GitHub is offering bounties of up to $5,000 to researchers who find vulnerabilities in the main GitHub Web property or some other applications. Program is similar to ones run by many other companies such as Facebook, Google, PayPal and others, rewarding people who report vulnerabilities directly to the company. GitHub is used by individual developers and groups to share code and manage projects. The company also is offering researchers points for the vulnerabilities that they report, and is maintaining a leader board of bug finders.
Source: https://threatpost.com/github-launches-bug-bounty-program/103974/