Disclosure SLA public
Stake DAO's assessment for RD-F-176 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
No acknowledgment-time SLA published anywhere. The bug-bounty page (https://www.stakedao.org/bug-bounty) returns HTTP 404. No SLA language found in docs (docs.stakedao.org), governance forum, blog (stakedaohq.medium.com), or Terms & Conditions (https://www.stakedao.org/stake-dao-terms-and-conditions.pdf). No Immunefi program with stated SLA. Red: no SLA published.
Sources #
- URLStake DAO Terms & Conditions — no safe-harbor or disclosure SLA clause foundhttps://www.stakedao.org/stake-dao-terms-and-conditions.pdfretrieved 2026-05-16
- Stake DAO primary docs — no disclosure SLA language found in security or audit sectionshttps://docs.stakedao.org/retrieved 2026-05-16
Methodology #
Determine whether the protocol publishes an acknowledgment-time SLA for disclosed vulnerabilities (e.g., 72h ack).
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol stake-dao factor RD-F-176 score red collected_at 2026-05-16 12:29:20