An Inside Look at a Bug Bounty Program

Clayton Smith

So what’s it like to run a public bug bounty program? Shopify first launched its program in 2013, and since then we’ve received thousands of submissions and paid hundreds of bounties. In this presentation we’ll give you an inside look into our White Hat program. We’ll share some of the best (and worst) reports we’ve received, and provide advice on setting up your own program.