ecrecover zero-address return unchecked

Jupiter Perpetual Exchange's assessment for RD-F-019 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

ecrecover is an EVM precompile function using secp256k1. Solana uses Ed25519 signatures via the ed25519_program or Anchor Signer constraint — not ecrecover. The vulnerability class does not exist in this substrate. Structurally not_applicable.

Sources #

Docs
Jupiter Perpetuals Developer DocumentationSolana uses Ed25519 cryptography; ecrecover (secp256k1-based EVM precompile) does not exist on this substrateretrieved 2026-05-16

Methodology #

Determine whether any `ecrecover` call result is used without a `!= address(0)` guard.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jupiter-perps factor RD-F-019 score not_applicable collected_at 2026-05-16 01:53:11