Process overview
ℹ️You will find all your new reports in the Vulnerability Center.
Here’s the usual workflow for a new report:
Set its status to “Under Review” to assess the vulnerability and its CVSS.
If needed, change the status to “Need More Information” to ask the Hunter more details.
Then change the CVSS if relevant.
Move the report to “Accepted” as soon as you evaluated the vulnerability and know a patch must be deployed.
Pay the reward shortly after accepting the report.
“Ask for fix” once the patch has been deployed.
Set the status as “Resolved” when the fix has been confirmed by the Hunter.
ℹ️Learn more about the different report statuses with this article.
Change a report’s status
Click on “Actions”
Select “Change Status” tab
Choose the “Status” you would like to set your report to
Write a comment or select one comment from our collection of templates (optional)
Click on “Change Status”
Change the CVSS
Click on “Edit” (icon)
From the “CVSS Computing” window, change the criteria of your choice
Give an “explanation [to] hunter” and the reason why a criteria has changed. Even though this is optional, it’s a best practice to let your Hunters know why a dimension has changed
Click on “Save”
Set a reward
⚠️ The report has to be set as “accepted” to pay a reward.
Click on “Actions”
Select “Set Reward” tab
Choose the “Reward Amount”
Enter your “password”
Put “Reward Allocation Tags” or write a “comment” (optional)
Click on “Set Reward”