Notional V3 contracts are open source for Security Auditors to review the code base.

Notional has an active bug bounty program through Immunefi. Security researchers can contact Notional's security team at security@notional.finance.