FOS is a decentralized digital art protocol on the Base Network (Ethereum L2). It offers unique NFT collectibles with an automated, trustless reward distribution mechanism powered by smart contracts.

FOS operates in repeating Cycles of 500. Users mint NFT collectibles from three tiers (Buddy, Samurai, Noble). When the 500th NFT is minted (the Green Eye), it triggers an automated on-chain reward distribution to randomly selected participants via Chainlink VRF.

Yes, joining the whitelist is completely free. Whitelisted members can mint the first generation of collectibles for gas fees only. Regular minting costs range from ~$3 to ~$25 USD in ETH depending on the tier.

What blockchain does FOS use?

FOS is built on Base Network, an Ethereum Layer-2 solution by Coinbase. Base offers low gas fees, fast transactions, and full Ethereum-level security.

What are the three NFT tiers in FOS?

FOS Buddy (~$3 USD) is the entry tier, FOS Samurai (~$13 USD) is the mid tier, and FOS Noble (~$25 USD) is the premium tier. Each tier has unique artwork and different leaderboard point values.

Is FOS safe and trustworthy?

Yes. FOS is fully non-custodial — it never holds your funds. All transactions are executed via immutable, publicly auditable smart contracts. Randomness is guaranteed by Chainlink VRF.

How do I get started with FOS?

First, join the whitelist at fos.ooo/app/whitelist.php by connecting your wallet and providing your social media usernames. Then, when minting opens, you can mint NFTs from the app.

Is FOS a gambling or lottery site?

No. FOS is a digital collectibles marketplace. The reward distributions are incidental loyalty perks, similar to store reward points. You purchase digital art (NFTs), not lottery tickets.

FOS — Blockchain Collectibles & NFT Platform on Base Network

Public Roadmap

FOS development phases and milestones

Phase 1

Whitelist Access

Community Introduction & Whitelist Access Program

• Launch of the official website and ecosystem overview
• Introduction of the FOS Protocol across the community channels
• Opening of the Whitelist Access Program for early adopters
• Participation-based tasks to learn and engage with the platform
• Whitelisted users receive priority access to the next stage

Phase 2

Genesis Free-Mint

Genesis Free-Mint Access (Whitelisted Users Only)

• Whitelisted users may mint selected FOS Digital Collectibles
• Participation requires network gas only (no protocol fee)
• Assets retain full utility, provenance, and eligibility
• Reward early contributors and establish the first active user base

Phase 3

Stability Validation

Limited-Access Application Release

• Application opens to a limited number of users
• Monitor performance, UX behavior, and contract execution
• Incorporate feedback from real-world usage
• Validate technical and operational stability

Phase 4

Public Launch

Public Launch & Open Access

• Full public access to the application
• Ongoing onboarding of new participants
• Continued growth through community-driven initiatives
• Expansion of ecosystem transparency and engagement tools
• Autonomous operation through on-chain lifecycle and immutable logic

FOS Bug Bounty Program

The FOS Bug Bounty Program is designed to enhance security, stability, and trust across the entire FOS ecosystem. We invite security researchers, developers, and ethical hackers to responsibly report any identified vulnerabilities.

Valid reports will be eligible for rewards based on severity, impact, and report quality.

Scope

Smart Contracts: core FOS contracts, NFT (ERC-721), referral system, payment/withdrawal/settlement, admin/operator access controls
On-chain & Blockchain Logic: fund flows, lottery/winner logic, VRF/randomness usage, mint/burn/ownership, reentrancy/overflow/access control
Backend & API: blockchain-related APIs, order/payment verification, authentication/access control
Frontend: wallet connections, transaction signing, UI logic related to payments/ownership
Infrastructure: server security configuration, deployment and CI/CD scripts (security-related only)

Out of Scope

Previously reported or known issues
Social engineering attacks
Phishing or fake websites
DoS / DDoS attacks
Physical access requirements
Code improvement or best-practice suggestions
Third-party services or wallet vulnerabilities

Severity & Rewards

Critical: direct fund loss, permanent asset damage, or full system control
High: severe impact under specific conditions (partial fund loss, reward calc issues, privilege escalation)
Low: minor issues (UI issues, poor error handling, gas inefficiencies without security risk)
Rewards: exclusive FOS NFTs and/or monetary rewards based on severity, impact, and report quality
NFT Tiers: Critical → FOS Legend • High → FOS Guardian • Low → FOS Scout

Read the full Bug Bounty policy

Introduction

Valid reports will be eligible for rewards based on severity, impact, and report quality.

