Bridge validator threshold (k-of-M)

Wormhole's assessment for RD-F-149 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Bridge validator threshold (k-of-M) | 13-of-19 (68.4% supermajority). This is above the 2/3 floor. Compromising 13 of 19 geographically distributed, operationally independent validator companies would require an extraordinary multi-org attack. The Jan 2024 expired guardian set key vulnerability demonstrated that a theoretical bypass to 1-key was possible on Wormchain — that specific bug was patched within 48 hours (reward: $50K USDC). No current evidence of threshold-below-quorum vulnerabilit...

Sources #

Curator note
Extracted from 03-oracle-deps.md — RD-F-149; no URL citedretrieved 2026-04-28

Methodology #

Read the signature threshold required to approve a cross-chain message (for non-LZ bridges).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol wormhole factor RD-F-149 score gray collected_at 2026-04-28 01:38:43