Static-analyzer high-severity count

Sky Lending (formerly MakerDAO)'s assessment for RD-F-010 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No Slither/Mythril/Semgrep tool run performed. Published audits (ToB 2019: 2 medium/4 low; PeckShield 2019: 1 high resolved/1 medium; ChainSecurity 2024: no high unmitigated) indicate clean profile, but independent tool output unavailable.

Sources #

URL
https://github.com/makerdao/mcd-security/blob/master/Audit%20Reports/TOB_MakerDAO_Final_Report.pdfretrieved 2026-04-27
URL
https://www.chainsecurity.com/security-audit/makerdao-sky-smart-contractsretrieved 2026-04-27

Methodology #

Count the number of unique high-severity detector findings from Slither + Mythril + Semgrep run against the deployed verified source (after deduplication across tools).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sky-lending factor RD-F-010 score gray collected_at 2026-04-28 00:43:18