| Finding | Target | Severity | Est. Payout | Status |
|---|---|---|---|---|
| Luno test_bridge.html bridge-enumeration / P3 info-disclosure floor | Luno (Bugcrowd) | P3 (P2 ceiling pending Cycle 21 runtime retry) | P3 floor ~$250-$1,500 (Bugcrowd Luno range); P2 ceiling ~$1-5K if Cycle 21 confirms LimitlessAuthoriseBid silent execution | BANKED 2026-05-12 via Cycle 20 static-deep-trace. P1 fund-withdrawal ceiling COLLAPSED (dispatcher allowlist rejects InitiateInstantBuy + InitiateWithdrawal). P3 floor CONFIRMED (test_bridge.html shipped to prod + dispatcher enumeration discloses production endpoint paths + gRPC service paths + payload structures). Kingsley deciding: ship-P3-now OR Cycle 21 runtime retry on BlueStacks/rooted Android for P2 upgrade. |
| Date | Target | Reason | Saved |
|---|---|---|---|
| 2026-05-12 | Day 27 actuator corpus (Allstate qa-roadside + IDnow video.test pair) | Cycle 18: 3 Tier-1 candidates only serve banner-grabbing endpoints (health/info/prometheus/metrics). High-value endpoints (env/heapdump/loggers/shutdown) all return 404. Rule 33 = unsubmittable. Day 27 249-host corpus retrospectively pre-classified. | ~30 min Buddy time + decisive Rule 33 calibration; don't re-audit Day 27 corpus |
| 2026-05-12 | Polymarket multi-audit Sub-rule 38.4 sweep (Cantina BB $5M pool) | Cycle 19: 1 DRIFT found = M-01 DELAY_PERIOD=0 (audit recommended INCREASING, team removed via PR #33), but that's the closed-Duplicate #570 finding per brief constraint. ALL other audit-asserted invariants HOLD in current HEAD across ChainSecurity Exchange + UMA + Multi-Outcome. | ~50 min Buddy time + Polymarket Sub-rule 38.4 surface confirmed saturated |
| 2026-05-12 | Luno test_bridge.html runtime PoC (Bugcrowd) | Cycle 20: P1 fund-withdrawal ceiling COLLAPSED via static-deep-trace. Dispatcher allowlist rejects InitiateInstantBuy + InitiateWithdrawal. Day 25 P1 hypothesis bust. P3 floor confirmed instead. | ~30 min + saved from false-P1-submission deposit burn |
| 2026-05-11 | Veda + Lombard + Aera + Renzo NatSpec Sub-rule 38.5 (Cycle 17) | 4/4 walk-clean on 38.5 retroactive sweep. ~697 NatSpec entries examined. Yield zone refined to un-audited-rich-NatSpec only. | ~60 min Buddy time + Sub-rule 38.5 yield zone decisively calibrated |
| 2026-05-11 | Hyperlane CCTP downstream deployers (Cycle 16, Sub-rule 38.3) | Hyperlane registry only contains Hyperlane-owned routes. 3rd-party CCTP warp-routes require chain-explorer bytecode-signature scanning (ARGUS-class multi-cycle). Banked for ARGUS EYE 13. | ~30 min + EYE 13 spec confirmed needed |
| 2026-05-11 | Hyperlane core Sub-rule 38.4 (Cycle 15-B) | Audit-asserted invariants HOLD on Hyperlane canonical deployments. Bug visible in source-only deployments (PR #8519 TokenBridgeCctp) walks Hyperlane's own scope. | ~45 min + Hyperlane 38.4 surface clean |
| 2026-05-11 | Aera v3 Sub-rule 38.4 (Cycle 14) | All audit-asserted invariants HOLD on current HEAD. Multi-firm audit discipline confirmed. | ~50 min |
| 2026-05-11 | Lombard Finance Sub-rule 38.4 (Cycle 13) | All audit-asserted invariants HOLD on current HEAD. | ~45 min |
| # | Rule | Date | Summary |
