it, default weight value : 1 = $10, 2 = $20 .. 9 = $90. If the ticket has a price in square brackets it overrides the default prize.
The competitor can select any open bug to work on. Once you have the fixed the bug, please submit link to pull request and the corresponding issue number to Online Review, we will review it and pay you the bug prize when the F2F challenge ends in Online Review.
Open Bugs shown here are in scope of this challenge and will be designed by the "Open for Pickup" tag. The bug list will be updated frequently, new bugs will be shown and old bugs may be fixed by the other competitors, so keep watching the bug list.
The winner of the challenge will be determined by accumulating the issues weights solved.
Bug Bounty Instructions
- You can get access to the Gitlab repo group in this tool THIS LINK
- You can view list of issues here https://gitlab.com/sancus-community/backend/issues
- Each issue in Gitlab issue has a dollar value. Dollar values are based upon complexity and priority of issue.
- You can assign any unassigned issue to yourself with an "Open for Pickup" label (first come first serve).
- Change Label from “Open for Pickup” once you assign yourself. If you want to back away change the label to “Open for Pickup” and unassign yourself.
- You can only assign ONE AT A TIME. The nature of it being assigned will indicate it is not available to anyone else.
- You will fix the ticket as a pull request to the "F2F-30055109" branch!
- Once a ticket is fixed, you should label it "Ready for Review" where it will then be verified. If something is still broken, the copilot will comment on the ticket.
- After submitting and tagging "Ready for Review" you are eligible to accept another. You can do as many tickets as you want, as long as you follow the rules above.
- If the ticket is fixed properly, your pull request will be merged in, and the ticket will be marked "Solution Accepted".
- When the ticket is closed, payment will be recorded, and ticket tagged "Payment Required", when we issue the payment the tag will be updated to “Paid”
- You should always pull from the develop branch at the start of the ticket to keep in sync.
- If an assigned task is not done in 24 hours, you will be unassigned from the ticket, and it will be open up to the community. If you need more time than 24hrs make sure to post a comment in the ticket otherwise you will lose your right to complete the ticket.
- You can ask questions directly on the ticket comments.
Platforms
Java
MySQL
AngluarJS
Gitlab Repositories
Backend : https://gitlab.com/sancus-community/backend
Frontend: https://gitlab.com/sancus-community/frontend
Architecture: https://gitlab.com/sancus-community/architecture
Final Submission Guidelines
Submission Deliverable
Upload text file with your gitlab username to Online Review.