Leaked credential on paste/sentry site

Pendle Finance's assessment for RD-F-164 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Leaked credential on paste/sentry site (Cat 11). Requires proprietary paste/credential-dump monitoring feed. Pendle has no SECURITY.md (data cache: security_md_present: false), limiting responsible disclosure. Not assessable from public sources.

Sources #

URL
https://immunefi.com/bug-bounty/pendle/scope/retrieved 2026-05-06

Methodology #

Determine whether a public paste site, Sentry-alt, or credential-dump references protocol infrastructure endpoints or API keys.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol pendle factor RD-F-164 score gray collected_at 2026-04-28 21:09:40