# Cantina Documentation ## Docs - [About Cantina](https://docs.cantina.xyz/about-cantina/about-cantina.md): Cantina is an AI-native AppSec platform combining advanced AI with world-class human expertise across Web3, Web2, and AI-driven applications. - [Our Security Approach](https://docs.cantina.xyz/about-cantina/our-security-approach.md): Our philosophy and methodology for delivering best-in-class security audits - [Our Team](https://docs.cantina.xyz/about-cantina/our-team.md): Meet the people behind Cantina and learn about our roots in the Spearbit network - [Platform Overview](https://docs.cantina.xyz/about-cantina/platform-overview.md): Cantina is an AI-native security platform working with organizations across finance, SaaS, and enterprise infrastructure — from protocol-level systems to large-scale production environments — to protect the world's most critical code. - [Cantina Coverage Details](https://docs.cantina.xyz/cantina-bug-bounty-coverage/cantina-coverage-details.md): Gain up to $300,000 in bug bounty and exploit coverage by completing a Spearbit/Cantina security review and competition. Protect your launch today. - [Cantina Code for Companies](https://docs.cantina.xyz/cantina-code/cantina-code-for-companies/cantina-code-for-companies.md): Explore the Cantina Code for Companies, designed for seamless collaboration and real-time insights, enhancing communication with security researchers. - [Report Generation](https://docs.cantina.xyz/cantina-code/cantina-code-for-companies/report-generation.md): Explore Cantina Docs for comprehensive insights on services, accounts, competitions, and report generation in the security domain. - [Responding to Findings](https://docs.cantina.xyz/cantina-code/cantina-code-for-companies/responding-to-findings.md): Discover how to effectively respond to findings in Cantina's guides, encouraging collaboration and enhancing vulnerability management practices. - [Responding to Pings](https://docs.cantina.xyz/cantina-code/cantina-code-for-companies/responding-to-pings.md): Discover how to effectively respond to pings from Security Researchers in the Cantina ecosystem, enhancing communication and vulnerability discovery. - [Chat](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/chat.md): Discover Cantina Docs, a comprehensive resource for services, accounts, and code for both security researchers and companies. Explore our offerings today! - [Code Review](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/code-review/code-review.md): Explore Cantina's Code Review documentation featuring intuitive file navigation and visualization tools for security researchers. - [Download content and toggle sidebar](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/code-review/download-content-and-toggle-sidebar.md): Explore the Cantina Docs for comprehensive resources on security reviews, competitions for security researchers and companies. - [Highlighting code](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/code-review/highlighting-code.md): Explore the Cantina Docs to learn how to audit code, manage accounts, and access services like security reviews and competitions for researchers and companies. - [Comments & Pings](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/comments-and-pings.md): Use comments and pings in Cantina Code to collaborate, notify users, and streamline Web3 security audits based on review type and repository settings. - [Diagrams & Formulas](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/diagrams-and-formulas.md): Use Mermaid.js and MathJax in Cantina Code to create diagrams and render formulas, enhancing clarity and efficiency in findings and comments. - [Add code to existing finding](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/findings/add-code-to-existing-finding.md): Explore Cantina Docs for comprehensive information on services, accounts, competitions, and code management for security researchers and companies. - [Finding Submission Examples](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/findings/examples.md): Real examples of good and bad security findings including Proof of Concept (PoC) code for smart contract audits. - [Findings](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/findings/findings.md): Explore the Cantina Docs for insights on security reviews, competitions, and the Cantina Code. Learn how to manage findings effectively in the repository. - [Findings Labels](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/findings/findings-labels.md): Discover user-made tags for findings in the Cantina Code repository. Understand how labels enhance organization and permissions within security reviews. - [Findings Status](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/findings/findings-status.md): Explore the Cantina Docs to understand the findings status in security reviews. Learn the significance of each status and stay updated on security protocols. - [Findings Submission](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/findings/findings-submission.md): Discover the Cantina finding submission process, including severity assessment, detailed descriptions, and insights into effective vulnerability reporting. - [Reports](https://docs.cantina.xyz/cantina-code/cantina-code-for-security-researchers/reports.md): Explore Cantina Docs for resources on Web3 security audits, accounts, competitions, and more. - [Finding Labels](https://docs.cantina.xyz/cantina-competitions/for-security-researchers/finding-labels.md): Find and understand the labels used in security competitions, helping to classify and resolve findings during the judging and escalation process. - [Finding