I wouldn't "stake my livelihood" on it. Case in point is Microsoft. Their favorite retort to a POC security vulnerability disclosure is it is not "but the feature is functioning as designed."
Yes, but with this service it's not Microsoft that says if it's a bug or not, but 3rd party - "bounty sheriff". And they already "gave up their money".
This 18-year-old’s hacking side hustle has earned him $100,000 — and it’s legal More companies are offering ‘bug bounties’ for enterprising hackers July 23, 2018 https://www.marketwatch.com/story/t...as-earned-him-100000-and-its-legal-2018-07-23