DEV Community

Toufik Airane for Doctolib Engineering

Posted on • Updated on

Announcing the launch of Doctolib’s public Bug Bounty Program

After years of invitation-only activity, we are excited to launch our public Bug Bounty Program in partnership with YesWeHack

We are excited to launch our public Bug Bounty Program in partnership with YesWeHack

We believe that maintaining a visible crowdsourced security program helps us to build a sound cybersecurity posture, that’s why today we broaden our call to the global community of bug bounty hunters and security researchers.

As a matter of fact, we offer higher rewards and exclusive challenges to our community such as bounty rewards up to 20,000 EUR for critical issues, exclusive in-scope features, and hardware devices, invitation to live hacking events in France, and dedicated communication channels.

This decade will be marked by the growing importance of healthcare software and health data hosting. Therefore, we rely on a talented and creative workforce to report security weaknesses and vulnerabilities in our applications.

These efforts will benefit the product and engineering teams to deliver secure products and all of the findings serve to push our secure development workflow to be more resilient, scalable, and consistent over security reviews, hardening, and detection.

On our side, Doctolib’s application cybersecurity team is engaged to warmly welcome any security researcher within a safe harbor policy and offer the best triage experience in terms of response time, respect and expectation.

Explore our bug bounty program on YesWeHack

To know more about our bug bounty program, explore our policy on Doctolib and join the bug bounty program on YesWeHack.

And if you have any feedback, questions, or concerns, feel free to reach us at


Doctolib's Cybersecurity team

Top comments (0)

🌚 Browsing with dark mode makes you a better developer.

It's a scientific fact.