Bytecode similarity to audited upstream with behavior deviation

Sushi (SushiSwap) — v2 + v3 + Trident + BentoBox/Kashi + SushiXSwap's assessment for RD-F-171 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

SushiSwap v3-core is a declared direct fork of Uniswap v3-core with expected high bytecode similarity. No behavioral deviation pattern consistent with AI-generated copy risk (state-mutation ordering deviation from audited upstream) was identified in available analysis. The ToB + ABDK audits of Uniswap v3 upstream did not flag state-mutation ordering issues; SushiSwap's fork inherits the same audited core math. No OSINT evidence of AI-generated code insertion in v3-core.

Sources #

GitHub
sushiswap/v3-core GitHubsushiswap/v3-core — declared fork of Uniswap v3; high bytecode similarity expected; no behavioral deviation detectedretrieved 2026-05-17
URL
Trail of Bits Uniswap V3 Core Security AssessmentToB Uniswap v3 audit — 10 findings (2 high); no state-mutation ordering issue flagged in upstreamretrieved 2026-05-17

Methodology #

Determine whether the bytecode has high structural similarity to an audited upstream but deviates in state-mutation ordering (AI-generated copy risk pattern).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sushi factor RD-F-171 score green collected_at 2026-05-16 19:50:37