Ignored bounty disclosure

deBridge's assessment for RD-F-008 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No evidence of any prior bounty disclosure that was ignored before an exploit. Protocol has no documented smart contract exploits (confirmed across Rekt.news, DeFiLlama hacks database, and protocol blog as of 2026-04-26). Only incident was the August 2022 Lazarus Group phishing attempt — no funds lost, no smart contract vector involved, and deBridge disclosed it within 24 hours.

Sources #

URL
https://www.coindesk.com/business/2022/08/05/north-koreas-lazarus-hackers-blamed-in-debridge-finance-cyberattackretrieved 2026-05-06

Methodology #

Determine whether any prior post-mortem documents a disclosed vulnerability that was reported to the team and not actioned before exploit.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol debridge factor RD-F-008 score green collected_at 2026-04-28 01:27:58