Comment by bflesch
6 months ago
there is a reputation system already. according to hackerone reputation system, it is a credible reporter. it's really bad
6 months ago
there is a reputation system already. according to hackerone reputation system, it is a credible reporter. it's really bad
The vast majority of developers are 10-100x more likely to find a security hole in a random tool than spend time improving their reputation on a bug bounty site that pays < 10% their salary.
That makes it extremely hard to build a reputation system for a site like that. Almost all the accounts are going to be spam, and the highest quality accounts are going to freshly created and take ~ 1 action on the platform.