Deployed bytecode reproducibility

Jupiter Perpetual Exchange's assessment for RD-F-145 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No public source repository; no verifiable build toolchain; verify.osec.io confirms is_verified=false with no on-chain hash or executable hash. Bytecode is NOT reproducible from public sources. Structural red for closed-source program with no build reproducibility.

Sources #

URL
OtterSec Program Verification Statusverify.osec.io: is_verified=false — no reproducible build artifactretrieved 2026-05-16
GitHub
Jupiter GitHub organizationgithub.com/jup-ag: no perps source repository among 185 public reposretrieved 2026-05-16

Methodology #

Determine whether anyone can independently reproduce the deployed bytecode from the repo and declared build toolchain.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jupiter-perps factor RD-F-145 score red collected_at 2026-05-16 01:53:11