defirisk.co
rubric v1.7.0

GitHub malicious-dependency incident touching protocol deps

A threat intelligence & recon factor in the v1.7.0 rubric. Measured per protocol on a e cadence.

Methodology how we score #

**What this measures** This episodic signal fires when a security advisory on GitHub (GHSA), npm, PyPI, or crates.io flags a malicious release or critical vulnerability in a package that is a direct or transitive dependency of the monitored protocol's deployment pipeline or frontend. The signal is generated by cross-referencing the protocol's dependency manifest (package.json, Cargo.toml, requirements.txt) against the GitHub Advisory Database and the OSV vulnerability feed. Category 11 context: malicious dependency injection (software supply-chain attack) represents an attacker-side vector that bypasses smart contract audits entirely by compromising the build or deployment toolchain.

**Why it matters** The XZ Utils supply-chain attack (March 2024) demonstrated that a two-year contribution pattern could precede a single malicious commit to a widely-used package. In DeFi, supply-chain attacks on npm packages used in frontend code or deployment scripts could enable unauthorized contract deployments or transaction manipulation. Team Finance ($14M, 2021) involved a migrate() function exploit — the attack vector was not a dependency compromise but the pattern of trusting third-party tooling without independent verification is the same. The Cetus Protocol case ($223M, 2025) involved a shared math library bug across four protocols — a supply-chain contagion pattern. GitHub Advisory monitoring provides automated tracking of the upstream dependency risk surface.

**Green / Yellow / Red** Green is the baseline when no current GHSA advisories or malicious-release flags exist for any package in the protocol's declared dependency manifest. Yellow fires when a moderate-severity advisory affects a transitive dependency (three or more hops removed from the protocol's direct imports) — real but distant risk. Red fires when a high or critical advisory — including a confirmed malicious-release flag — affects a direct dependency of the protocol's smart contract compilation pipeline or deployment scripts.

**Common gray cases** Gray applies when the protocol's dependency manifest is not publicly accessible or uses private package registries not covered by public advisory feeds, or when the protocol's smart contracts are compiled with no npm/PyPI dependencies (e.g., pure Foundry with pinned lib versions via git submodules).

**Notable historical examples** No cross-hacked incidents currently linked in database for this factor.

Measurement what to look for #

Determine whether a security advisory flags a malicious release in a dependency consumed by this protocol.

Data & output #

Data source
GitHub Security Advisories (GHSA) feed + protocol dependency manifest (from F134)
Output format
Green / Yellow / Red
Evidence artifact
GHSA advisory URL + affected package + affected version range + this protocol's installed version
Confidence signal
green = no active malicious-release advisory affecting this protocol's dependencies; red = active advisory confirmed for used dependency; gray = dependency list not accessible

Scored protocols 80 carry this factor #

Protocol RD-F-160
Aave v3 ethereum green Across Protocol ethereum green Aerodrome Finance base green Axelar Network ethereum green Babylon Protocol bitcoin not_assessed Balancer (v2 + v3) ethereum green Beefy Finance ethereum green BENQI avalanche gray BlackRock USD Institutional Digital Liquidity Fund (BUIDL) ethereum not_applicable Cap (cUSD / stcUSD) ethereum green Centrifuge ethereum green Chainlink CCIP ethereum green Circle USYC binance gray Compound V3 (Comet) ethereum green Concrete ethereum green Convex Finance ethereum green crvUSD (Curve Stablecoin) ethereum green Curve Finance ethereum green deBridge ethereum gray Dolomite ethereum green dYdX v4 (dYdX Chain) dydx red EigenLayer ethereum green Ethena ethereum green ether.fi ethereum green Euler V2 ethereum not_assessed Falcon Finance ethereum green Fluid ethereum green Frax Finance ethereum green GMX v2 (GMX Synthetics) arbitrum gray Hyperlane ethereum green Hyperliquid arbitrum gray Jito solana green Jupiter solana green Jupiter Perpetual Exchange solana gray JustLend DAO tron gray Kamino Lend solana green Kinetiq hyperliquid gray Lido ethereum green Liquid Collective (LsETH) ethereum green Liquity V1 + V2 (LUSD / BOLD) ethereum green Lista DAO bsc gray Lombard Finance ethereum green M^0 ethereum green Maple Finance ethereum green Marinade Finance solana green Meteora solana green mETH Protocol ethereum green Midas ethereum gray Morpho V1 (Morpho Blue + MetaMorpho) ethereum green Multipli ethereum green Ondo Finance ethereum gray OpenEden ethereum green Orca solana green PancakeSwap bsc green Pendle Finance ethereum gray Polymarket polygon not_assessed QuickSwap polygon green Raydium solana not_assessed Rocket Pool ethereum green Sanctum solana green Save (formerly Solend) solana yellow Sky Lending (formerly MakerDAO) ethereum green Spark Protocol ethereum green Spiko stellar green Stake DAO ethereum green StakeWise v3 ethereum green Stargate Finance ethereum gray stHYPE (Valantis Labs) hyperliquid gray SUNSwap (sun.io) tron green Superstate ethereum green Sushi (SushiSwap) — v2 + v3 + Trident + BentoBox/Kashi + SushiXSwap ethereum green Symbiotic ethereum green Synapse Protocol ethereum not_assessed Uniswap (v2 + v3) ethereum green USDD (Decentralized USD) tron not_applicable Usual (USD0 / bUSD0 / USUAL) ethereum green Veda (BoringVault) ethereum green Venus Protocol bsc green Wormhole ethereum gray Yearn Finance ethereum green
1 red · 1 yellow · 56 green

Linked hacks no historical incidents linked #

No historical incidents are linked to this factor.
rubric_version v1.7.0 factor RD-F-160 category 11 carried 80 critical no