Bytecode similarity to audited upstream with behavior deviation

Chainlink CCIP's assessment for RD-F-171 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

CCIP is an original design with no audited upstream to compare bytecode against. The AI-copy-risk pattern (bytecode similarity to audited upstream with behavior deviation) requires a reference upstream. Not applicable to original-design protocols.

Sources #

Internal
CCIP Protocol Profile §5 — no upstream to compare.research/protocols/chainlink-ccip/00-profile.md §5 — original designretrieved 2026-05-16

Methodology #

Determine whether the bytecode has high structural similarity to an audited upstream but deviates in state-mutation ordering (AI-generated copy risk pattern).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol chainlink-ccip factor RD-F-171 score not_applicable collected_at 2026-05-16 01:55:09