Post-mortem published within 30 days

Compound V3 (Comet)'s assessment for RD-F-082 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No smart-contract exploit requiring a post-mortem. 2024 governance attack: $0 net loss, proposal cancelled — formal post-mortem not applicable. 2023 vulnerability: forum disclosure served as post-mortem equivalent (published same day). Gray = N/A.

Sources #

Governance
https://www.comp.xyz/t/comet-vulnerability-disclosure-patched/4854retrieved 2026-04-27

Methodology #

Determine whether a public post-mortem was published within 30 days of the most recent incident.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol compound-v3 factor RD-F-082 score gray collected_at 2026-04-28 00:20:50