As per Grin’s security process, there is no bug bounty program currently established.
The Grin Council has nevertheless decided to award David Burkett & Grin++ with a $250,000 bug bounty in recognition of their efforts in relation to the recent critical vulnerability that was patched in MW/Grin versions 5.0.2 and greater.
Please join myself and the other members of the Grin Council in congratulating @David and the Grin++ project for this well deserved bounty!