Dependency tree uses EOL Solidity version

Dolomite's assessment for RD-F-174 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

DolomiteMargin core uses Solidity 0.5.16 — the 0.5.x series is effectively EOL (no security patches since 0.5.17 final, ~2020). The core ($129.7M Ethereum, immutable) cannot be upgraded to a newer compiler without full redeployment. Modules use 0.8.9 which is not EOL but is old (2021). Yellow: 0.5.16 is EOL but the immutable architecture means compiler update requires redeployment; no active 0.5.16-specific critical bug for this contract type identified.

Sources #

Etherscan
DolomiteMargin Ethereum — Etherscan Compiler Metadata0x003Ca23Fd5F0ca87D01F6eC6CD14A8AE60c2b97D compiled with v0.5.16+commit.9c3226ce — EOL 0.5.x seriesretrieved 2026-05-16
URL
Solidity 0.5.16 Known BugsSolidity 0.5.x: final release was 0.5.17; 0.6.x+ has been maintained since; 0.5.x EOL with no security backportsretrieved 2026-05-16

Methodology #

Determine whether the deployed code or its dependencies use an EOL or unsupported Solidity version without a forward-compatibility patch.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dolomite factor RD-F-174 score yellow collected_at 2026-05-16 11:12:56