GitHub force-push to sensitive branch

Sanctum's assessment for RD-F-108 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No GitHub security advisories or force-push alerts identified for igneous-labs repos. Primary repos: sanctum-unstake-program (last commit 2024-11-20), inf-1.5 (Infinity V2 rework). Infinity V2 launched March 2026 — preceding development activity appears normal. No unauthorized branch modifications detected via public GitHub OSINT. v1 deferred signal.

Sources #

GitHub
Igneous Labs GitHub organizationigneous-labs GitHub organization — public repos, no force-push advisoriesretrieved 2026-05-04

Methodology #

Detect whether the repository shows a force-push or push to a sensitive branch (main, production tag) from a non-protocol account.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sanctum factor RD-F-108 score green collected_at 2026-05-04 18:49:23