|---|---|---|---|
| RULE 43 | Rule 38 yield-targeting filter | 2026-05-11 | Pre-cycle audit-discipline scoring filters target list. Veda-class (multi-firm + recent cadence + clean prior outcomes) = HIGH-discipline LOW-yield = skip Rule 38 cycle entirely. Calibrated against 9 walks across Tier-1 Solidity perimeter. |
| RULE 42 | Walk-clean is a VALID verdict | 2026-05-11 | Walks compound methodology + indirect revenue (Securva positioning, Cantina rep, banked rules) even at $0 direct payout. Dual-revenue compound model. |
| RULE 41 | BB-velocity-favorable for Rule 38 | 2026-05-11 | Continuous BB programs (Immunefi/H1/BC/Cantina BB) > private contests (Cantina/C4/Sherlock) for Rule 38. Per-tier fixed rewards vs pool-split contest economics. dYdX (continuous BB, $1M Critical) > Polymarket (contest, $5M pool but cluster-split). |
| RULE 40 | Private-contest dup-blindness structural Gate 4 cap | 2026-05-11 | Cantina/C4/Sherlock SEAL submissions during contest window. Gate 4 cannot fire reliably. Polymarket #570 founder case (8-finder cluster). Dup-economics flatten upside even for 1st-finder. |
| RULE 38.5 | NatSpec / inline-doc implementation drift (Sub-rule) | 2026-05-12 (yield-zone-calibrated) | Code-only sister of 38.4. NatSpec/godoc/JSDoc/docstring claims vs implementation. Yield zone = un-audited-rich-NatSpec ONLY (skip already-audited per Cycle 17 4/4 walk). Skill v0.2 shipped. |
| RULE 38.4 | Audit-documented safety-net break (Sub-rule) | 2026-05-11 | Audit prose asserts invariant as established fact -> post-audit PR silently breaks it. HIGH-Critical regression class. dYdX V4 founder case (PR #2099 inverted DecommissionNonPositiveEquityVaults, broke line-980 invariant). Skill v0.1 shipped. |
| Tier | EYE | Type | Target | Detected |
|---|---|---|---|---|
| Tier-2 | EYE 10 | all-a-records-migrated | docs.immutable.com | 3h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | api.pinterest.com | 3h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | chrome.google.com | 3h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | wiki.atom-lens.com | 3h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | digits.t-mobile.com | 3h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | api.t-mobile.com | 3h ago |
| Tier-1 | EYE 14 | cantina-bb-new-launch | Ondo Perps | 7h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 7h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 7h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 9h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | www.microsoft.com | 9h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | itunes.apple.com | 9h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | docs.immutable.com | 9h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | chrome.google.com | 9h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | wiki.atom-lens.com | 9h ago |
| Tier-2 | EYE 10 | all-a-records-migrated | digits.t-mobile.com | 9h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 10h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 10h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 11h ago |
