defirisk.co
rubric v1.7.0

Signed/unsigned arithmetic confusion

Babylon Protocol's assessment for RD-F-018 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Signed/unsigned confusion is a Solidity-specific class of vulnerability (implicit type conversions). Babylon Genesis chain uses Go (strict explicit conversion required) and Cosmos SDK math.Int wrapper for token amounts. CosmWasm contracts use Rust (strict type system, no implicit conversions). The vulnerability class does not exist in this toolchain. Structural N/A by non-Solidity substrate.

Sources #

  • Curator note
    Methodology pre-mark: RD-F-018 reclassified post repair pass. Signed/unsigned confusion is a Solidity-specific class of vulnerability (implicit type conversions). Babylon Genesis chain uses Go (strict explicit coretrieved 2026-05-04

Methodology #

Determine whether signed-integer conversions or comparisons where unsigned was intended exist in the deployed bytecode/source.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol babylon-protocol factor RD-F-018 score not_applicable collected_at 2026-05-04 19:43:27