This program now allows coordinated disclosures. Before disclosing an issue publicly we require that you first request permission from us. Zilliqa will process requests for public disclosure on a per report basis.
Requests to publicly disclose an issue that has not yet been fixed for customers will be rejected. Any researcher found publicly disclosing reported vulnerabilities without Zilliqa's written consent will have any allocated bounty withdrawn and disqualified from the program.
If you have any questions, please reach out to email@example.com.
Good luck and happy hunting!