Shared-library version with known-vuln status
Kinetiq's assessment for RD-F-135 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
OZ 5.1.0 — no active high/critical advisories as of 2026-05-17. Known OZ vulnerabilities (Base64.encode fixed in 5.0.2+; Multicall duplicate in 4.9.4 only; Merkle multiproof pre-4.9.2) do not affect 5.1.0. No CVE/GHSA for OZ 5.1.0 found.
Sources #
- DocsOpenZeppelin Contracts DocsOpenZeppelin contracts documentation — advisory historyretrieved 2026-05-17
- OpenZeppelin Contracts ReleasesOpenZeppelin contracts releases — v5.1.0 security statusretrieved 2026-05-17
Methodology #
Identify the version of key shared libraries (OZ, Solady, Solmate) used and check against CVE/GHSA databases for any active advisory.
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol kinetiq factor RD-F-135 score green collected_at 2026-05-17 15:29:57