Do you know HackerOne has had a Make It Proper fund for years?
Usually, applications and hackers come to agreeable options on stories in response to business requirements. Typically, nevertheless, there are instances the place HackerOne believes a hacker’s submission has been handled unfairly by a buyer after mediation is requested. We wish to guarantee we award hackers for his or her efforts in instances the place a discovering has supplied substantial worth.
What’s the Make it Proper fund?
There could also be instances the place we consider there is a mishandling of a hacker’s submission. We wish to guarantee hackers obtain an award for his or her efforts in such instances. That’s what the “Make It Right” fund is all about.
If an in depth backend evaluate concludes that HackerOne disagrees with this system’s report determination, we are able to award the hacker a discretionary bonus from the Make It Proper fund.
Why do we now have a Make It Proper fund?
- We wish to guarantee that hackers are paid pretty for stories offering worth to a program
- We wish to construct belief between HackerOne and the hacking neighborhood.
When can we contemplate Make It Proper?
- We tousled!
- A miscommunication with a program staff has occurred, or a program comes to a decision opposite to business requirements. Make It Proper is taken into account if we now have unsuccessfully engaged a program with bug bounty greatest practices.
So how does it work?
- Members of HackerOne submit suggestions for Make It Proper consideration
- We full in depth backend critiques of the account and any related stories by stakeholders throughout the HackerOne group
- Every week a committee comprised of assorted departmental stakeholders meets to debate any candidates for Make It Proper bonuses
- We vote on eligible candidates
- If accepted, the Make It Proper bonus strikes to our Finance staff.
- Mediation informs the recipient of the Make It Proper fund award 🎉
We wish to decide to transparency relating to our processes for contemplating Make It Proper instances, each internally and externally, which we hope we now have allowed for on this weblog submit. Each case thought-about for Make It Proper is a chance for us to study and enhance our providers as a platform, whether or not that’s updates to documentation, program training, or different initiatives.
The underside line is we’re all right here for comparable causes – to make the web a safer place, but in addition to make it rain bounties! Be happy to request mediation for those who really feel your report qualifies (Extra on tips on how to request Mediation here).
We’re right here and EAGER to assist.
Author: HackerOne
Date: 2022-10-21 09:00:40
