Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

hemi

BugcrowdView on Bugcrowd
RawAI Enhanced
18
In Scope
2
Out of Scope
In-Scope Assets (18)
AssetCategoryBountyQuick Links
*.hemi.networkURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
*.hemi.xyzURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
Third Party Provider VulnerabilityOTHERNo-
https://app.hemi.xyz/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://bitcoin-kit.hemi.xyz/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://explorer.hemi.xyz/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://github.com/hemilabsOTHERNo-
https://github.com/hemilabs/heminetworkOTHERNo-
https://github.com/hemilabs/op-gethOTHERNo-
https://github.com/hemilabs/optimismOTHERNo-
https://github.com/hemilabs/ui-monorepoOTHERNo-
https://hemi.xyz/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://rpc.hemi.network/noderpcURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://rpc.hemi.network/rpcURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://rpc.hemi.network/wsrpcURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://testnet.rpc.hemi.network/noderpcURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://testnet.rpc.hemi.network/rpcURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
https://testnet.rpc.hemi.network/wsrpcURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotalAlienVault OTXGitHubFofa
Out-of-Scope Assets (2)
AssetCategoryBounty
Any Atlassian Product/ServiceOTHERNo
https://news.hemi.xyz/URLNo
Scope Changes (100)
Mar 5, 2026
ChangeAssetCategoryScopeTime
Addedhttps://github.com/hemilabs/op-gethURLIn Scope22:36
Addedhttps://rpc.hemi.network/rpcURLIn Scope22:36
Addedhttps://rpc.hemi.network/wsrpcURLIn Scope22:36
Addedhttps://rpc.hemi.network/noderpcURLIn Scope22:36
Addedhttps://testnet.rpc.hemi.network/rpcURLIn Scope22:36
Addedhttps://testnet.rpc.hemi.network/wsrpcURLIn Scope22:36
Addedhttps://testnet.rpc.hemi.network/noderpcURLIn Scope22:36
Addedhttps://app.hemi.xyz/URLIn Scope22:36
Addedhttps://explorer.hemi.xyz/URLIn Scope22:36
Addedhttps://bitcoin-kit.hemi.xyz/URLIn Scope22:36
Addedhttps://hemi.xyz/URLIn Scope22:36
Addedhttps://github.com/hemilabs/heminetworkOTHERIn Scope22:36
Addedhttps://github.com/hemilabs/ui-monorepoOTHERIn Scope22:36
Addedhttps://github.com/hemilabs/optimismOTHERIn Scope22:36
Addedhttps://github.com/hemilabs/op-gethOTHERIn Scope22:36
Addedhttps://github.com/hemilabsOTHERIn Scope22:36
Added*.hemi.xyzURLIn Scope22:36
Added*.hemi.networkURLIn Scope22:36
Addedthird party provider vulnerabilityOTHERIn Scope22:36
Addedhttps://news.hemi.xyz/URLOut of Scope22:36
Addedany atlassian product/serviceOTHEROut of Scope22:36
Addedhttps://rpc.hemi.network/rpcURLIn Scope22:36
Addedhttps://testnet.rpc.hemi.network/noderpcURLIn Scope22:36
Addedhttps://app.hemi.xyz/URLIn Scope22:36
Addedhttps://news.hemi.xyz/URLOut of Scope22:36
Addedhttps://testnet.rpc.hemi.network/wsrpcURLIn Scope22:36
Addedhttps://bitcoin-kit.hemi.xyz/URLIn Scope22:36
Addedhttps://hemi.xyz/URLIn Scope22:36
Addedhttps://github.com/hemilabs/ui-monorepoURLIn Scope22:36
Addedhttps://github.com/hemilabs/optimismURLIn Scope22:36
Added*.hemi.xyzWILDCARDIn Scope22:36
Addedany atlassian product/serviceOTHEROut of Scope22:36
Addedhttps://rpc.hemi.network/noderpcURLIn Scope22:36
Addedhttps://explorer.hemi.xyz/URLIn Scope22:36
Addedhttps://github.com/hemilabs/heminetworkURLIn Scope22:36
