★ Audit scope mismatch

Kamino Lend's assessment for RD-F-001 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Latest deployed version v1.19.0 (commit 95d694b, April 23 2026) not covered by any publicly accessible audit; most recent audits cover v1.16.0/v1.17.0 (OtterSec) and v1.17.0 (Certora Feb 2025), leaving two incremental versions unaudited.

Detail #

The audits repo (github.com/Kamino-Finance/audits) shows the most recent klend audit files as kamino_lend_ottersec_1.16.0_and_1.17.0.pdf and kamino_lend_certora_1.17.0.pdf. v1.18.0 (reserve emergency mode) and v1.19.0 (obligation ownership transfer) have no corresponding audit PDFs. Scored yellow not red because the gap is 2 incremental versions rather than architectural rewrites, Certora formal verification of core invariants provides partial carry-forward, and per-version audit cadence has otherwise been continuous.

Sources #

GitHub
Kamino Finance Audits RepositoryKamino Finance audits repo — latest klend PDF is kamino_lend_ottersec_1.16.0_and_1.17.0.pdfretrieved 2026-04-27
GitHub
klend GitHub Releasesklend releases — v1.19.0 commit 95d694b released April 23 2026retrieved 2026-04-27
Audit
Certora Kamino Lending Security ReportCertora Kamino Lending Security Report, February 24 2025 — covers v1.17.0retrieved 2026-04-27

Methodology #

Check whether the commit SHA cited in the audit report matches the bytecode deployed at the production proxy/implementation address.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol kamino-lend factor RD-F-001 score yellow collected_at 2026-04-30 21:19:16