Instagram is reportedly recruiting white-hat researchers to test the security of its new Checkout feature, which allows users to buy merchandise from select brands without ever having to leave the social media app.

CNN this week reported that Facebook-owned Instagram is restricting the testing to only those individuals who have submitted high-quality research to its bug bounty program.

Instagram publicly announced Checkout in a March 19 blog post on its “Info Center” web page, noting that “Once your first order is complete, your information will be securely saved for convenience the next time you shop.”

Instagram has also previously asserted it does not share payment information with sellers, and maintains sensitive financial information on secured servers, CNN reported.

Meanwhile, in an Aug. 19 blog post, security researcher Philippe Harewood reported discovering a vulnerability FB5, Facebook’s fifth major update, that allows potential attackers to remove a user’s profile picture.