What are the drawbacks of this proposal?
Perhaps some of the failure modes of traditional bug bounty programs:
Underpaying bugfinders (“gig economy-ification”, versus hiring someone into a consulting firm)
Liability avoidance by firms
Deeper, more serious bugs/malicious prompts are overlooked
What are the drawbacks of this proposal?
Perhaps some of the failure modes of traditional bug bounty programs:
Underpaying bugfinders (“gig economy-ification”, versus hiring someone into a consulting firm)
Liability avoidance by firms
Deeper, more serious bugs/malicious prompts are overlooked