CVE/GHSA advisory issued against protocol

Sanctum's assessment for RD-F-178 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No CVE or GHSA advisory has been published against Sanctum's on-chain programs. (1) igneous-labs/sanctum-unstake-program security advisories: 'There aren't any published security advisories' — verified via GitHub. (2) igneous-labs/S (Infinity) security advisories: 'There aren't any published security advisories' — verified via GitHub. (3) NVD/CVE search returned no Sanctum DeFi protocol advisories. (4) OtterSec, Neodyme, and Sec3 Infinity audit reports (February 2024) documented pre-launch findings; these were not converted to public GHSAs post-launch. Green = no advisory issued.

Sources #

GitHub
igneous-labs/S (Infinity) security advisories — none publishedGitHub Security Advisories igneous-labs/S (Infinity program): 'There aren't any published security advisories'retrieved 2026-05-04
GitHub
sanctum-unstake-program security advisories — none publishedGitHub Security Advisories igneous-labs/sanctum-unstake-program: 'There aren't any published security advisories'retrieved 2026-05-04

Methodology #

Determine whether a CVE, GHSA, or equivalent public advisory has been issued against this protocol or its code.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sanctum factor RD-F-178 score green collected_at 2026-05-04 18:49:23