defirisk.co
rubric v1.7.0

Auditor re-engaged after last exploit

A operational history factor in the v1.7.0 rubric. Measured per protocol on a e cadence.

Methodology how we score #

**What this measures** This factor is a Boolean recording whether a reputable auditor performed a re-audit or formal incident review after the most recent exploit. Re-engagement must be from a firm of comparable or higher tier than the original auditor and must cover at minimum the affected contracts and any related functions. An informal code review by the team's own developers does not satisfy this criterion.

**Why it matters** Re-audit after an exploit is the strongest available signal that a protocol is treating the root cause as systemic rather than treating the specific attack vector as isolated. In the dataset, protocols that re-engaged auditors after incidents showed materially lower rates of same-root-cause recurrence. Conversely, protocols that did not re-engage auditors -- or that re-engaged auditors for only a narrow slice of the affected code -- were disproportionately represented in the same-root-cause repeat-exploit cluster. Euler Finance ($197M, 2023) and Sherlock's $4.5M insurance claim acknowledging the missed donateToReserves function highlight that re-audit does not guarantee correctness, but its absence is a reliable negative signal.

**Green / Yellow / Red** Green: re-audit completed by a reputable firm after the most recent exploit, covering all affected contracts, with findings published or attested on-chain. Yellow: re-audit completed but with a scope narrower than the affected surface, or by a lower-tier firm than the original audit. Red: no re-audit after most recent exploit; or re-audit conducted but findings not published.

**Common gray cases** Bug-bounty payouts from whitehats following an incident are not equivalent to a formal re-audit unless the bounty submission prompted a full scope review. Curator must verify that the re-audit scope covered the actual exploit path, not merely the patched function.

**Notable historical examples** No cross-hacked incidents currently linked in database for this factor.

Measurement what to look for #

Determine whether a reputable auditor performed a re-audit or incident review after the most recent exploit.

Data & output #

Data source
Audit PDF list (post-incident dates) + curator search of auditor firm report indexes
Output format
Green / Yellow / Red
Evidence artifact
Audit PDF URL + firm name + date (must be after incident date)
Confidence signal
green = Tier-1/2 re-audit post-incident; yellow = internal review only (not external audit); red = no re-audit after exploit; gray = no prior exploits (N/A)

Scored protocols 80 carry this factor #

Protocol RD-F-083
Aave v3 ethereum yellow Across Protocol ethereum not_applicable Aerodrome Finance base gray Axelar Network ethereum green Babylon Protocol bitcoin gray Balancer (v2 + v3) ethereum yellow Beefy Finance ethereum not_applicable BENQI avalanche not_applicable BlackRock USD Institutional Digital Liquidity Fund (BUIDL) ethereum not_applicable Cap (cUSD / stcUSD) ethereum gray Centrifuge ethereum gray Chainlink CCIP ethereum gray Circle USYC binance not_applicable Compound V3 (Comet) ethereum gray Concrete ethereum not_applicable Convex Finance ethereum yellow crvUSD (Curve Stablecoin) ethereum not_applicable Curve Finance ethereum yellow deBridge ethereum green Dolomite ethereum yellow dYdX v4 (dYdX Chain) dydx yellow EigenLayer ethereum green Ethena ethereum green ether.fi ethereum green Euler V2 ethereum green Falcon Finance ethereum gray Fluid ethereum gray Frax Finance ethereum gray GMX v2 (GMX Synthetics) arbitrum gray Hyperlane ethereum gray Hyperliquid arbitrum yellow Jito solana gray Jupiter solana gray Jupiter Perpetual Exchange solana not_applicable JustLend DAO tron not_applicable Kamino Lend solana gray Kinetiq hyperliquid not_applicable Lido ethereum green Liquid Collective (LsETH) ethereum not_applicable Liquity V1 + V2 (LUSD / BOLD) ethereum gray Lista DAO bsc green Lombard Finance ethereum gray M^0 ethereum gray Maple Finance ethereum green Marinade Finance solana yellow Meteora solana not_applicable mETH Protocol ethereum gray Midas ethereum gray Morpho V1 (Morpho Blue + MetaMorpho) ethereum green Multipli ethereum gray Ondo Finance ethereum gray OpenEden ethereum gray Orca solana not_applicable PancakeSwap bsc gray Pendle Finance ethereum gray Polymarket polygon gray QuickSwap polygon gray Raydium solana green Rocket Pool ethereum gray Sanctum solana gray Save (formerly Solend) solana yellow Sky Lending (formerly MakerDAO) ethereum green Spark Protocol ethereum gray Spiko stellar gray Stake DAO ethereum not_applicable StakeWise v3 ethereum gray Stargate Finance ethereum gray stHYPE (Valantis Labs) hyperliquid green SUNSwap (sun.io) tron not_applicable Superstate ethereum green Sushi (SushiSwap) — v2 + v3 + Trident + BentoBox/Kashi + SushiXSwap ethereum yellow Symbiotic ethereum gray Synapse Protocol ethereum yellow Uniswap (v2 + v3) ethereum gray USDD (Decentralized USD) tron not_applicable Usual (USD0 / bUSD0 / USUAL) ethereum yellow Veda (BoringVault) ethereum not_applicable Venus Protocol bsc yellow Wormhole ethereum gray Yearn Finance ethereum yellow
0 red · 14 yellow · 14 green

Linked hacks no historical incidents linked #

No historical incidents are linked to this factor.
rubric_version v1.7.0 factor RD-F-083 category 5 carried 80 critical no