CVE/GHSA advisory issued against protocol

dYdX v4 (dYdX Chain)'s assessment for RD-F-178 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No CVE, GHSA, or equivalent public advisory against dYdX v4 protocol identified. GitHub advisory database search returned no dYdX v4 on-chain protocol entries. The Feb 2026 SDK supply-chain compromise may warrant a GHSA on the npm/PyPI packages themselves, but no formal advisory against the on-chain protocol was found. Green.

Sources #

URL
GitHub Advisory DatabaseGitHub Advisory Database — no dYdX v4 protocol CVEs foundretrieved 2026-05-17
URL
Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT MalwareFeb 2026 supply-chain — package-level compromise, no on-chain protocol CVEretrieved 2026-05-17

Methodology #

Determine whether a CVE, GHSA, or equivalent public advisory has been issued against this protocol or its code.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dydx-v4 factor RD-F-178 score green collected_at 2026-05-17 09:58:47