From: Daniel Stenberg <daniel@haxx.se>
Date: Wed, 28 May 2025 06:29:40 +0000 (+0200)
Subject: BUG-BOUNTY.md. mention the medium bounty amount in 2025
X-Git-Tag: curl-8_14_1~47
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=6eea7219a5eeb443f3cdd6805e5cd8c3929decb4;p=thirdparty%2Fcurl.git

BUG-BOUNTY.md. mention the medium bounty amount in 2025

Closes #17470
---

diff --git a/docs/BUG-BOUNTY.md b/docs/BUG-BOUNTY.md
index 399c4cfe1e..6933c61b34 100644
--- a/docs/BUG-BOUNTY.md
+++ b/docs/BUG-BOUNTY.md
@@ -31,8 +31,7 @@ Bounty and they set the reward amounts. If it would turn out that they set
 amounts that are way lower than we can accept, the curl project intends to
 "top up" rewards.
 
-In 2022, typical "Medium" rated vulnerabilities have been rewarded 2,400 USD
-each.
+In 2025, typical "Medium" rated vulnerabilities are rewarded 2,500 USD each.
 
 ## Who is eligible for a reward?