defirisk.co
rubric v1.7.0

Disclosure channel exists

Kinetiq's assessment for RD-F-175 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Multiple confirmed disclosure channels: (1) security@kinetiq.xyz published in PGP-signed security.txt (expires 2027-07-01); (2) Discord at https://discord.kinetiq.xyz as alternate; (3) PGP encryption key at https://kinetiq.xyz/.well-known/pubkey.asc; (4) Cantina bug bounty program live since 2025-09-15 with Critical: $5M / High: $50K / Medium: $5K / Low: $500 tiers; (5) policy.txt at /.well-known/policy.txt. This exceeds the baseline 'publishes a public security-disclosure channel' threshold.

Sources #

  • URL
    Kinetiq kinetiq-contracts bounty — CantinaCantina bug bounty — live, Critical $5M / High $50K / Medium $5K / Low $500, in-scope: kHYPE, StakingManager, StakingAccountant, ValidatorManager, PauserRegistry, OracleManager, OracleAdapterretrieved 2026-05-17
  • URL
    Kinetiq security.txtsecurity.txt at kinetiq.xyz — PGP-signed, contact: security@kinetiq.xyz, expires 2027-07-01retrieved 2026-05-17

Methodology #

Determine whether the protocol publishes a public security disclosure channel (security@ email, Immunefi program, in-house disclosure page).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol kinetiq factor RD-F-175 score green collected_at 2026-05-17 15:29:57