★ Audit scope mismatch

Liquid Collective (LsETH)'s assessment for RD-F-001 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Nine audits across 2022-2024 with Certora Nov 2024 as the most recent. River proxy last upgraded 2024-11-20 within the audit window. However, v1.3.0 BYOV feature commits (Feb-Apr 2026) post-date all published audits and no independent re-audit of the new BYOV validator-management logic has been published as of 2026-05-17. Post-audit fix commits in Mar 2026 reference prior audit finding IDs traceable to Certora findings. Partial mismatch: core v1.2.x audited; v1.3.0 BYOV additions not independently re-audited.

Sources #

GitHub
GitHub — liquid-collective-protocol recent commitsPost-audit v1.3.0 commits Apr 2026 showing BYOV code added post-Certoraretrieved 2026-05-17
URL
Certora Formal Verification and Audit — Alluvial Finance / Liquid CollectiveCertora Nov 2024 reportretrieved 2026-05-17
Etherscan
Etherscan — Liquid Collective River / LsETH ProxyRiver proxy upgrade tx 0xeea0d21d8fa0da8f4361362200ad11ddc917a1da681efe6fe0c3949a561831cc — last upgraded 2024-11-20retrieved 2026-05-17

Methodology #

Check whether the commit SHA cited in the audit report matches the bytecode deployed at the production proxy/implementation address.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol liquid-collective factor RD-F-001 score yellow collected_at 2026-05-16 19:46:23