Addedhttps://github.com/hemilabsURLIn Scope22:36
Added*.hemi.networkWILDCARDIn Scope22:36
Addedthird party provider vulnerabilityOTHERIn Scope22:36
Addedhttps://rpc.hemi.network/wsrpcURLIn Scope22:36
Addedhttps://testnet.rpc.hemi.network/rpcURLIn Scope22:36
Feb 25, 2026
ChangeAssetCategoryScopeTime
Addedhttps://testnet.rpc.hemi.network/noderpcURLIn Scope19:18
Addedhttps://hemi.xyz/URLIn Scope19:18
Added*.hemi.xyzWILDCARDIn Scope19:18
Addedthird party provider vulnerabilityOTHERIn Scope19:18
Addedhttps://github.com/hemilabs/optimismURLIn Scope19:18
Addedhttps://app.hemi.xyz/URLIn Scope19:18
Addedhttps://bitcoin-kit.hemi.xyz/URLIn Scope19:18
Addedhttps://github.com/hemilabs/ui-monorepoURLIn Scope19:18
Addedhttps://github.com/hemilabsURLIn Scope19:18
Addedhttps://news.hemi.xyz/URLOut of Scope19:18
Addedhttps://github.com/hemilabs/op-gethURLIn Scope19:18
Addedhttps://rpc.hemi.network/wsrpcURLIn Scope19:18
Addedhttps://rpc.hemi.network/noderpcURLIn Scope19:18
Addedhttps://testnet.rpc.hemi.network/rpcURLIn Scope19:18
Addedhttps://explorer.hemi.xyz/URLIn Scope19:18
Addedhttps://github.com/hemilabs/heminetworkURLIn Scope19:18
Added*.hemi.networkWILDCARDIn Scope19:18
Addedany atlassian product/serviceOTHEROut of Scope19:18
Addedhttps://rpc.hemi.network/rpcURLIn Scope19:18
Addedhttps://testnet.rpc.hemi.network/wsrpcURLIn Scope19:18
Addedhttps://rpc.hemi.network/rpcURLIn Scope17:17
Addedhttps://rpc.hemi.network/wsrpcURLIn Scope17:17
Addedhttps://rpc.hemi.network/noderpcURLIn Scope17:17
Addedhttps://testnet.rpc.hemi.network/rpcURLIn Scope17:17
Addedhttps://testnet.rpc.hemi.network/wsrpcURLIn Scope17:17
Addedhttps://testnet.rpc.hemi.network/noderpcURLIn Scope17:17
Addedhttps://app.hemi.xyz/URLIn Scope17:17
Addedhttps://explorer.hemi.xyz/URLIn Scope17:17
Addedhttps://bitcoin-kit.hemi.xyz/URLIn Scope17:17
Addedhttps://hemi.xyz/URLIn Scope17:17
Addedhttps://github.com/hemilabs/heminetworkOTHERIn Scope17:17
Addedhttps://github.com/hemilabs/ui-monorepoOTHERIn Scope17:17
Addedhttps://github.com/hemilabs/optimismOTHERIn Scope17:17
Addedhttps://github.com/hemilabs/op-gethOTHERIn Scope17:17
Addedhttps://github.com/hemilabsOTHERIn Scope17:17
Added*.hemi.xyzURLIn Scope17:17
Added*.hemi.networkURLIn Scope17:17
Addedthird party provider vulnerabilityOTHERIn Scope17:17
Addedhttps://news.hemi.xyz/URLOut of Scope17:17
Addedany atlassian product/serviceOTHEROut of Scope17:17
Addedhttps://rpc.hemi.network/wsrpcURLIn Scope17:17
Addedhttps://testnet.rpc.hemi.network/rpcURLIn Scope17:17
Addedhttps://testnet.rpc.hemi.network/wsrpcURLIn Scope17:17
Addedhttps://bitcoin-kit.hemi.xyz/URLIn Scope17:17
Added*.hemi.xyzWILDCARDIn Scope17:17
Addedthird party provider vulnerabilityOTHERIn Scope17:17
Addedany atlassian product/serviceOTHEROut of Scope17:17
Addedhttps://hemi.xyz/URLIn Scope17:17
Addedhttps://github.com/hemilabs/op-gethURLIn Scope17:17
Added*.hemi.networkWILDCARDIn Scope17:17
Addedhttps://github.com/hemilabs/optimismURLIn Scope17:17
Addedhttps://testnet.rpc.hemi.network/noderpcURLIn Scope17:17
Addedhttps://app.hemi.xyz/URLIn Scope17:17
Addedhttps://explorer.hemi.xyz/URLIn Scope17:17
Addedhttps://github.com/hemilabs/heminetworkURLIn Scope17:17
Addedhttps://news.hemi.xyz/URLOut of Scope17:17
Addedhttps://rpc.hemi.network/rpcURLIn Scope17:17
Addedhttps://rpc.hemi.network/noderpcURLIn Scope17:17
Addedhttps://github.com/hemilabs/ui-monorepoURLIn Scope17:17
Addedhttps://github.com/hemilabsURLIn Scope17:17