defirisk.co
rubric v1.7.0

Leaked credential on paste/sentry site

Chainlink CCIP's assessment for RD-F-164 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Applicable — Chainlink Labs operates node infrastructure with sensitive credentials. No confirmed paste-site or credential dump referencing Chainlink CCIP infrastructure found via public OSINT. ISO 27001 certification implies formal credential management. P2 signal; paste monitoring not configured for static dry run; M-only method requiring curator access to paste monitoring feeds.

Sources #

  • URL
    Chainlink Security CertificationsChainlink security certifications — ISO 27001 covering security practices including credential managementretrieved 2026-05-16

Methodology #

Determine whether a public paste site, Sentry-alt, or credential-dump references protocol infrastructure endpoints or API keys.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol chainlink-ccip factor RD-F-164 score gray collected_at 2026-05-16 01:55:09