| Tier-2 | EYE 11 | sherlock-contest-state-change | Metric | 11h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/solana-sdk | 12h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/morpho-org/morpho-blue | 14h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/morpho-org/morpho-blue | 14h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 14h ago |
| Tier-2 | EYE 4 | github-commit-new | https://github.com/anza-xyz/agave | 14h ago |
| Host | Path | Size | Files | Recovered |
|---|---|---|---|---|
| wallet.opensea.io | /assets/index-ChUom2EN.js.map | 9237.2 KB | 1239 | 3d ago |
| wallet.opensea.io | /assets/index-D7cAKYg5.js.map | 9237.2 KB | 1239 | 5d ago |
| wallet.opensea.io | /assets/index-CAn_Zhwi.js.map | 9236.8 KB | 1239 | 7d ago |
| marketplace.auth0.com | /_next/static/chunks/pages/_app-3c09d119... | 5731.2 KB | 1215 | 8d ago |
| wallet.opensea.io | /assets/index-DY5DVyTs.js.map | 9350.8 KB | 1240 | 9d ago |
| wallet.opensea.io | /assets/index-DW_IxaZN.js.map | 9350.8 KB | 1240 | 10d ago |
| marketplace.auth0.com | /_next/static/chunks/webpack-bb40dc0513f... | 13.4 KB | 21 | 11d ago |
| wallet.opensea.io | /assets/index-BvT1YcQ5.js.map | 9350.8 KB | 1240 | 11d ago |
| marketplace.auth0.com | /_next/static/chunks/pages/_app-d109e459... | 5731.2 KB | 1215 | 12d ago |
| wallet.opensea.io | /assets/index-ClfwKH1w.js.map | 9350.8 KB | 1240 | 12d ago |
| marketplace.auth0.com | /_next/static/chunks/pages/_app-93c7e69d... | 5729.9 KB | 1215 | 13d ago |
| wallet.opensea.io | /assets/index-DV3hstRX.js.map | 9350.8 KB | 1240 | 13d ago |
| wallet.opensea.io | /assets/index-DFJK-FQb.js.map | 9350.8 KB | 1240 | 14d ago |
| wallet.opensea.io | /assets/index-idPQEQk7.js.map | 9350.8 KB | 1240 | 15d ago |
| wallet.opensea.io | /assets/index-C1PFeTg7.js.map | 9350.8 KB | 1240 | 18d ago |
| Repo | Label | SHA | Message | Committed |
|---|---|---|---|---|
| babylonlabs-io/babylon | cve_reference | 7791059177d9 | chore(deps): bump github.com/shamaton/msgpack/v2 from 2.2.0 to 2.4.1 in the go_modules gro | 5d ago |
| anza-xyz/agave | security | 05e0183465ff | Xdp Test Harness (#13359) | 9d ago |
| anza-xyz/agave | generic_bypass | b5b1f6ee2bc3 | xdp: use af-xdp for gossip egress traffic (#13141) | 11d ago |
| Truelayer/truelayer-signing | ghsa_advisory | c9603e84b053 | Python: bump cryptography upper bound from <45 to <47 (#389) | 18d ago |
| Truelayer/truelayer-signing | security | 42a37e392f03 | Pin third-party actions to commit SHAs (#418) | 18d ago |
| Truelayer/truelayer-signing | security | 33c9a810a2e5 | Run CodeQL only for languages changed in a PR (#409) | 20d ago |
| anza-xyz/agave | generic_bypass | 9376529ed557 | rpc: fix WS pubsub subscription cap bypass via duplicate params (#12594) | 38d ago |
| anza-xyz/agave | fix_class | 52e9e4b4ae5f | blockstore_processor: fix BlockFooter race condition (#12780) | 40d ago |
| babylonlabs-io/babylon | security | fe3dd3e8c59a | fix: backport wrong-epoch VE and stake-expansion early-unbond security fixes from release/ | 40d ago |
| anza-xyz/solana-sdk | security | cbc1ecfe4375 | [BLS] update screening doc; improve security boundary (#709) | 53d ago |
