defirisk.co
rubric v1.7.0

Sybil surge of identical-pattern transactions

Chainlink CCIP's assessment for RD-F-097 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

v2-deferred. Sybil transaction surges at CCIP smart contract level don't directly map to protocol compromise because CCIP's DON quorum consensus cannot be influenced by sybil EOA activity. PH method; v2-deferred per T-09 §3.3.

Sources #

  • Internal
    T-09 Real-Time Signals — v2 deferred listresearch/outputs/09-realtime-signals.md §3.3 — RD-F-097 class v2-deferredretrieved 2026-05-16

Methodology #

Detect multiple new EOAs submitting identical transaction patterns within a short window (sybil setup pattern).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol chainlink-ccip factor RD-F-097 score gray collected_at 2026-05-16 01:55:09