Code complexity vs audit coverage

dYdX v4 (dYdX Chain)'s assessment for RD-F-024 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Cannot compute exact LOC/audit-day ratio without tool access to the Go source tree. Informal Systems conducted 6+ engagements over ~12 months. Finding density (1 critical, 4 medium across all phases) suggests meaningful depth. Qualitative evidence suggests adequate coverage, but the metric cannot be computed programmatically for a Go codebase.

Sources #

GitHub
dYdX v4-chain protocol directory — full module treedydxprotocol/v4-chain protocol/retrieved 2026-05-17
URL
Dive Into The dYdX Chain Audit — findings densitydYdX chain audit blogretrieved 2026-05-17

Methodology #

Determine whether the cyclomatic complexity or LOC-per-audit-day ratio exceeds the curator-declared credibility threshold for the audit to be meaningful.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dydx-v4 factor RD-F-024 score gray collected_at 2026-05-17 09:58:47