| coinbase/smart-wallet | security | e7fde11a50fa | Add SECURITY.md (#167) | 69d ago |
| Uniswap/v4-periphery | generic_bypass | 9dafaaecc1e2 | fix: pin npm to specific version in deploy workflow (#520) | 95d ago |
| babylonlabs-io/babylon | security | d00e68415909 | chore(deps): bump google.golang.org/grpc from 1.77.0 to 1.79.3 in the go_modules group acr | 104d ago |
| babylonlabs-io/babylon | security | 65d793a0a8b8 | ci: enhance backport workflow security (#1977) | 112d ago |
| Uniswap/UniswapX | security | 9c8f9017a694 | fix: resolve zizmor GitHub Actions security findings (#362) | 118d ago |
| Title | Pool | Status | Ends |
|---|---|---|---|
| Metric Audit Contest | $121,000 | RUNNING | 1785164400 |
| Title | Transition | Pool | Detected |
|---|---|---|---|
| Metric Audit Contest | CREATED -> RUNNING | $121,000 | 11h ago |
| DRE App - dreUSD | RUNNING -> JUDGING | $48,000 | 19d ago |
| DRE App - dreUSD | CREATED -> RUNNING | $48,000 | 28d ago |
| XRP Ledger - April 2026 | ESCALATING -> SHERLOCK_JUDGING | $519,000 | 29d ago |
| XRP Ledger - April 2026 | SHERLOCK_JUDGING -> ESCALATING | $519,000 | 31d ago |
| XRP Ledger - April 2026 | ESCALATING -> SHERLOCK_JUDGING | $519,000 | 31d ago |
| XRP Ledger - April 2026 | SHERLOCK_JUDGING -> ESCALATING | $519,000 | 31d ago |
| Title | Pool | Status | Ends |
|---|---|---|---|
| Morpho Midnight | USDC $400,000 | escalations | 24d ago |
| Title | Transition | Pool | Detected |
|---|---|---|---|
| Morpho Midnight | judging -> escalations | $400,000 | 7d ago |
| Morpho Midnight | live -> judging | $400,000 | 24d ago |
| Reserve Governor | escalations_ended -> complete | $30,000 | 25d ago |
| Revert Finance - StableSwap Hooks | escalations_ended -> complete | $50,000 | 31d ago |
| Reserve Governor | escalations -> escalations_ended | $30,000 | 40d ago |
| Revert Finance - StableSwap Hooks | escalations -> escalations_ended | $50,000 | 45d ago |
| Reserve Governor | judging -> escalations | $30,000 | 48d ago |
| Revert Finance - StableSwap Hooks | judging -> escalations | $50,000 | 49d ago |
| Cluster | Members |
|---|---|
| FDJ-Kindred | 16 |
| ByteDance-TLB | 8 |
| Atlassian-Edge | 7 |
| Salesforce-Experience-Cloud | 6 |
| Apple-Geneva-Staging | 5 |
| Intergamma | 4 |
| IDnow | 2 |
| Mozilla-allizom-Staging | 2 |
| AutoDiscovered-GitRepo-intergamma/shopfront | 2 |
| Host | Note | Detected |
|---|---|---|
| - | state changed suspended->active | 21d ago |
| - | state changed suspended->active | 28d ago |
| - | state changed suspended->active | 28d ago |
| - | state changed suspended->active | 48d ago |
| - | state changed suspended->active | 49d ago |
| - | state changed suspended->active | 49d ago |
| - | state changed suspended->active | 49d ago |
| - | state changed suspended->active | 50d ago |
| Event | Detail |
|---|---|
[2026-07-07T02:30:02Z] BRAIN v1 tick complete: signals=5 R0=0 R1=0 R2=0 R3=0 R4=0 (retest passed=0 failed=0) R5=0 R6=0 R7=0 | |
| FIRED | [2026-07-02T22:30:01Z] R3 fired: cisconetworking@bugcrowd - 12 Tier-3 signals in 24h |
| FIRED | [2026-07-03T00:30:02Z] R3 fired: mondelez@hackerone - 10 Tier-3 signals in 24h |
