Singapore s Government Technology Agency (GovTech) has launched a new vulnerability disclosure program on HackerOne so researchers can disclose vulnerabilities in government sites. The program allows researchers to examine internet-accessible government sites and applications for vulnerabilities and disclose them to the agency. Unlike many popular bounty programs, researchers will not be rewarded with cash bounties for disclosing vulnerabilities. This decision may lead researchers to stay away from this program compared to using others that they can earn a living. Unlike the new bounty challenge for Singapore’s Ministry of Defense over the weekend that does offer cash rewards for discovered vulnerabilities.
Source: https://www.bleepingcomputer.com/news/security/singapores-govtech-launches-vulnerability-disclosure-program/