Prior known-ignored disclosure

Pendle Finance's assessment for RD-F-177 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No evidence of any instance where a disclosed vulnerability was reported to Pendle and not actioned before an exploit. The Penpie incident was in Penpie's codebase; Pendle's response was prompt. No post-mortems, rekt.news entries, security researcher disclosures, or governance forum posts document a Pendle-specific ignored disclosure. Green: no evidence of ignored disclosure.

Sources #

URL
Halborn — Penpie hack explainedHalborn Penpie analysis — root cause in Penpie, no mention of prior Pendle disclosure ignoredretrieved 2026-04-29
URL
Rekt.news leaderboard — Pendle not listedRekt leaderboard — no Pendle entry (no ignored-disclosure-triggered exploit)retrieved 2026-04-29

Methodology #

Determine whether evidence exists in prior-incident post-mortems that a disclosed vulnerability was reported to the team and not actioned before exploit.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol pendle factor RD-F-177 score green collected_at 2026-04-28 21:09:40