openpgp-js-bug-bounty-program

YesWeHackView on YesWeHack
RawAI Enhanced
3
In Scope
3
Out of Scope
In-Scope Assets (3)
AssetCategoryBountyQuick Links
Interoperability Issue in OpenPGP.jsOPEN-SOURCEYes-
Security Vulnerability in OpenPGP.js's high-level APIOPEN-SOURCEYes-
Security Vulnerability in the OpenPGP StandardOPEN-SOURCEYes-
Out-of-Scope Assets (3)
AssetCategoryBounty
Interoperability Issues that are caused by other OpenPGP implementations' non-compliance with the OpenPGP StandardOTHERYes
Security Vulnerabilities in the OpenPGP Standard that are not possible to fix or work around in OpenPGP.js (without causing interoperability issues)OTHERYes
Security Vulnerabilities that can only be caused by using OpenPGP.js's low-level API, or by using OpenPGP.js's high-level API in an incorrect or unintended wayOTHERYes
Scope Changes (21)
Feb 25, 2026
ChangeAssetCategoryScopeTime
Addedsecurity vulnerability in the openpgp standardOTHERIn Scope19:09
Addedinteroperability issue in openpgp.jsOTHERIn Scope19:09
Addedsecurity vulnerabilities that can only be caused by using openpgp.js's low-level api, or by using openpgp.js's high-level api in an incorrect or unintended wayOTHEROut of Scope19:09
Addedsecurity vulnerabilities in the openpgp standard that are not possible to fix or work around in openpgp.js (without causing interoperability issues)OTHEROut of Scope19:09
Addedinteroperability issues that are caused by other openpgp implementations' non-compliance with the openpgp standardOTHEROut of Scope19:09
Addedsecurity vulnerability in openpgp.js's high-level apiOTHERIn Scope19:09
Feb 22, 2026
ChangeAssetCategoryScopeTime
Addedinteroperability issue in openpgp.jsOPEN-SOURCEIn Scope00:52
Addedsecurity vulnerabilities that can only be caused by using openpgp.js's low-level api, or by using openpgp.js's high-level api in an incorrect or unintended wayOTHEROut of Scope00:52
Addedsecurity vulnerabilities in the openpgp standard that are not possible to fix or work around in openpgp.js (without causing interoperability issues)OTHEROut of Scope00:52
Addedinteroperability issues that are caused by other openpgp implementations' non-compliance with the openpgp standardOTHEROut of Scope00:52
Addedsecurity vulnerability in openpgp.js's high-level apiOPEN-SOURCEIn Scope00:52
Addedsecurity vulnerability in the openpgp standardOPEN-SOURCEIn Scope00:52
Feb 21, 2026
ChangeAssetCategoryScopeTime
Removedsecurity vulnerability in openpgp.js's high-level apiOPEN-SOURCEIn Scope21:40
Removedsecurity vulnerability in the openpgp standardOPEN-SOURCEIn Scope21:40
Removedinteroperability issue in openpgp.jsOPEN-SOURCEIn Scope21:40
Removedsecurity vulnerabilities that can only be caused by using openpgp.js's low-level api, or by using openpgp.js's high-level api in an incorrect or unintended wayOTHEROut of Scope21:40
Removedsecurity vulnerabilities in the openpgp standard that are not possible to fix or work around in openpgp.js (without causing interoperability issues)OTHEROut of Scope21:40
Removedinteroperability issues that are caused by other openpgp implementations' non-compliance with the openpgp standardOTHEROut of Scope21:40
Addedsecurity vulnerabilities that can only be caused by using openpgp.js's low-level api, or by using openpgp.js's high-level api in an incorrect or unintended wayOTHEROut of Scope00:33
Addedsecurity vulnerabilities in the openpgp standard that are not possible to fix or work around in openpgp.js (without causing interoperability issues)OTHEROut of Scope00:33
Addedinteroperability issues that are caused by other openpgp implementations' non-compliance with the openpgp standardOTHEROut of Scope00:33