Welcome to the Dojo

Your collection of community resources for finding and fixing vulnerabilities in open source software.

Open Source Bug Bounty 101

Watch community content on finding and fixing open source vulnerabilities.

Join our Discord

Become friends with the security wizards of our community in our official Discord server.


Sift through previously approved advisories and disclosures in open source software.

Policy & scope

Read through our program scope and policy on disclosing vulnerabilities in 28M+ projects.


Read blog and guest blog articles about our progress in securing open source software.


Meet the pioneers of open source security and how they rank on our community leaderboard.

OWASP Code Review Guide 2.0

Download and read through the best practices in secure code review and open source security.

Hacking Toolbox

Must-have open source tools and utilities for hacking and open source security.

Schedule a 1-to-1

Book a 1-to-1 call with a member of our team and we will be happy to help.