Resolved-without-proof findings

PancakeSwap's assessment for RD-F-003 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

OtterSec publicly announced 2 high-impact Infinity vulnerabilities resolved prior to launch. The 2021 Lottery V2 vulnerability was disclosed via Immunefi and patched before exploitation (Immunefi post-mortem confirms). No post-mortem documents an auditor finding marked resolved that remained unpatched on-chain.

Sources #

URL
Immunefi PancakeSwap Lottery Post-mortemImmunefi lottery vulnerability post-mortemretrieved 2026-04-29
URL
OtterSec PancakeSwap InfinityOtterSec Infinity audit announcement — 2 high-impact resolved pre-launchretrieved 2026-04-29

Methodology #

Count the number of findings the audit report marks "Resolved" or "Fixed" where no matching on-chain bytecode change or verifiable commit can be found.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol pancakeswap factor RD-F-003 score green collected_at 2026-04-28 19:10:57