Status](https://docs.cantina.xyz/cantina-competitions/for-security-researchers/finding-status.md): Discover the various finding statuses used in Cantina competitions, including how issues are categorized from submission to resolution. - [Payments](https://docs.cantina.xyz/cantina-competitions/for-security-researchers/payments.md): Explore the Cantina Docs for insights on services, competition guidelines, account management, and payment details to enhance your experience. - [Teams](https://docs.cantina.xyz/cantina-competitions/for-security-researchers/teams.md): Learn how security researchers can form competitive teams in Cantina, ensuring effective collaboration and streamlined payment distribution during events. - [Evaluations and Standards](https://docs.cantina.xyz/evaluations-and-standards/evaluations-and-standards.md): How we ensure fairness, clarity, and consistency - [Judging Responsibilities](https://docs.cantina.xyz/evaluations-and-standards/judging-processes/competition-judging.md): How judges evaluate competition submissions - [Escalation Procedures](https://docs.cantina.xyz/evaluations-and-standards/judging-processes/escalation.md): How to appeal judging decisions - [Judging Processes](https://docs.cantina.xyz/evaluations-and-standards/judging-processes/judging-processes.md): How findings are evaluated, escalated, and scored - [Scoring System](https://docs.cantina.xyz/evaluations-and-standards/judging-processes/scoring.md): How competition points are calculated and prizes distributed - [Bug Bounty Severity Classification](https://docs.cantina.xyz/evaluations-and-standards/severity-classifications/bug-bounty-finding-severity.md): Cantina's bug bounty severity classification for Web3 and smart contract vulnerabilities. Learn what's in scope vs out of scope for vulnerability rewards. - [Competition Finding Severity Criteria](https://docs.cantina.xyz/evaluations-and-standards/severity-classifications/competition-finding-severity.md): Competition finding severity criteria including the mandatory PoC rule. Learn when Proof of Concept is required for high and medium severity submissions. - [Finding Labels and Status](https://docs.cantina.xyz/evaluations-and-standards/severity-classifications/review-finding-categorization.md): Understanding finding statuses and labels - [Severity Classifications](https://docs.cantina.xyz/evaluations-and-standards/severity-classifications/severity-classifications.md): Standardized framework for vulnerability classification - [For Organizations](https://docs.cantina.xyz/for-organizations/for-organizations.md): Empower your security strategy with Cantina's expert researcher network - [Account Creation](https://docs.cantina.xyz/for-organizations/getting-started/account-creation.md): Create your organization account on Cantina - [Getting Started with Cantina](https://docs.cantina.xyz/for-organizations/getting-started/getting-started.md): Your guide to setting up and using Cantina as an organization - [Google SSO Enforcement Rule Setup](https://docs.cantina.xyz/for-organizations/getting-started/google-sso.md) - [Okta Configuration](https://docs.cantina.xyz/for-organizations/getting-started/okta-configuration.md): Learn how to configure Okta SSO for your Cantina organization - [Platform Navigation](https://docs.cantina.xyz/for-organizations/getting-started/platform-navigation.md): Navigate the Cantina platform and manage your organization - [Cantina Code Platform](https://docs.cantina.xyz/for-organizations/resources/cantina-code.md): Platform features for organizations to manage security engagements - [Managing Findings](https://docs.cantina.xyz/for-organizations/resources/managing-findings.md): Efficiently manage and prioritize security findings - [Resources for Organizations](https://docs.cantina.xyz/for-organizations/resources/resources.md): Tools and guides to maximize your Cantina engagement - [Working with Reports](https://docs.cantina.xyz/for-organizations/resources/working-with-reports.md): Understand and act on security reports - [Advisory](https://docs.cantina.xyz/for-organizations/security-solutions/advisory.md): Strategic security advisory and executive-level guidance - [Bug Bounty](https://docs.cantina.xyz/for-organizations/security-solutions/bug-bounty.md): Managed bug bounty programs for ongoing vulnerability discovery - [Competitions](https://docs.cantina.xyz/for-organizations/security-solutions/competitions.md): Collaborative security audit competitions with expert validation - [How Cantina Audits Work](https://docs.cantina.xyz/for-organizations/security-solutions/how-audits-work.md): A complete guide to how Cantina security audits work — from scoping and researcher matching through findings, remediation, and the final report. - [Managed Detection and Response](https://docs.cantina.xyz/for-organizations/security-solutions/mdr.md): 24/7 incident response and security monitoring - [Multisig Security](https://docs.cantina.xyz/for-organizations/security-solutions/multisig-security.md): Multi-signature wallet protection and key management solutions - [Penetration Testing](https://docs.cantina.xyz/for-organizations/security-solutions/pen-testing.md): Comprehensive penetration testing for on-chain and off-chain infrastructure - [Security Solutions](https://docs.cantina.xyz/for-organizations/security-solutions/security-solutions.md): Comprehensive security solutions tailored to your organization's needs - [Smart Contract Security Audits](https://docs.cantina.xyz/for-organizations/security-solutions/smart-contract-security-audits.md): Comprehensive security audits by Spearbit and Cantina - [Web2 Security