This was Opus saying that after reviewing the [REDACTED] bug bounty program guidelines and having them in context.

Right, but that can be easily spoofed? Moreover if say Microsoft has a bounty program, what's preventing you from getting Opus to discover a bug for the bounty program, but you actually use it for evil?