Leaked credential on paste/sentry site

Jito's assessment for RD-F-164 — scored not_assessed on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Jito operates off-chain infrastructure (block engine, BAM nodes, relayer, Merkle upload service, jitosol-wormhole-updater); leaked API keys or node credentials could be material. No public paste-site or credential dump referencing Jito infrastructure endpoints found via available public sources. Requires specialized paste/credential-dump monitoring feeds not available for T-10 static assessment. v1-deferred.

Sources #

GitHub
Jito Foundation Repository (SECURITY.md present)jito-foundation/jito-solana security_md_present=true (data cache) — responsible disclosure channel exists; no public credential leaks identifiedretrieved 2026-04-29

Methodology #

Determine whether a public paste site, Sentry-alt, or credential-dump references protocol infrastructure endpoints or API keys.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jito factor RD-F-164 score not_assessed collected_at 2026-04-29 15:50:23