Background
Over the course of two grants, Sidestream has established itself as a critical security partner for the Livepeer protocol team. Their work has consistently gone beyond scoped deliverables, combining technical execution with rigorous security practices and transparent communication to the community.
Highlights of their contributions to date include:
- Protocol Upgrades: Implemented and validated LIP-100 (inflation ceiling/floor) with full simulations and audits; draft ready for community execution.
- Tooling & Testing: Improved testing frameworks, merged Hardhat/Foundry suites, and added new simulation tools to
governor-scripts.
- Security Research: Investigated griefing attacks (two high-priority), triaged Immunefi reports, and contributed to smaller protocol fixes.
- Design & Specs: Produced the Reward Delegation Caller specification (in final review) and reviewed Ticket Distinction (pending data for next steps).
- Security Practices: Published reusable checklists to standardize and verify protocol upgrades.
- Community Engagement: Shared documentation, participated in governance discussions, and proposed the SafeHarbour security initiative.
Sidestream has consistently demonstrated the ability to combine hands-on technical execution with rigorous security research, helping the Foundation and INC protocol team deliver new features safely and effectively.
Proposal
We propose a third grant to continue funding Sidestream as a core security contributor under the Foundation budget until the Protocol Security & Engineering (SPE) proposal, as outlined in the Transformation SPE proposal), is passed.
This bridge funding ensures there are no gaps in protocol security coverage, while maintaining momentum on high-priority feature work, supporting bounty programs, and providing flexibility to address new security needs as they arise.
Deliverables
During this grant cycle, Sidestream will provide the following outputs across three focus areas:
1. Core Protocol Development
- Finalize and deploy critical features such as Upgradable Minter, Ticket Distinction and Reward Delegation.
- Conduct design reviews, draft PRs, run simulations, and perform security validations.
- Improve tests, simulations, and CI to strengthen the reliability of upgrades.
- Publish technical updates and documentation to keep the community informed.
2. Security Research & Bounty Support
- Dedicate 3–6 man-days per month to triaging, validating, and supporting Immunefi bounty submissions.
- Run targeted simulations and audits of reported vulnerabilities.
- Deliver fixes, mitigations, and recommendations as needed.
3. Flexible Scope Contributions
- Triage Immunefi reports and other disclosures.
- Run additional testnet simulations to de-risk upgrades.
- Begin work on new features requested by Foundation workstreams or the Advisory Board (e.g. inflation parameter changes, Ticket Payment House improvements).
- Take on small client-side tasks required by protocol changes.
- Contribute to the refinement of the SPE proposal to support long-term governance and protocol security.
Funding Request
Given the intention to transition to a Protocol SPE, and our desire that Sidestream participates in our public RFP to join in this more permanent capacity, we request to pay (unfront) in tranches of 10 man-days. At a rate of $1,500 per day, this means we would pay $15,000 upfront, and then in subsequent $15,000 increments (if needed).
This will allow Sidestream to:
- Support core feature rollouts with security-first processes.
- Provide dedicated resources to the Immunefi bounty program (as needed).
- Maintain flexibility to address emerging security needs and Advisory Board requests.
This will allow the Foundation to:
- Focus on rapidly bringing the Protocol SPE RFP and proposal to the community.
- Balance upfront payment with not overcommiting given expected change in method of engagement (eg. SPE).
Long-Term Vision
Sidestream intends to remain a long-term security partner for Livepeer through the Protocol Security & Engineering SPE framework and apply for the request for proposal that will be posted by the Foundation to establish the Protocol R&D SPE. In the meantime, this grant ensures no gaps in protocol security coverage while critical proposals are finalized and the SPE process matures.
Background
Over the course of two grants, Sidestream has established itself as a critical security partner for the Livepeer protocol team. Their work has consistently gone beyond scoped deliverables, combining technical execution with rigorous security practices and transparent communication to the community.
Highlights of their contributions to date include:
governor-scripts.Sidestream has consistently demonstrated the ability to combine hands-on technical execution with rigorous security research, helping the Foundation and INC protocol team deliver new features safely and effectively.
Proposal
We propose a third grant to continue funding Sidestream as a core security contributor under the Foundation budget until the Protocol Security & Engineering (SPE) proposal, as outlined in the Transformation SPE proposal), is passed.
This bridge funding ensures there are no gaps in protocol security coverage, while maintaining momentum on high-priority feature work, supporting bounty programs, and providing flexibility to address new security needs as they arise.
Deliverables
During this grant cycle, Sidestream will provide the following outputs across three focus areas:
1. Core Protocol Development
2. Security Research & Bounty Support
3. Flexible Scope Contributions
Funding Request
Given the intention to transition to a Protocol SPE, and our desire that Sidestream participates in our public RFP to join in this more permanent capacity, we request to pay (unfront) in tranches of 10 man-days. At a rate of $1,500 per day, this means we would pay $15,000 upfront, and then in subsequent $15,000 increments (if needed).
This will allow Sidestream to:
This will allow the Foundation to:
Long-Term Vision
Sidestream intends to remain a long-term security partner for Livepeer through the Protocol Security & Engineering SPE framework and apply for the request for proposal that will be posted by the Foundation to establish the Protocol R&D SPE. In the meantime, this grant ensures no gaps in protocol security coverage while critical proposals are finalized and the SPE process matures.