GitHub force-push to sensitive branch

Save (formerly Solend)'s assessment for RD-F-108 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

GitHub force-push or sensitive-branch push from non-protocol account. Applicable: solendprotocol/solana-program-library is the authoritative repo. A force-push to main or unauthorized push from non-core-contributor would be detectable via GitHub API monitor. T-09 phase-2 signal (deferred). No public reports of unauthorized GitHub activity on Solend repos as of 2026-05-17. GitHub API monitor for this repository has not been built.

Sources #

URL
Solend GitHub — solana-program-librarySolend GitHub organization — solendprotocol/solana-program-library is the authoritative deployed sourceretrieved 2026-05-17

Methodology #

Detect whether the repository shows a force-push or push to a sensitive branch (main, production tag) from a non-protocol account.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol save factor RD-F-108 score gray collected_at 2026-05-17 15:20:15