defirisk.co
rubric v1.7.0

Incident response time (minutes)

Compound V3 (Comet)'s assessment for RD-F-085 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No direct on-chain exploit against Compound V3 from which to measure exploit-tx to team-statement timing. 2024 governance attack was a multi-day negotiation. Gray = N/A.

Sources #

  • Curator note
    Not assessed: no direct on-chain exploit tx exists to measure response timing against. The 2024 Proposal 289 governance attack was a multi-day negotiation; the 2023 vulnerability was disclosed only after patching. Response time metric (minutes to first statement post-exploit-tx) is structurally inapplicable.retrieved 2026-04-27

Methodology #

Measure the time in minutes from the first exploit transaction to the first official team statement for the most recent incident.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol compound-v3 factor RD-F-085 score gray collected_at 2026-04-28 00:20:50