TIL there is a bug bounty program sponsored by the EU. Would check it out if it is still on.
https://commission.europa.eu/news/european-commissions-open-source-programme-office-starts-bug-bounties-2022-01-19_enhttps://blog.jupyter.org/european-commission-funds-jupyter-bug-bounty-program-b7b96f9831e6> Awards of up to EUR 5000 are available for finding security vulnerabilities in LibreOffice, LEOS, Mastodon, Odoo and CryptPad, open source solutions used by public services across the European Union. There is a 20% bonus for providing a code fix for the bugs they discover.