# Bug Bounty

**In Season 4,** 5% of the Crowns spent will be allocated to rewarding players who report Critical Bugs. These bugs must be reproducible and pose a significant threat to the game’s integrity or fair play.

#### **What Qualifies as a Critical Bug?**

Critical Bugs include, but are not limited to:

* **Game Systems Exploits** - Bugs that allow for unfair manipulation of game system(s) that influence the final score of the run
* **Crown Exploits** – Any exploit that allows a player to obtain or duplicate Crowns other than intended by the store mechanics.
* **Security Vulnerabilities** – Any method that significantly compromises game, player, or infrastructure security - account hijacking, database hacks, data manipulation, etc.
* **Contract Vulnerabilities** – Exploits or security flaws in smart contracts that could result in unauthorized transactions or loss of assets.
* **Leaderboard or Reward Exploits** – Bugs that allow unfair manipulation of leaderboards or rewards.

#### **Rewards**

* The reward amount will depend on the severity and impact of the bug.
* Reports must include detailed reproduction steps and evidence.
* Rewards will be distributed after verification and patching of the bug.
* Only the first reporter of a unique Critical Bug will be eligible for a bounty.

#### **How to Report a Critical Bug**

To submit a report, create a ticket in our [Discord](https://discord.com/invite/tollan-universe) with the following details:

* Your AGW (Abstract Global Wallet)
* A clear description of the bug
* Steps to reproduce the bug
* Any relevant screenshots or video evidence

#### **Disclaimers**

* Reporting a bug does not guarantee a reward.
* Exploiting the bug before reporting will void eligibility.
* Sharing or selling the exploit instead of reporting it will result in a permanent ban and ineligibility for rewards, both from the game prize pool and from the Bug Bounty Program.
* The development team reserves the right to determine the reward amount based on severity and impact.