FUNDING_GUIDELINES.md

💰 Funding Guidelines for Contributors

🎯 Overview

The Stellar Security Scanner project is funded through the Drips Network platform, enabling community contributors to earn rewards for their valuable contributions. This document outlines the funding process, eligibility criteria, and payment structure.

🏗️ Funding Structure

Monthly Funding Pool: 10,000 USDC

Distribution Breakdown

• Core Development (60%): 6,000 USDC/month
• Community Contributions (25%): 2,500 USDC/month
• Testing & QA (15%): 1,500 USDC/month

Contribution Categories & Rates

🔒 Security Research (High Priority)

Complexity	Rate	Example Tasks
Simple	200 USDC	Basic vulnerability patterns
Medium	350 USDC	Complex attack vectors
Complex	500 USDC	Novel vulnerability discovery

🧪 Development Tasks (Medium Priority)

Complexity	Rate	Example Tasks
Simple	100 USDC	Bug fixes, small features
Medium	200 USDC	New modules, integrations
Complex	300 USDC	Major features, architecture

📚 Documentation (Low Priority)

Complexity	Rate	Example Tasks
Simple	50 USDC	README updates, small docs
Medium	100 USDC	Tutorials, guides
Complex	150 USDC	Comprehensive documentation

🐛 Bug Fixes (Variable Priority)

Severity	Rate	Example Tasks
Critical	400 USDC	Security vulnerabilities
High	250 USDC	Major functionality issues
Medium	150 USDC	Feature-level bugs
Low	50 USDC	Minor issues, cosmetics

📋 Eligibility Criteria

Basic Requirements

• GitHub account in good standing
• Discord community member
• Completed contributor onboarding
• Signed Contributor License Agreement (CLA)

Skill Requirements

• Security Research: Experience with smart contract security, vulnerability analysis
• Development: Rust programming, Soroban framework knowledge
• Documentation: Technical writing, clear communication skills
• Testing: Test automation, quality assurance experience

Community Standards

• Positive community engagement
• Respectful communication
• Collaborative approach
• Commitment to project values

🚀 Application Process

Step 1: Identify Opportunity

1. Browse available issues on GitHub
2. Check Drips Network funding dashboard
3. Review project roadmap priorities
4. Assess your skills and interests

Step 2: Submit Application

1. Create GitHub Issue (if not already exists)

   • Use appropriate issue template
   • Provide detailed proposal
   • Include work estimate
   • Specify funding request

2. Apply on Drips Network

   • Navigate to project page
   • Submit funding application
   • Link to GitHub issue
   • Provide additional details

Step 3: Community Review

1. Initial Review (24-48 hours)

   • Maintainer assessment
   • Technical feasibility check
   • Funding amount validation

2. Community Feedback (48-72 hours)

   • Open discussion period
   • Community input welcome
   • Adjustments based on feedback

3. Final Approval (24 hours)

   • Maintainer final decision
   • Funding allocation confirmed
   • Issue assigned to contributor

Step 4: Work Commencement

1. Initial Payment (50% of total)

   • Released upon approval
   • Requires Drips Network wallet
   • Confirmation of receipt

2. Development Period

   • Regular progress updates
   • Community engagement
   • Milestone achievements

3. Completion & Review

   • Pull request submission
   • Code review process
   • Testing and validation

4. Final Payment (50% of total)

   • Released upon merge
   • Quality verification
   • Impact assessment

📊 Work Estimation Guidelines

Time Estimation Framework

Security Research Tasks

• Simple Pattern Discovery: 4-8 hours
• Complex Vulnerability Analysis: 16-24 hours
• Novel Attack Vector Research: 32-40 hours

Development Tasks

• Bug Fixes: 2-12 hours (depending on complexity)
• Small Features: 8-16 hours
• Major Features: 24-40 hours
• Architecture Changes: 40-60 hours

