Fork retains upstream audit coverage

Dolomite's assessment for RD-F-131 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Classification: upstream + delta-audit for Arbitrum. OZ/Bramah audited dYdX Solo upstream; SECBIT 2021 audited Dolomite-specific changes (delta); Cyfrin 2023 audited current DolomiteMargin suite; Guardian 2024 audited modules. This covers the Arbitrum deployment adequately. However, the Ethereum mainnet ($129.7M, July 2025) and full Berachain deployment have no direct audit coverage. Cyfrin Apr 2025 covers POLVaults on Berachain only. Yellow: dominant TVL chain (Ethereum) lacks coverage.

Sources #

Audit
Cyfrin Dolomite POLVaults v2.0 Audit 2025-04-24Cyfrin POLVaults 2025-04-24: covers Berachain PoL vaults only, not full Ethereum DolomiteMargin instanceretrieved 2026-05-16
Audit
Dolomite Margin — SECBIT Audit 2021-08-02SECBIT 2021-08-02: Dolomite-specific delta-audit pre-Arbitrum launchretrieved 2026-05-16

Methodology #

Determine whether the fork's deployed code is covered by either: (a) the upstream audit plus a delta-audit for fork-specific changes, or (b) a fresh independent audit of the fork.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dolomite factor RD-F-131 score yellow collected_at 2026-05-16 11:12:56