Leaked credential on paste/sentry site

crvUSD (Curve Stablecoin)'s assessment for RD-F-164 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Leaked credential on paste/sentry site matching protocol infra. Applicable: yes — Curve Finance operates web infrastructure (curve.finance, GitHub, Discord, social). The May 2025 registrar-level attack involved compromise of iwantmyname registrar credentials — this was a registrar-side credential leak, not a Curve-internal infra credential leak. No public evidence of Curve Finance GitHub/Discord/RPC-key credential leaks on paste sites found via OSINT. Requires curator credential-monitoring feed (HaveIBeenPwned, Leakbase, or similar) to assess properly.

Sources #

Curator note
Credential leak assessment requires curator feedNo Curve-internal infra credential leak on paste sites found via OSINT. Credential monitoring feed (HaveIBeenPwned, Leakbase) not available. Gap documented.retrieved 2026-05-16
URL
Curve Domain Incident May 2025Curve Domain Incident: registrar (iwantmyname) credentials compromised in May 2025 — registrar-side leak, not protocol-infra-key leakretrieved 2026-05-16

Methodology #

Determine whether a public paste site, Sentry-alt, or credential-dump references protocol infrastructure endpoints or API keys.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol crvusd factor RD-F-164 score gray collected_at 2026-05-16 19:09:40