WORLD3 Docs
  • πŸ“–Whitepaper
    • Introduction & Vision
    • Problem Statement
    • Introducing WORLD3
    • Technical Architecture
      • AI Agents
      • WORLD AI Protocol Contracts
      • WORLD Agent Protocol: A Decentralized AI Agent Network
      • Human Players in WORLD AI Protocol
    • Use-Cases and Applications
      • No-code AI Agent Builder
      • Use-Cases
        • Social Media Influencers (KOLs) Agents
        • On-chain Gaming Agents
        • Web3 Project Founder Agent
        • DeFi Trading Agents
    • WORLD3 Ecosystem Apps
    • Tokenomics
      • $WAI Tokenomics
      • Business Model
    • Governance and Ethical Framework
    • Community and Ecosystem Development
      • Benefits to Landowners
    • Roadmap
      • What We Have Accomplished
      • Upcoming Initiatives
    • Conclusion
  • πŸ–₯️Pitch Deck
  • πŸ”ŽHow-To Guides
    • AI Agent Portal
      • Overview
      • Quick Start Guide
        • Quick Start Guide (δΈ­ζ–‡)
        • Quick Start Guide (ν•œκ΅­μ–΄)
      • Core Features
        • Knowledge Packs
        • Skill Plugins
        • Task Management
      • Tutorials
        • How to Build Your Twitter Influencer Agent
      • Campaign Guide
        • AI Agent Influencer Campaign Guide (EN)
        • AI Agent Influencer Campaign Guide (δΈ­ζ–‡)
        • AI Agent Influencer Campaign Guide (ν•œκ΅­μ–΄)
    • Crystal Caves
      • Crystal Caves Guide
      • Crystal Caves Soneium Summit: Player's Guide
        • Crystal Caves Soneium Summit: Player's Guide οΌˆδΈ­ζ–‡οΌ‰
        • Crystal Caves Soneium Summit: Player's Guide (ν•œκ΅­μ–΄)
      • BΒ² Gold Miner Campaign: Player's Guide
        • BΒ² Gold Miner Campaign: Player's Guide(ν•œκ΅­μ–΄)
        • BΒ² Gold Miner Campaign: Player's Guide (δΈ­ζ–‡)
      • Crystal Caves SKALE Summit: Player's Guide
        • Crystal Caves SKALE Summit: Player's Guide (δΈ­ζ–‡)
      • Crystal Caves SUI Summit: Player's Guide
        • Crystal Caves SUI Summit: Player's Guide (δΈ­ζ–‡)
        • Crystal Caves SUI Summit: Player's Guide(ν•œκ΅­μ–΄)
      • Crystal Caves opBNB Summit: Player's Guide
        • Crystal Caves opBNB Summit: Player's Guide (δΈ­ζ–‡)
        • Crystal Caves opBNB Summit: Player's Guide(ν•œκ΅­μ–΄)
      • BaseAI Summit Campaign: Player's Guide
        • BaseAI Summit Campaign: Player's Guide(ν•œκ΅­μ–΄)
        • BaseAI Summit Campaign: Player's Guide (δΈ­ζ–‡)
        • BaseAI Referral System Guide
    • SOUL Dragons
      • SOUL Dragons AI Chat Campaign
      • SOUL Dragons AI Chat Campaign (δΈ­ζ–‡)
      • SOUL Dragon Trading Guide
      • SOUL Dragon Trading Guide (δΈ­ζ–‡)
      • SOUL Dragons Mint Guide
      • SOUL Dragons Mint Guide (δΈ­ζ–‡)
      • SOUL Dragon Whitelist Ticket Claim Guide
      • SOUL Dragons: Referral Contest Guide
      • SOUL Dragons: Referral Contest Guide (δΈ­ζ–‡)
    • Whitelist Allocation for Landowners
    • Staking System Guide
      • Staking System Guide (δΈ­ζ–‡)
      • Staking System Guide (ν•œκ΅­μ–΄)
    • Referral Program Guide
      • Referral Program Guide (δΈ­ζ–‡)
      • Referral Program Guide (ν•œκ΅­μ–΄)
    • Treasure User Guides
      • Treasure User Guides (δΈ­ζ–‡)
      • Treasure User Guides (ν•œκ΅­μ–΄)
  • Announcements & Notices
    • Account Freezing Rules
      • Account Freezing Rules (δΈ­ζ–‡)
Powered by GitBook
On this page
  • Bug Bounty Program Overview
  • Scope
  • Exclusions
  • Submission Process
  • Severity and Reward Structure
  • Responsible Disclosure Guidelines
  • Fine Print
  1. How-To Guides
  2. Crystal Caves

Crystal Caves Open Beta: Bug Bounty Program

Last updated 6 months ago

Submitting feedback instead of a bug? Please use this instead.

Bug Bounty Program Overview

Crystal Caves (CC) Open Beta invites the community to report bugs and vulnerabilities to ensure a safe gaming environment. Rewards are given for valid findings that help secure our ecosystem starting October 15th, 2024.

Scope

The following areas of Crystal Caves are in scope:

  • Smart contracts and on-chain transactions

  • Game mechanics (e.g., mining, block defogging, ZK-PoW)

  • Authentication, Platform Integrations, and Web Interface

  • Point distribution systems.

Exclusions

The following will not be eligible for rewards:

  • Vulnerabilities discovered via automated tools.

  • DDOS attacks.

  • User enumeration issues without significant security impact.

  • Vulnerabilities are already covered in CC audits or previously submitted bugs.

Submission Process

  • Detailed bug descriptions

  • Screenshots and reproduction steps

  • Screen recording / Video (Optional)

Only the first valid report will be rewarded. After 48-72 hours of submission, a team member will contact you via the contact information provided in the form.

Severity and Reward Structure

  • Critical

  • High

  • Medium

  • Low

Rewards (Lumens, USDT) depend on business impact, report clarity, and reproducibility.

Responsible Disclosure Guidelines

  • Report vulnerabilities as soon as they are discovered.

  • Allow a reasonable time for the WORLD3 team to address the issue before public disclosure.

  • Avoid any disruption to services, privacy violations, or data loss.

  • Only test using your accounts unless permission is granted.

  • Do not share or spread details about the vulnerability on social media platforms or other public channels unless explicitly authorized by the WORLD3 team.

WORLD3 team reserves the right to disclose vulnerabilities found at its discretion while respecting the researcher's privacy.

Fine Print

  • Rewards are subject to applicable laws and taxes.

  • The program terms may sometimes be modified, and changes will not apply retroactively.

Submit reports via , including:

Severity is based on the , categorized as:

Users must comply with the .

πŸ”Ž
Google Form
Google Form
Immunefi system
WORLD3 Terms of Use