Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
lime
20
In Scope
6
Out of Scope
In-Scope Assets (20)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| Data.lime.bike | URL | No | ||
| admintool.lime.bike | URL | No | ||
| external-api.lime.bike | URL | No | ||
| help.lime.bike | URL | No | ||
| https://admintool.lime.bike | URL | No | ||
| https://apps.apple.com/ca/app/lime-ridegreen/id1199780189 | IOS | No | - | |
| https://apps.apple.com/ca/app/lime-supply/id1620058457 | IOS | No | - | |
| https://data.limeinternal.com | URL | No | ||
| https://gpt.lime.bike | URL | No | ||
| https://lp.lime.bike/ | URL | No | ||
| https://orchard.limeinternal.com | URL | No | ||
| https://play.google.com/store/apps/details?id=com.lime.supply&hl=en_US | ANDROID | No | ||
| https://play.google.com/store/apps/details?id=com.limebike | ANDROID | No | ||
| https://www.li.me/ | URL | No | ||
| juicer.lime.bike | URL | No | ||
| ops.lime.bike | URL | No | ||
| proxy-production.lime.bike | URL | No | ||
| web-message-high.lime.bike | URL | No | ||
| web-message.lime.bike | URL | No | ||
| web-production.lime.bike | URL | No |
Out-of-Scope Assets (6)
| Asset | Category | Bounty | |
|---|---|---|---|
| *.airflow.limeinternal.com (legacy domain) | URL | No | |
| *.lime.bike | URL | No | |
| *.limeinternal.com | URL | No | |
| community.li.me (bevy) | URL | No | |
| https://help.li.me (Zendesk) | URL | No | |
| https://li.me (HubSpot) | URL | No |