defirisk.co
rubric v1.7.0

Resolved-without-proof findings

JustLend DAO's assessment for RD-F-003 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

CertiK identified 16 findings: 0 critical, 6 major, 1 medium, 2 minor, 7 informational. Resolution: 11 acknowledged, 3 partially resolved, 2 resolved. Six major findings remain acknowledged-only (not fixed). Includes admin privilege to set oracle addresses without limits. TVM bytecode verification of partial resolutions is not possible via standard tooling.

Sources #

  • Audit
    JustLend CertiK Security Score and FindingsCertiK Skynet: 6 major findings acknowledged (centralization/privilege), 1 medium, 2 minor — resolution status: 11 acknowledged, 3 partial, 2 resolvedretrieved 2026-05-17

Methodology #

Count the number of findings the audit report marks "Resolved" or "Fixed" where no matching on-chain bytecode change or verifiable commit can be found.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol justlend factor RD-F-003 score yellow collected_at 2026-05-17 10:25:32