Auditor re-engaged after last exploit

dYdX v4 (dYdX Chain)'s assessment for RD-F-083 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No confirmed incident-triggered formal re-audit documented for either the Apr 2024 or Oct 2025 chain halt. Ongoing Informal Systems quarterly review cadence (through Q2 2024+) represents continuous engagement. Cantina bug bounty launched May 2026 is a proactive security measure, not a post-incident re-audit. Yellow: continuous audit engagement exists but no incident-specific re-audit evidence.

Sources #

URL
dYdX Bug Bounty Program on CantinaCantina bug bounty program (proactive, not post-incident)retrieved 2026-05-17
GitHub
dYdX v4 Chain Audits Directory (Informal Systems quarterly reviews)dYdX v4-chain audits directoryretrieved 2026-05-17

Methodology #

Determine whether a reputable auditor performed a re-audit or incident review after the most recent exploit.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dydx-v4 factor RD-F-083 score yellow collected_at 2026-05-17 09:58:47