Documentation Tasks

• API Documentation: 4-8 hours
• Tutorials: 8-16 hours
• Comprehensive Guides: 16-24 hours

Complexity Assessment

Technical Complexity

• Low: Well-defined problem, clear solution path
• Medium: Some research required, multiple approaches possible
• High: Requires significant research, innovative solutions needed

Integration Complexity

• Low: Self-contained, minimal dependencies
• Medium: Some integration points, coordination needed
• High: Multiple components, significant coordination

Risk Assessment

• Low: Minimal impact on existing functionality
• Medium: Some risk to existing features
• High: Significant changes, potential breaking changes

🏆 Bonus Structure

Monthly Bonuses

Bonus Type	Amount	Criteria
Top Contributor	200 USDC	Highest impact contribution
Security Champion	300 USDC	Best security research
Innovation Award	250 USDC	Most creative solution
Community Hero	150 USDC	Outstanding community support

Quarterly Rewards

Achievement	Amount	Criteria
Security Excellence	1,000 USDC	Outstanding security contributions
Innovation Prize	800 USDC	Breakthrough solutions
Community Impact	600 USDC	Significant community impact

Annual Recognition

Award	Amount	Criteria
Contributor of the Year	5,000 USDC	Overall excellence
Security Researcher	3,000 USDC	Outstanding research
Community Builder	2,000 USDC	Community leadership

📈 Performance Metrics

Quality Metrics

• Code Coverage: >90% for new code
• Test Quality: Comprehensive test suite
• Documentation: Clear, accurate documentation
• Performance: No significant regressions

Community Metrics

• Engagement: Active participation in discussions
• Collaboration: Helpful interactions with others
• Mentorship: Supporting new contributors
• Leadership: Taking initiative on projects

Impact Metrics

• Adoption: Usage of contributed features
• Security: Vulnerabilities prevented
• Education: Knowledge shared with community
• Innovation: New approaches and solutions

💳 Payment Process

Payment Schedule

1. Initial Payment: 50% upon approval
2. Milestone Payments: For large projects (optional)
3. Final Payment: 50% upon completion

Payment Methods

• Primary: Drips Network (USDC)
• Alternative: Cryptocurrency wallets
• Special Cases: Bank transfers (for large amounts)

Payment Conditions

• Work meets quality standards
• Code successfully merged
• Documentation complete
• Community feedback positive

Tax & Legal

• Contributors responsible for taxes
• 1099 forms for US contributors (if applicable)
• International tax compliance as required

🔄 Dispute Resolution

Quality Disputes

1. Initial Review: Maintainer assessment
2. Community Input: Open discussion
3. Final Decision: Project lead determination

Payment Disputes

1. Documentation Review: Evidence assessment
2. Mediation: Community moderator involvement
3. Escalation: Drips Network support

Behavioral Issues

1. Warning: Private communication
2. Suspension: Temporary funding pause
3. Removal: Permanent exclusion (rare)

📞 Support & Resources

Getting Help

• Technical Questions: GitHub Discussions
• Funding Issues: Drips Network Support
• Community Matters: Discord #help
• Process Questions: Maintainers

Learning Resources

• Documentation: Project docs and guides
• Tutorials: Community-created content
• Mentorship: Pair with experienced contributors
• Workshops: Regular community sessions

Tools & Infrastructure

• Development Environment: Cloud-based IDEs
• Testing Infrastructure: Automated testing
• Documentation Tools: Markdown, static sites
• Communication: Discord, GitHub, email

---

🎯 Success Tips

1. Start Small: Begin with well-defined tasks
2. Communicate: Keep the community informed
3. Quality First: Focus on high-quality work
4. Learn: Continuously improve your skills
5. Collaborate: Work with others when possible
6. Document: Share your knowledge with others
7. Innovate: Bring new ideas and approaches
8. Persist: Don't give up on challenging problems

---

Ready to contribute? Join our Discord community and start your journey with the Stellar Security Scanner! 🚀