defirisk.co
rubric v1.7.0

Ignored bounty disclosure

Sky Lending (formerly MakerDAO)'s assessment for RD-F-008 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No evidence of ignored bounty disclosure. Black Thursday was operational failure (not suppressed bug). DSChief vuln disclosed proactively by OpenZeppelin; patched before exploitation. Flash-loan governance issue addressed with DSChief v1.2.

Sources #

  • URL
    https://blog.openzeppelin.com/makerdao-critical-vulnerabilityretrieved 2026-04-27
  • URL
    https://blog.makerdao.com/the-market-collapse-of-march-12-2020-how-it-impacted-makerdao/retrieved 2026-04-27

Methodology #

Determine whether any prior post-mortem documents a disclosed vulnerability that was reported to the team and not actioned before exploit.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sky-lending factor RD-F-008 score green collected_at 2026-04-28 00:43:18