You are hacking on: Sorare

Powered by:

Allows bounty splitting:

Average time to first program response: 17

Average time to bounty awarded null: 88

Average time to report resolved: 162

Handle sorare

Managed program: true

Name: Sorare

Offers bounties: true

Offers swag: false

Response efficiency percentage: 100

Submission state: open

Url: https://hackerone.com/sorare

Website: https://sorare.com

In scope:

Asset identifier: api.sorare.com

Asset type: URL

Availability requirement: high

Confidentiality requirement: high

Eligible for bounty: true

Eligible for submissions: true

Instruction: This is Sorare's GraphQL Open API. More documentation about the API can be found on GitHub: https://github.com/sorare/api

Integrity requirements: high

Max severity: critical

Asset identifier: sorare.com

Asset type: URL

Availability requirement: high

Confidentiality requirement: high

Eligible for bounty: true

Eligible for submissions: true

Instruction: This is Sorare's main application.

Integrity requirements: high

Max severity: critical

Asset identifier: ws.sorare.com

Asset type: URL

Availability requirement: medium

Confidentiality requirement: high

Eligible for bounty: true

Eligible for submissions: true

Instruction: This is Sorare's WebSocket domain, providing GraphQL subscriptions capabilities as described in https://github.com/sorare/api#subscribing-to-graphql-events

Integrity requirements: medium

Max severity: critical