Chromium will be rewarding interesting and original vulnerabilities reported to us by the security research community. The more people involved in scrutinizing Chromium’s code and behavior, the more secure our millions of users will be. As a consumer of the Chromium open source project, Google will be sponsoring the rewards. Any security bug may be considered, but any clever vulnerability at any severity might get a reward. Bugs will be ineligible if they are part of the base operating system as opposed to part of Chromium source tree.”]
Source: https://blog.chromium.org/2010/01/encouraging-more-chromium-security.html