I'm not surprised that many big companies launch bug bounty programs, and I know there are plenty of large companies that institute them internally even though they are not without their pitfalls. What strikes me is the fact that such internal bounty programs, are necessary at all. Why are the generally well paid developers on staff are not doing what is most likely clearly stated in their job description? Oh, right, never mind.
In any case, it seems to me that internal bug bounty programs tend to be addressing the symptom, not the problem. What do you think?
Title: Now I understand why the free-coffee-for-bug-fixes initiative was codenamed Pavlov.Snarky: Every time the build breaks I have an irresistible urge to get coffee.