Disclosure SLA public
Euler V2's assessment for RD-F-176 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
No acknowledgment-time SLA published. Checked: SECURITY.md (fetched 2026-05-04), Cantina program page (fetched 2026-05-04), docs.euler.finance/security/bug-bounty/ (fetched 2026-05-04). None of these documents specify an acknowledgment window. The program is mature in bounty size ($7.5M) but lacks a published response commitment. Red: no SLA published.
Sources #
- GitHubhttps://github.com/euler-xyz/euler-vault-kit/blob/master/SECURITY.mdretrieved 2026-05-04
- https://docs.euler.finance/security/bug-bounty/retrieved 2026-05-04
- https://cantina.xyz/bounties/4d285eee-602e-440a-845e-25e155cec26aretrieved 2026-05-04
Methodology #
Determine whether the protocol publishes an acknowledgment-time SLA for disclosed vulnerabilities (e.g., 72h ack).
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol euler-v2 factor RD-F-176 score red collected_at 2026-05-04 19:56:06