Google to pay Rs 25 lakh to spot bugs in its open source projects

New Delhi, Aug 31 (IANS) Google has launched a brand new bug bounty programme the place it’s going to award up to $31,337 (practically Rs 25 lakh) to researchers who spot vulnerabilities in the corporate’s Open Source projects.

Depending on the severity of the vulnerability and the undertaking’s significance, rewards will vary from $100 to $31,337.

The bigger quantities will even go to uncommon or significantly fascinating vulnerabilities, “so creativity is inspired,” stated Google whereas launching its Open Source Software Vulnerability (*25*) Programme (OSS VRP).

As the maintainer of main projects comparable to Golang, Angular, and Fuchsia, Google is among the many largest contributors and customers of open source in the world.

Last yr, Google noticed a 650 per cent year-over-year enhance in assaults concentrating on the open source provide chain.

With the addition of Google’s personal vulnerability reward programme (VRP), researchers can now be rewarded for locating bugs that might probably influence the whole open source ecosystem.

The authentic VRP programme was one of many first in the world and is now approaching its twelfth anniversary.

“Over time, our VRP lineup has expanded to embrace programmes targeted on Chrome, Android, and different areas. Collectively, these applications have rewarded greater than 13,000 submissions, totalling over $38 million paid,” Google stated in a press release late on Tuesday.

Google stated its OSS VRP is a part of “our $10 billion dedication to enhancing cybersecurity, together with securing the availability chain in opposition to most of these assaults for each Google’s customers and open source shoppers worldwide”.

(Except for the headline, the remainder of this IANS article is un-edited)

For extra technology news, product reviews, sci-tech options and updates, preserve studying Digit.in