defirisk.co
rubric v1.7.0

GitHub force-push to sensitive branch

Lombard Finance's assessment for RD-F-108 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

GitHub force-push to sensitive branch | Applicable: Yes (public repo github.com/lombard-finance/evm-smart-contracts, last commit 2026-04-20) | No force-push or unauthorized branch push events identified in public repo activity around assessment date. Last commit consistent with April 2026 Sherlock/OZ audit completion and development cadence. v2-deferred signal. Signal not firing.

Sources #

  • GitHub
    https://github.com/lombard-finance/evm-smart-contractsretrieved 2026-05-05

Methodology #

Detect whether the repository shows a force-push or push to a sensitive branch (main, production tag) from a non-protocol account.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol lombard factor RD-F-108 score green collected_at 2026-05-05 12:03:08