Known-threat-actor cluster has touched protocol
Sky Lending (formerly MakerDAO)'s assessment for RD-F-158 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
No public CTI report (OFAC, Chainalysis public, TRM Labs public) placing a known-threat-actor wallet as interacting with Sky core contracts (Vat, DSChief, USDS, LitePSM) in last 30 days. April 18, 2026 Kelp DPRK breach targeted Kelp LayerZero OFT adapter — no confirmed cross-protocol attribution to Sky core. At $5.5B TVL, absence-of-evidence without licensed CTI feed is insufficient for green. Mark yellow.
Sources #
- Curator notepublic data check 2026-04-27retrieved 2026-04-27
- OFAC SDN list (public, checked 2026-04-27)retrieved 2026-04-27
- Paradigm DPRK threat report March 2025retrieved 2026-04-27
Methodology #
Detect whether an address from the curator-maintained threat-actor cluster (past exploiters, labeled attacker families) interacted with this protocol in the last 30 days.
See the full factor methodology and distribution across all protocols →