Bug bounties provide insights to the various Web3 near-misses. The intuition is that near-misses may serve as a predictor for the security posture and practices of the project. Bug bounties are aggregated from public reporting from whitehats and those reported through various bug bounty programs such as Immunefi and HackerOne.