defirisk.co
rubric v1.7.0

Admin EOA signing from new geography/device

Jupiter Perpetual Exchange's assessment for RD-F-107 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Admin EOA signing from new geography/device fingerprint signal. Requires off-chain signing telemetry data (device fingerprints, IP geolocation of signing events) which is not publicly available for Solana program upgrade authority signers. The 2025-02-06 X account hack involved US-based IP attribution but this is a social media account event, not admin key signing telemetry. Signal is not assessable without private/partner-feed data on signing infrastructure.

Sources #

  • Internal
    T-09 Cat 6 taxonomy row RD-F-107T-09 taxonomy: signal source is 'off-chain signing telemetry (F98)' — not publicly available. P2 priority, v1-deferred.retrieved 2026-05-16

Methodology #

Detect whether an admin/upgrader EOA signs from a geography or device fingerprint inconsistent with prior signing history.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jupiter-perps factor RD-F-107 score not_applicable collected_at 2026-05-16 01:53:11