The official wallet of Supra.

Supra L1: Vertical Integration
Vertically integrating oracles, verifiable randomness, automation, bridges, and multiple VMs into one powerful blockchain.
IntraLayer
Extending Supra’s vertical integrations with DeFi protocols to create a unified digital finance ecosystem.
Supra Containers
Reserve customizable blockspace dedicated for your dApp to build appchain like experiences on Supra’s Layer 1.
Proof of Efficient Liquidity
Bootstrapping capital for Supra’s new Layer 1 chain by maximizing the utility of every unit of asset attracted.
Supra Oracles
Get accurate data feeds delivered on-chain with sub-second freshness, from crypto price pairs to RWA feeds.
Dynamic Function Market Maker
The next evolution of the AMM model, with intricate designs applying native oracle data and cross-chain communication.
Supra dVRF
Generate tamper-proof randomness with on-chain verifiability for fairer, more secure dApps and on-chain experiences.
StarKey Wallet
The go-to self custodial wallet to simplify and secure your onchain adventures.
THE OFFICIAL WALLET OF SUPRA
Data Dashboard
Explore our live data feeds and see our 3-5 second finality for yourself.
SupraScan Block Explorer
Mainnet
Track transactions, monitor network activity, and explore Supra Layer 1.
Dev Center
Start building with our growing cross-chain stack. Each product is a breakthrough on its own, and even better when stacked together.
Dev Docs
Explore detailed technical documentation and guides for builders to integrate Supra services into Smart contracts.
Bug Bounty
Supra L1 Ecosystem
Explore the growing dApps and builders on Supra L1.
Partnerships
We’re getting bigger every day, with every partnership and integration. Join us.
Super dApp Showdown
Join the competition to get funding, launch with half a million users, and make your place in the Supra ecosystem.
The DeFi Revolution
Explore the future of DeFi with stronger MEV resistance and AutoFi; native automation-enabled DeFi systems.
ApeChain Powered by Supra
Explore the services and integrations we’re bringing to the ApeChain ecosystem.
Research
Read about the inner workings of Supra products and the research behind them.
Whitepapers
Media
Publication Library
$SUPRA Tokenomics and Utility
Learn about Supra’s unified utility token for the MultiVM Layer 1 ecosystem of Supra.
Use Cases
The resource hub for all the alpha and info about SupraTech.
Academy
Explore interesting educational articles about everything blockchain and Web3.
News
Countdown to Blast Off
Join our community airdrop campaign to learn more about us and earn $SUPRA airdrops.
Supra Spartans
Join our ambassador army to take on exclusive bounties and earn rewards.
Events
Team
Get to know the people driving research, development, and growth at Supra.
Research Team
Meet the team leading Supra’s research and development breakthroughs.
Contact Us
Careers

Русский язык

Bug Bounty Program

Supra is building the world’s most secure and robust blockchain ecosystem, and this bug bounty program invites you to join us on this journey. You aren’t just finding vulnerabilities here, you're shaping the future of the decentralized world.

In Scope

Targets

Supra Blockchain Core, Consensus Protocol, Oracles, Smart Contracts, APIs, Developer Tools, Infrastructure, Website Applications.

Types

Code vulnerabilities, security loopholes, protocol flaws, including loss of funds, consensus failures, network halts, and more.

Severity & Rewards

Critical

Up to $1,000,000

(e.g., loss of funds, consensus failures)

High

Up to $100,000

(e.g., network availability issues)

Medium

Up to $25,000

(e.g., API crashes)

Low

Up to $5,000

(e.g., minor bugs)

Submission Guidelines

Eligibility

Must be the first reporter, within scope, and report within 24 hours of discovery.

Details

Testing Environment

Program Rules

Confidentiality

Do not disclose vulnerabilities publicly without Supra's consent.

Eligibility Criteria

Report within 24 hours of discovery.
Properly documented submission.
Must not be a known vulnerability.
Must be the first reporter.
Must be within scope.
Not a current or former Supra employee within the last 12 months.
Make every effort to avoid privacy violations and disruption of services.
KYC required for rewards.

Response Times

First Response: 7d

Triage Time: 14d

Resolution Time: 30d

Reward Time: 90d

Payouts

Rewards will be paid in digital assets determined by the team. Payouts for experimental features or incomplete reports may be reduced.

Responsible Disclosure: Supra adheres to Category 3 for Responsible Publication. All vulnerabilities must remain confidential until resolved.

Invalid Bug Reports

Self-exploited attacks.
Governance/admin privilege attacks.
Social Engineering attacks
Attacks requiring leaked credentials.
Oracle manipulation flash loan attacks and more.
Denial of Service attacks

The following are for reference only and do not cover all invalid bug reports

Privacy • Terms of Use • Website Data Usage & Cookies • Bug Disclosure • Biometric Information Privacy Policy

©2025 Supra | Entropy Foundation (Switzerland: CHE.383.364.961). All Rights Reserved