Ignored bounty disclosure

StakeWise v3's assessment for RD-F-008 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No prior post-mortem documents an ignored disclosure. The 2025-11-03 Balancer exploit was a Balancer v2 vulnerability, not a StakeWise smart-contract exploit. No StakeWise-specific rekt entry in hacksdatabase. No evidence of a whitehath disclosure that was ignored before any exploit.

Sources #

URL
Balancer hack: StakeWise recovers osETH 2025Balancer exploit recovery article confirming StakeWise contracts were not the vulnerability sourceretrieved 2026-05-16
Internal
StakeWise hacksdatabase grep result — zero direct protocol exploitsHacksdatabase grep confirms no StakeWise-specific rekt entry; profile §10 incident table shows only the Balancer-adjacent eventretrieved 2026-05-16

Methodology #

Determine whether any prior post-mortem documents a disclosed vulnerability that was reported to the team and not actioned before exploit.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol stakewise factor RD-F-008 score green collected_at 2026-05-16 01:03:28