defirisk.co
rubric v1.7.0

Bug bounty presence & max payout

Circle USYC's assessment for RD-F-007 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No active bug bounty program. Data cache confirms bug_bounty.platform null and url null. No Immunefi listing found for USYC (immunefi_slug null). No HackerOne, Cantina, or Sherlock program identified. Circle general security contact (security@circle.com) is not a structured bug bounty program.

Sources #

  • Internal
    circle-usyc data cache00-data-cache.json sources.bug_bounty: {platform: null, max_payout_usd: null, contracts_in_scope: []}retrieved 2026-05-15
  • URL
    Immunefi Bug Bounty PlatformImmunefi — no USYC or Hashnote bug bounty program foundretrieved 2026-05-16

Methodology #

Check whether a public bug bounty program is active for this protocol and record the maximum payout in USD.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol circle-usyc factor RD-F-007 score red collected_at 2026-05-15 21:56:43