Google Patch Reward Program started off in 2013 with an aim to assist open-source projects for internet-wide security. The projects qualifying for the program used to receive rewards after successful completion.
However, Google has now decided to support such projects with upfront financial help. The tech giant believes that this will help the developers prioritize security, especially startups.
If you are a small open source project and you want to improve security, but don’t have the necessary resources, this new reward can help you acquire additional development capacity.The new reward offers support at two levels.
Under this program, Google will select a project from the nominations filed via the Project Nomination Form. The designated panel will make monthly selections and will directly collaborate with the chosen project maintainers.
Regarding the selection criteria, Google explained,
When selecting projects, the panel will put an emphasis on projects that either are vital to the health of the Internet or are end-user projects with a large user base.In return, Google simply expects a pointer to acknowledge their support to assess the success of the program.
Recently, Google also announced an expansion to its Android bug bounty program to include Titan M. It subsequently raised the reward cap to $1.5 million.