Audits](https://docs.cantina.xyz/for-organizations/security-solutions/web2-security-audits.md): Comprehensive Web2 infrastructure and application security assessments - [Cantina Code Usage](https://docs.cantina.xyz/for-security-researchers/cantina-tools/cantina-code.md): How to use Cantina Code for security research - [Cantina Tools](https://docs.cantina.xyz/for-security-researchers/cantina-tools/cantina-tools.md): Tools available to security researchers on Cantina - [Communication Features](https://docs.cantina.xyz/for-security-researchers/cantina-tools/features.md): Communication tools for security researchers on Cantina Code - [Deposits for Bounty Submissions](https://docs.cantina.xyz/for-security-researchers/deposits-for-bounty-submissions.md): Learn about deposit requirements for bounty submissions on Cantina - [For Security Researchers](https://docs.cantina.xyz/for-security-researchers/for-security-researchers.md): Everything you need to participate, get rewarded, and grow within the Cantina ecosystem - [Researcher Account Setup](https://docs.cantina.xyz/for-security-researchers/joining-cantina/account.md): Create your security researcher account on Cantina - [Joining Cantina](https://docs.cantina.xyz/for-security-researchers/joining-cantina/joining-cantina.md): Get started as a security researcher on Cantina - [KYC and Payments](https://docs.cantina.xyz/for-security-researchers/joining-cantina/kyc.md): Set up your payment information to receive rewards - [Finding Opportunities](https://docs.cantina.xyz/for-security-researchers/joining-cantina/opportunities.md): Discover security challenges and opportunities on Cantina - [Payout Schedule & Process](https://docs.cantina.xyz/for-security-researchers/joining-cantina/payout-schedule.md): Understand when and how you'll receive your earnings from competitions, security reviews, and bug bounty programs. - [Bug Bounty](https://docs.cantina.xyz/for-security-researchers/participation-guides/bounties.md): Overview of Cantina bug bounty programs—getting started, statuses, payouts, deposits, and mediation - [Bug Bounty Finding Statuses](https://docs.cantina.xyz/for-security-researchers/participation-guides/bounty-finding-statuses.md): Understanding finding statuses for bug bounty programs—from submission to resolution - [Bug Bounty Payout](https://docs.cantina.xyz/for-security-researchers/participation-guides/bounty-payouts.md): Prerequisites and schedule for receiving bug bounty payouts on Cantina - [Bug Bounty Participation](https://docs.cantina.xyz/for-security-researchers/participation-guides/bug-bounty-participation.md): Guidelines for participating in Cantina bug bounty programs - [Competition Participation](https://docs.cantina.xyz/for-security-researchers/participation-guides/competition-guidelines.md): Rules and guidelines for participating in Cantina competitions - [Fellowship Program](https://docs.cantina.xyz/for-security-researchers/participation-guides/fellowship-program.md): Cantina's tiered reward program for top security researchers - [Fellowship Steward Model](https://docs.cantina.xyz/for-security-researchers/participation-guides/fellowship-steward-model.md): How the dedicated researcher model works for competitions - [Participation Guides](https://docs.cantina.xyz/for-security-researchers/participation-guides/participation-guides.md): Essential guidelines for participating in Cantina engagements - [Security Review Process](https://docs.cantina.xyz/for-security-researchers/participation-guides/security-review-process.md): Guide for researchers conducting security reviews on Cantina - [Submission Guidelines](https://docs.cantina.xyz/for-security-researchers/participation-guides/submission-guidelines.md): Best practices for submitting high-quality findings including Proof of Concept (PoC) requirements, validity criteria, and competition submission rules for security researchers. - [Reputation System](https://docs.cantina.xyz/for-security-researchers/researcher-resources/reputation-system.md): Understanding your reputation score on Cantina - [Researcher Resources](https://docs.cantina.xyz/for-security-researchers/researcher-resources/researcher-resources.md): Resources for growing your career on Cantina - [Spearbit Promotion Process](https://docs.cantina.xyz/for-security-researchers/researcher-resources/spearbit-promotion.md): Advancement path through Spearbit's researcher tiers - [Bug Bounty Referrals](https://docs.cantina.xyz/referral-program/bug-bounty-referrals.md): Referral rewards for bug bounty programs - [Client Referrals](https://docs.cantina.xyz/referral-program/client-referrals.md): Referral rewards for non-bug bounty engagements - [How to Submit a Referral](https://docs.cantina.xyz/referral-program/how-to-submit.md): Steps to submit a valid referral - [Referral Program](https://docs.cantina.xyz/referral-program/referral-program.md): Earn rewards for growing the Cantina ecosystem - [Referral Submission Conditions](https://docs.cantina.xyz/referral-program/submission-conditions.md): Criteria for a valid referral - [FAQ](https://docs.cantina.xyz/resources/faq.md): Frequently asked questions about Cantina security audits, competitions, bounties, and researcher programs. - [Links](https://docs.cantina.xyz/resources/links.md): Official Cantina and Spearbit resources - [Public Reports](https://docs.cantina.xyz/resources/public-reports.md): Browse published security reports from Cantina and Spearbit audits and competitions. - [Resources](https://docs.cantina.xyz/resources/resources.md): Cantina documentation resources: FAQ, official links, and public security reports. ## OpenAPI Specs - [openapi](https://docs.cantina.xyz/api-reference/openapi.json)