Overview

• Training and education are live now through the XRPL Attackathon Academy, with active testing scheduled for Oct. 27–Nov. 29.
• The full $200,000 bounty is released if at least one valid vulnerability is found, with a $30,000 fallback pool if none are discovered.
• Participants will review more than 35,000 lines of C++ code, file responsible disclosures, and can earn rewards, including RLUSD payouts.
• Target areas include liquidation logic, interest accrual errors that misallocate rewards, and administrative vectors that could alter protocol records.
• The XRPL Lending Protocol aims to add native pooled lending and fixed-term, uncollateralized loans without smart contracts or wrapped assets, pending network governance.