defirisk.co
rubric v1.7.0

Upstream vulnerability disclosure (last 90d)

Sanctum's assessment for RD-F-128 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Not applicable — Sanctum is not a fork. The SPL Stake Pool dependency has no active vulnerability disclosure in the last 90 days from anza-xyz/security-audits.

Sources #

  • GitHub
    anza-xyz security-auditsanza-xyz/security-audits — no SPL Stake Pool advisory in last 90 daysretrieved 2026-05-04

Methodology #

Determine whether the upstream has a public vulnerability disclosure in the last 90 days that affects this fork's deployed code.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sanctum factor RD-F-128 score not_applicable collected_at 2026-05-04 18:49:23