Scope

Smart Contracts: Core FOS contracts • NFT contracts (ERC-721 standard) • Referral system contracts • Payment, withdrawal, and settlement logic • Admin and operator access controls
On-chain & Blockchain Logic: Fund transfer flows • Lottery and winner selection logic • VRF and randomness usage • NFT minting, burning, and ownership • Reentrancy, overflow/underflow, and access control
Backend & API: Blockchain-related APIs • Order registration and payment verification logic • Authentication and access control
Frontend: Wallet connections and transaction signing • UI logic related to payments and ownership
Infrastructure: Server security configurations • Deployment and CI/CD scripts (security-related only)

Out of Scope

Previously reported or known issues
Social engineering attacks
Phishing or fake websites
DoS / DDoS attacks
Physical access requirements
Code improvement or best-practice suggestions
Third-party services or wallet vulnerabilities

Severity Classification

Critical

Vulnerabilities leading to direct fund loss, permanent asset damage, or full system control.

Theft of user or protocol funds
Unlimited NFT or token minting
Complete admin access bypass
Reentrancy draining funds
Manipulation of lottery results or VRF

High

Severe vulnerabilities with high impact under specific conditions.

Partial loss of funds
Incorrect reward or payment calculations
Privilege escalation without full admin takeover
Bypassing critical security checks

Low

Minor issues with low risk.

UI issues
Poor error handling
Gas inefficiencies without security risk

Reward Structure

Rewards may be issued as exclusive FOS NFTs and/or monetary rewards. The type and amount of rewards are determined based on vulnerability severity, impact, and report quality.

NFT Reward Tiers: Critical → FOS Legend NFT • High → FOS Guardian NFT • Low → FOS Scout NFT
The final decision regarding NFT issuance or any potential monetary reward rests with the FOS security team.

Duplicate Reporting Rule

If the same vulnerability is reported by multiple parties, only the first valid report containing complete and reproducible details will be eligible for a reward.
Duplicate reports, even if valid, are not eligible for rewards.

How to Report a Bug

All vulnerability reports must be submitted privately and responsibly.

Standard Report Format

Title and brief summary
Affected component (contract name, API, frontend, etc.)
Proposed severity level with justification
Detailed vulnerability description
Step-by-step reproduction instructions
Proof of Concept (code, transaction, or screenshots)
Attack scenario and impact assessment
Mitigation suggestion (optional)

Testing Rules (Testnet / Mainnet)

Testing and exploitation on Testnet are allowed.
Mainnet testing is limited to non-destructive Proof of Concept only.
Any damage to real user or protocol assets is strictly prohibited.

Severity Determination Criteria

Final severity is determined by the FOS security team.
The primary factor is the real-world impact of the vulnerability.

Anonymous Reporting

Anonymous submissions are allowed.
Only a wallet address is required to receive rewards or NFTs.

Legal Boundaries

Unauthorized access to user data is prohibited.
System destruction, data deletion, or privacy violations are not allowed.

Review & Verification Process

Initial report review
Reproduction and validation
Final severity determination
Vulnerability remediation
Reward determination
Reward distribution

Responsible Disclosure Policy

Do not exploit vulnerabilities beyond Proof of Concept
Do not publicly disclose vulnerabilities before they are fixed
Do not use real user funds
Comply with local and international laws

Safe Harbor

If researchers act in good faith and in accordance with this policy, FOS will not pursue legal action against them.

Acknowledgment

Optional public recognition
Inclusion in the FOS Security Hall of Fame

AUTOMATED PROTOCOL ALLOCATIONS.

FOS is a decentralized participation ecosystem defined by smart contracts:

Fos Leaderboard (Coming Soon)

COMING SOON

Earning

Rank

Number of Referral

COMING SOON

Earning

Rank

Number of Referral

COMING SOON

Earning

Rank

Number of Referral

LIVE PROTOCOL CYCLES

$1,000

$5,000

$10,000

Public Roadmap

Phase 1

Community Introduction & Whitelist Access Program

Phase 2

Genesis Free-Mint Access (Whitelisted Users Only)

Phase 3

Limited-Access Application Release

Phase 4

Public Launch & Open Access

FREE MINT CAMPAIGN

The Rules

The Specs

FOS Whitelist

Unlock the Founding Member Advantage.

Key Terms

THE 5K GROWTH CAMPAIGN

FOS Bug Bounty Program

Introduction

Scope

Out of Scope

Severity Classification

Reward Structure

Duplicate Reporting Rule

How to Report a Bug

Testing Rules (Testnet / Mainnet)

Severity Determination Criteria

Anonymous Reporting

Legal Boundaries

Review & Verification Process

Responsible Disclosure Policy

Safe Harbor

Acknowledgment

Contact Us

Report a Vulnerability