| FIRED | [2026-07-03T02:30:02Z] R3 fired: mondelez@hackerone - 63 Tier-3 signals in 24h |
| FIRED | [2026-07-06T10:30:02Z] R3 fired: telenor-sweden-public-bug-bounty-program@yeswehack - 16 Tier-3 signals in 24h |
| Skill | Version | Status |
|---|---|---|
| audit-documented-safety-net-check | v? | ? |
| audit-saturation-pre-check | v? | ? |
| clarity-audit-primitives | v? | ? |
| cross-bridge-reconciliation-primitives | v0.3 | PRODUCTION |
| deep-invariant-analysis | v? | ? |
| hyperevm-audit-primitives | v0.3 | PRODUCTION |
| module-pair-asymmetry-check | v? | ? |
| natspec-implementation-drift-check | v0.4 | PRODUCTION |
| securva-operational-security | v? | ? |
| skeptic-gate-7-automator | v0.1 | PRODUCTION |
| skill-to-eye-translator | v0.2 | PRODUCTION |
| solana-audit-primitives | v0.4 | PRODUCTION |
| soroban-foundry-equivalent | v? | ? |
| sub-agent-parallel-explorer | v0.1 | PRODUCTION |
| submission-approval-tg-router | v0.1 | PRODUCTION |
| submission-body-templater | v0.1 | PRODUCTION |
| web2-differential-testing | v? | ? |
| Candidate | Target | Severity | Payout range | Origin |
|---|---|---|---|---|
| hybra-drift-a-testnet-constants | Hybra Finance | Critical | $100,000 - $500,000 | Cycle 30 |
| hybra-drift-b-gauge-bypass | Hybra Finance | Medium | $10,000 - $50,000 | Cycle 30 |
| sukukfi-h01-unauthorized-withdraw | SukukFi | Critical | $100,000 - $500,000 | Cycle 31 |
| megapot-h01-arbitrary-bridge-call | Megapot | High | $20,000 - $100,000 | Cycle 35 |
| megapot-m08-payout-calculator-temporal | Megapot | Medium | $5,000 - $50,000 | Cycle 69 |
| fresh-launch-immunefi-ssvnetwork | SSV Network | HIGH | $10,000 - $100,000 | Cycle 0 |
| EYE | Status | Last fire | Last line |
|---|---|---|---|
| eye-fresh-small-public | ok | 219 min ago | feed written: /home/babakinzo/bounty/coord/money-lane-leads.json |
| eye-to-idan-bridge | ok | 5 min ago | [2026-07-07T03:55:01Z] eye-bridge: tick complete scanned=0 inserted=0 capped=0 |
| eye1 | ok | 55 min ago | [2026-07-07T03:05:04Z] EYE 1 tick complete: programs+=0 assets+=0 probes_fired=0 tier1_hits=0 |
| eye10 | ok | 219 min ago | [2026-07-07T00:20:44Z] EYE 10 tick complete: hosts=200 new_baselines=0 drifts=6 (issuer=0, san=0, cname=0, a-records=6) |
| eye11 | ok | 29 min ago | [2026-07-07T03:30:08Z] tick complete: contests=299 new_signals=0 tier_1=0 |
| eye12 | ok | 25 min ago | [2026-07-07T03:35:02Z] tick complete: contests=143 new_signals=0 tier_1=0 |
| eye13 | ok | 234 min ago | [2026-07-07T00:05:54Z] EYE 13 scan done: 3 tier-1 + 0 tier-2 pattern hits (0 new across all targets) |
| eye14 | ok | 20 min ago | [2026-07-07T03:40:03Z] tick complete: programs=70 new_signals=0 tier_1=0 |
| eye15 | ok | 234 min ago | [2026-07-07T00:05:58Z] EYE 15 scan done: 4 tier-1 + 37 tier-2 Solana primitive hits (0 new across all targets) |
| eye16 | ok | 229 min ago | [2026-07-07T00:10:32Z] EYE 16 scan done: 51 tier-1 + 93 tier-2 HyperEVM primitive hits (0 new) |
| eye17 | ok | 224 min ago | [2026-07-07T00:15:22Z] EYE 17 scan done: 3 tier-1 + 17 tier-2 cross-bridge primitive hits (0 new) |
| eye19 | ok | 219 min ago | [2026-07-07T00:20:22Z] EYE 19 v0.2 scan done |
