Govt will pay you up to Rs 4 lakh for your suggestions to improve Aarogya Setu app; details inside

The bug bounty program is open for anybody and everybody, including researchers and Aarogya Setu users, until June 26, 2020.

by

The Government will pay you up to Rs 4 lakh in cash for finding bugs in Aarogya Setu or suggest improvements to make India’s indigenous COVID-19 tracking app even better as part of its bug bounty program. The bug bounty program is open for anybody and everybody, including researchers and Aarogya Setu users, until June 26, 2020.

“Everyone, including researchers and users of Aarogya Setu, are encouraged to report any vulnerability impacting the privacy and information security posture of Aarogya Setu application,” the Government notes in the program’s terms and conditions.

Researchers and cybersecurity experts (as well as anybody with the technical know-how) can now audit the Aarogya Setu app at their full discretion, because the Government of India has put up the entire source code of the Aarogya Setu app for Android on GitHub, or in simple words, it has made Aarogya Setu app open source. Source code for iOS and KaiOS (for JioPhone) as well as server side of things will also be available for all in the coming days, in a big win for privacy advocates.