A security researcher earned a $500 bounty from GitHub for reporting a vulnerability they discovered. GitHub runs a bug bounty program that rewards individuals for responsibly disclosing security flaws. The researcher found an issue and alerted GitHub through their coordinated disclosure process, which led to them receiving the bounty for their helpful report.