| eye2-watchdog | old | 5300 min ago | [2026-07-03T11:40:01Z] watchdog: EYE 2 launched as PID 2265653 |
| eye2 | ok | 0 min ago | [2026-07-07T03:59:51Z] [*] sleeping 15s before reconnect |
| eye20 | ok | 215 min ago | [2026-07-07T00:25:03Z] EYE 20 scan done |
| eye22 | ok | 209 min ago | [2026-07-07T00:30:38Z] EYE 22 scan done |
| eye23 | ok | 195 min ago | [2026-07-07T00:45:03Z] EYE 23 scan done |
| eye26 | ok | 237 min ago | [2026-07-07T00:02:49Z] eye26: DONE total_new=0 total_tier1=0 |
| eye27-scope-db-staleness-detector | ok | 0 min ago | [2026-07-07T04:00:04Z] eye27: [S] Uniswap |
| eye3 | ok | 0 min ago | [2026-07-07T04:00:04Z] EYE 3 tick start: 100 hosts to scan for sourcemaps |
| eye4 | ok | 29 min ago | [2026-07-07T03:30:10Z] EYE 4 tick complete: polled=22 errors=1 new_commits=0 high_signal=0 |
| eye5 | ok | 239 min ago | [2026-07-07T00:00:25Z] EYE 5 tick complete: members=52 new-baselines=0 drift=8 new-exposures=0 |
| Cycle | Verdict |
|---|---|
| Cycle 141 | unknown |
| Cycle 132 | unknown |
| Cycle 131 | unknown |
| Cycle 130 | unknown |
| Cycle 129 | unknown |
| Cycle 128 | unknown |
| Cycle 128 | unknown |
| Cycle 128 | unknown |
| Cycle 126 | unknown |
| Cycle 126 | unknown |
| When (UTC) | Novelty | Taxonomy | Confidence | Brief |
|---|---|---|---|---|
2026-07-03 08:34:02 | NEAR-NOVEL | W-PATHTRAV,W-RCE | NORMAL | Dulwich recursive-clone submodule path traversal drops .git/hooks payload -> RCE; hunt repo-ingesting services. |
2026-07-03 08:33:11 | KNOWN-IN-TAXONOMY | - | LOW | EYE 23 web3-launch ping, empty payload, no URL - nothing to investigate. |
2026-07-03 08:32:54 | KNOWN-IN-TAXONOMY | - | LOW | EYE-11 tick: 1 new tier-1 Sherlock contest detected; needs contest-level resolution before analysis. |
2026-07-03 08:32:20 | NEAR-NOVEL | W1 | NORMAL | Steeltoe kid-only JWKS cache lets one IdP's key validate another's tokens; Web2 auth lane. |
2026-07-03 08:31:42 | KNOWN-IN-TAXONOMY | W1,O1 | NORMAL | SimpleSAMLphp SAML XPath-transform DoS; Web2 SSO lane, transform-allowlist class, DoS-only low yield. |
| Modality | Candidates | HUNT Confirmed | Conversion |
|---|---|---|---|
| Web3 | 5 | 3 | 60.0% |
| Web2 | 12 | 0 | 0.0% |
| Mobile | 1 | 0 | 0.0% |
| Code | Name | Modality | Priority | Source Book |
|---|---|---|---|---|
PROP_LAYER7SLOWLORISASYMMETRIC | Layer7SlowlorisAsymmetric | web2 | 0.772 | Chang Tan - Ultimate Cyberwarf |
PROP_SLOWLORISAPPLICATIONDDOS | SlowlorisApplicationDDoS | infra | 0.676 | Chang Tan - Ultimate Cyberwarf |
PROP_SOCIAL_MEDIA_PROFILE_TARG | Social-Media-Profile-Targeting | web2 | 0.670 | threathuntingwithelasticstack. |
PROP_DOM_CLOBBERING | DOM-Clobbering | web2 | 0.666 | Web_Hacking_Arsenal.pdf |
PASTE_JWTKIDPATHTRAVERSALEMPTY | JWTKidPathTraversalEmptyKey | web2 | 0.666 | manual_paste_podcast |
PROP_PASSIVEOSINTSURFACEMAPPIN | PassiveOSINTSurfaceMapping | web2 | 0.658 | CEH_v12_Certified_Ethical_Hack |
PROP_TROJANIZEDTHIRDPARTYINSTA | TrojanizedThirdPartyInstaller | cross-domain | 0.658 | Hacking the Hacker.pdf |
PROP_TLS_DOWNGRADE_STRIP | TLS-Downgrade-Strip | web2 | 0.658 | Security + 701 Book.pdf |