The Stellar Development Foundation (SDF) runs a bug bounty program for many of its open source projects, including stellar-core and Horizon.

For more details on the program and how to report a vulnerability, please visit our bug bounty page on our website.