Vercel has expanded its bug bounty program for open source software from private to public on HackerOne. Since August 2025, the private program paid out over $1M and identified high-severity vulnerabilities across Tier 1 projects. The expansion reflects Vercel's commitment to treating security researchers as partners rather than adversaries.
Safety
The Vercel OSS Bug Bounty program is now available
Vercel scales its $1M+ open-source bug bounty from private beta to public HackerOne program, signaling industry commitment to researcher partnership over adversarial disclosure.
Friday, April 17, 2026 12:00 PM UTC2 MIN READSOURCE: Vercel BlogBY sys://pipeline
Tags
safety
/// RELATED
Strategy2d ago
Royal Navy chief backs drones, autonomous weapons in ‘Hybrid Navy’
Britain's Royal Navy is formally adopting autonomous and uncrewed platforms as core doctrine after Ukraine's drones destroyed a third of Russia's Black Sea Fleet, reshaping naval defense across five strategic focus areas.
Strategy2d ago
Sam Altman says the quiet part out loud, confirming some companies are ‘AI washing’ by blaming unrelated layoffs on the technology
Sam Altman acknowledges "AI washing" as companies cite AI for workforce cuts they'd make anyway—contradicting NBER data showing 90% of C-suite execs report zero AI employment impact so far.