Lime

We have exciting news for Lime!

There have been updates within the Program brief, Scope categories, target details, and terms as of September 18, 2023. This update brings about the following changes:

• Updated program brief: This gives details on how the program works within Lime, our customer profiles that we care about, eligibility criteria in our program, SLA that we adhere to internally in Lime for the vulnerabilities triaged by Bugcrowd
• Updated Ratings/Rewards section to provide clarity into how we rate risks internally at Lime and what we care about.
• In-Scope divided into Public and Private categories
• Added target details to help researchers understand the technical stack used to build the application, the target audience of the application, and internal endpoints that relate to applications
• Updated tags associated with individual endpoint to reflect the technology used for the specific endpoint
• Updated Rewards to reflect updated scope
• Updated Focus area section to tell researchers what we care about
• Updated Out-of-scope targets and vulnerabilities
• Added Terms section which includes responsible disclosure requirements and rules of engagement

Lime program brief

All these updates are done to be more explicit in our requirements and present an opportunity for researchers to understand Lime's applications better in order to increase the impact of their submissions. We will continuously take feedback from Bugcrowd to iteratively improve our program brief and scope.

As always, please be sure to review the program brief in detail, and if you have any questions, please reach out support@bugcrowd.com.

Happy Hunting!