Contributor tenure at admin-permissioned PR
Concrete's assessment for RD-F-116 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Public GitHub repo (concrete-earn-v2-bug-bounty) has only 5 commits from 2 contributors. Primary contributor 'leomarlo' has a GitHub account created June 2014 (12-year tenure at time of contribution, low risk). Secondary contributor 'marcin-kepa' account created Aug 2024 (~15 months tenure), references prior GitHub accounts. Real engineering development is likely in a private Blueprint-Finance repo not accessible for OSINT. Sample is too small and limited to the bug-bounty surface to draw strong conclusions about admin-PR authors in the main codebase.
Sources #
- GitHubmarcin-kepa GitHub profileGitHub user profile marcin-kepa — account created 2024-08-15; references prior GitHub accounts; DeFi/Solidity/auditing background statedretrieved 2026-05-17
- Blueprint-Finance/concrete-earn-v2-bug-bounty contributorsGitHub API contributors endpoint — 2 contributors: leomarlo (4 commits), marcin-kepa (1 commit)retrieved 2026-05-17
- leomarlo GitHub profileGitHub user profile leomarlo — account created 2014-06-17; company: Leonhard Horstmeyer Research; 47 repos; established long-tenure accountretrieved 2026-05-17
Methodology #
Measure the number of days contributing to the repo of the author of the most recent admin-permissioned code change.
See the full factor methodology and distribution across all protocols →