Code complexity vs audit coverage

Circle USYC's assessment for RD-F-024 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No audit has been identified. The codebase spans at least 6 proxied contracts on Ethereum (USYC proxy, Teller proxy, CrossChainTeller, Oracle, RolesAuthorityProxy plus their implementations), equivalent contracts on BSC, plus Solana SPL-2022 and Noble IBC. Zero verifiable audit-day coverage — code-complexity-to-audit ratio is infinite.

Sources #

Docs
Smart Contracts - USYCUSYC smart contracts doc lists at least 10+ contract addresses across Ethereum and BSC; no audit coverage foundretrieved 2026-05-16
Etherscan
USYC ERC-20 Proxy - EtherscanUSYC proxy 0x136471a34f6ef19fE571EFFC1CA711fdb8E49f2b — 9 upgrades, no corresponding audit PDFs foundretrieved 2026-05-16

Methodology #

Determine whether the cyclomatic complexity or LOC-per-audit-day ratio exceeds the curator-declared credibility threshold for the audit to be meaningful.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol circle-usyc factor RD-F-024 score red collected_at 2026-05-15 21:56:43