Judging criteria

This page has moved: see Judging criteria.

Submission review process

See Submission review process

Duplicate submissions

See Duplicate submissions

Similar exploits under a single issue

See Similar exploits under a single issue

Penalty / award standardization: duplicate submission PoC thoroughness

See Standards for full/partial credit duplicates

Findings published in prior audit reports

See Findings published in prior audit reports

Scope

See Scope

Scoring

See Quality

QA reports (Low risk and Governance/Centralization risk)

See QA reports (Low risk and Governance/Centralization risk)

Acceptance of submissions based on automated findings

See Automated findings considered known issues