TechFlow — friend.tech has launched a bug bounty program, with rewards distributed based on the severity of the disclosed vulnerability and the assets at risk, offering up to 1 million USDC in rewards. Risks are categorized into four levels:
Critical: Issues that could affect numerous users and have severe reputational, legal, or financial impacts—for example, permanently locking funds in a contract or enabling withdrawals from all user accounts;
High: Issues affecting individual users that, if exploited, could pose moderate reputational, legal, or financial risks;
Medium: Issues presenting relatively low risk that do not threaten user funds;
Low/Informational: Issues that do not pose an immediate threat but relate to security best practices.
Any discovered vulnerabilities or bugs must be reported exclusively to the following email address: [email protected]. friend.tech will acknowledge receipt within one business day.




