Published in


StaFi Works with Immunefi to Launch A Bug Bounty for rDEX on Testnet


Funds security is always the first priority of StaFi, therefore we want to make sure that rDEX is fully secure before its final mainnet launch. Besides the full security audit delivered by PeckShield (check the audit report), StaFi is taking another step on rDEX’s security by partnering with Immunefi to deliver a bug bounty program for the testnet.

Immunefi will help StaFi find the potential security vulnerabilities of rDEX as far as possible before its final launch.One critical bug will be rewarded 25,000 USD in FIS and welcome to join in this bug bounty and win the rewards.

About Immunefi

Immunefi is a bug bounty platform for smart contracts and projects to protect them against catastrophic exploits by rewarding white hats who find bugs in the system. Rewards are distributed according to the level of the vulnerability exposed, with levels varying on a 5-point scale based on Immunefi Vulnerability Severity Classification System.

Rewards and Program Scope

Rewards are distributed according to the impact of the vulnerability based on the Immunefi Vulnerability Severity Classification System. This is a simplified 5-level scale, with separate scales for websites/apps and smart contracts/blockchains, encompassing everything from consequence of exploitation to privilege required to likelihood of a successful exploit.

All bug reports must come with a suggestion for a fix to be considered for a reward.

All known issues highlighted in the following audit report are considered out-of-scope:

Payouts are handled by the StaFi team directly and are denominated in USD. However, payouts are done in FIS.

Check the details of this bug bounty program scope on Immunefi Platform.

How to Report Bugs

When a hacker hits the “Submit bug report” button on Immunefi’s rDEX Bug Bounty Program page, they will be sent to which will guide them through the process of creating a bug report.

Here is a detailed article talking about how to report bugs on Immunefi: A Hacker’s Guide to Submitting Bugs on Immunefi.

About rDEX

rDEX V1 is an AMM DEX developed by StaFi that seeks to solve the liquidity problems associated with rTokens, the staking derivatives issued by StaFi. It will provide decentralized transaction services for all rTokens based on the StaFi Chain. Being an important part of the StaFi rToken ecosystem, rDEX V1 now is deployed on the StaFi chain, which is Substrate-based. Native rTokens minted by users can directly be traded through the rDEX for better liquidity.

For more information about rDEX, please visit:

About StaFi

StaFi is the first DeFi protocol unlocking liquidity of staked assets. Users can stake PoS tokens through StaFi and receive rTokens in return, which are available for trading, while still earning staking rewards. rToken is a synthetic staking derivative issued by StaFi to users when users stake PoS tokens through StaFi rToken App . rTokens are anchored to the PoS tokens staked by users and the corresponding staking rewards. rTokens can be transferred and traded at any time.

Website | rToken App | Twitter | Telegram | Discord | Forum



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store