defirisk.co
rubric v1.7.0

Shared-library version with known-vuln status

Midas's assessment for RD-F-135 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

This factor measures shared-library vulnerability status in the fork-lineage context. As an original issuer, the fork-lineage framing is not applicable. OZ upgradeable contracts are used (confirmed from Etherscan ABI), but the specific OZ version string is not determinable from public sources (private repo). The Cat 12 (F170) compiler version assessment covers the solc-level risk.

Sources #

  • Etherscan
    mTBILL ImplementationmTBILL impl — OZ upgradeable imports visible in ABIretrieved 2026-05-16

Methodology #

Identify the version of key shared libraries (OZ, Solady, Solmate) used and check against CVE/GHSA databases for any active advisory.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol midas factor RD-F-135 score not_applicable collected_at 2026-05-16 09:34:55