This is probably obvious now in retrospect, but I suggest we put out a bounty for disclosing inflation bugs through Grin’s security disclosure process.
For full disclosure, I don’t have an inflation bug ready to report. You have nothing but my word on this. This is merely due to the recent events which should encourage such bounties. However, I might try to find inflation and pick the prize.
- Find an inflation bug in Grin node (either grin++ or rust node)
- Describe steps needed to pull off the inflation bug
- Go through Responsible Disclosure Standard
- Claim the reward
If two people find the bug independently, the person finding it first claims the reward.
My suggestion is we start off with $200k reward and possibly increase it over time. The reasoning behind this is that if there are obvious inflation bugs, we’ll spot them early and if needed do a relaunch (god please no) with more funds available. Let me know if this makes sense to you.