ARGUS Dashboard

Detail (click to expand)

🎯Active Findings 2 ▶

Finding	Target	Severity	Est. Payout	Status
Polymarket NegRiskOperator DELAY_PERIOD=0 post-audit regression	Polymarket (Cantina, $5M pool)	CRITICAL	$200K-$1M	SUBMITTED Cantina Finding #570 - 2026-05-10 20:17 UTC, status New (pending triage)
dYdX v4 Megavault equity asymmetry	dYdX v4 (Cantina)	HIGH	$150K-$1M	Banked-not-submitted (audit-adjacent: 2024-Q2 Informal Systems INFORMATIONAL)

✋Recent Walks (Methodology Defense) 11 ▶

Date	Target	Reason	Saved
2026-05-10	Compound V3 (out-of-methodology-scope, no in-repo audits)	Sub-rule 38.1 - Compound publishes audits externally not in-repo. Methodology pivot needed.	50min Buddy time + clean methodology calibration
2026-05-10	Pendle Finance v2 (saturated)	22 audits / 8+ firms. 4/5 fix-class candidates MATCH at HEAD. Rule 38 saturation.	50min Buddy time + audit-saturation pattern data
2026-05-10	Morpho Blue (clean fixes)	3 audits parsed, 2 fix-class candidates checked, both MATCH at HEAD. Strong audit-response discipline.	Calibration data: Morpho Labs preserves audit fixes.
2026-05-09	Reserve Protocol Cantina ($10M pool)	Audit-saturation: 16+ prior audits cover backing-basket/issuance/redemption surfaces. Step 1 audit-coverage check killed candidate in 55 min.	Cantina submission slot + 3-4h Buddy time
2026-05-09	dYdX v4 Cantina (Cosmos hook ordering)	Architecture mismatch - dYdX uses direct keeper imports + ABCI order, not hooks pattern. Banked sub-rule under Rule 36.	Cantina submission slot + 4-6h Buddy time
2026-05-08	Fireblocks MPC Bugcrowd	Pattern A docs explicitly require event_id dedup (Rule 34 sub-rule)	Bugcrowd submission slot
2026-05-08	Centrifuge V3.1 Sherlock contest 1028	Contest finished Nov 17 2025 (Rule 35)	Sherlock submission slot - pivoted to direct disclosure
2026-05-08	Babylon Phase-2 cycles 1+2	Disclosed GHSAs already public + Skeptic gate 4 unconfirmed	2 Sherlock submission slots

📚Rules Banked 39 ▶

#	Rule	Date	Summary
RULE 39	Documented-intended-behavior pre-submit check (Skeptic Gate 4.5)	2026-05-10	5 sub-gates: NatSpec / existing tests / architectural docs / audit-acknowledged / auth-gating. ALL must PASS. Founder: Centrifuge close. INVERSE pattern (docs CONTRADICT code) = strong finding signal, founder Auth0 + Polymarket.
RULE 38.3	Audit-date vs repo-HEAD-date check (Sub-rule, PROVEN 2026-05-10)	2026-05-10	If audit_date > repo_HEAD_date, public repo is stale snapshot. Bug visible cannot be promoted to live without deployment verification. Behavior-test via RPC = 25min, vs hours for bytecode decompile. Vesu founder case + saved $100 false-positive.
RULE 38.2	Audit-named-commit verification (Sub-rule)	2026-05-09	If audit says 'Resolved in commit X' and X not in git log --all, mark NEEDS-FOLLOW-UP not REGRESSION. Could be curated mirror. Pendle PR 526 founder case.
RULE 38.1	Pre-flight applicability check (Sub-rule)	2026-05-09	Confirm audits/ dir or README links audits BEFORE firing Rule 38. If neither, pivot to different primitive or allocate external-audit-fetch budget. Compound V3 founder case.
RULE 38	Post-audit regression hunting primitive	2026-05-09	Audit findings marked RESOLVED/FIXED can REGRESS, often buried in unrelated PRs. Pull audits + grep current code + diff = HIGH-EV bug class. Polymarket DELAY_PERIOD founder.
RULE 37	Adapt primitive to architecture, don't walk on mismatch	2026-05-09	Walks belong to scope/status/saturation - NOT architecture-mismatch. Audit primitives compound at INVARIANT level.

📊Programs & Scope 891 programs ▶

Programs

891

891 active / 0 suspended

In-Scope Assets

45,296

across all programs

Vendor Clusters

52 members

Total Signals

2,397

cumulative all EYEs

🚨Signal Tiers 12 T1 / 789 T2 / 1,596 T3 ▶

Tier-1 Alerts

submission-worthy

Tier-2 Signals

789

deferred / follow-up

Tier-3 Signals

1,596

tracking / informational

Unprocessed 24h

awaiting Brain

👁️EYE Breakdown 2,397 signals across 9 EYEs ▶

EYE_0: 26EYE_1: 1000EYE_2: 0EYE_3: 18EYE_4: 665EYE_5: 564EYE_10: 124EYE_11: 0EYE_12: 0

📡Recent Tier-1 + Tier-2 Signals 30 ▶

Tier	EYE	Type	Target	Detected
Tier-2	EYE 10	all-a-records-migrated	www.yeswehack.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	www.microsoft.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	itunes.apple.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	auth.immutable.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	api.x.immutable.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	docs.immutable.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	www.shffls.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	docs.sophos.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	www.sophos.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	www.assurancewireless.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	docsite.vistarmedia.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	digits.t-mobile.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	tfb.t-mobile.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	devedge.t-mobile.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	sprint.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	api.t-mobile.com	3h ago
Tier-2	EYE 10	all-a-records-migrated	account.t-mobile.com	3h ago
Tier-2	EYE 4	github-commit-new	https://github.com/anza-xyz/agave	7h ago
Tier-2	EYE 10	all-a-records-migrated	www.yeswehack.com	9h ago
Tier-2	EYE 10	all-a-records-migrated	docs.immutable.com	9h ago
Tier-2	EYE 10	all-a-records-migrated	www.shffls.com	9h ago
Tier-2	EYE 10	all-a-records-migrated	auth.immutable.com	9h ago
Tier-2	EYE 10	all-a-records-migrated	api.x.immutable.com	9h ago
Tier-2	EYE 10	all-a-records-migrated	wiki.atom-lens.com	9h ago
Tier-2	EYE 10	all-a-records-migrated	signature.blis.com	9h ago

📂Sourcemap Captures (EYE 3) 9 ▶

Host	Path	Size	Files	Recovered
wallet.opensea.io	/assets/index-C_N1jGkP.js.map	9197.9 KB	1237	18h ago
marketplace.auth0.com	/_next/static/chunks/pages/_app-5472c689...	5696.1 KB	1213	1d ago
marketplace.auth0.com	/_next/static/chunks/pages/index-f374b1d...	0.5 KB	1	2d ago
marketplace.auth0.com	/_next/static/chunks/framework-67c9938e3...	183.8 KB	9	2d ago
wallet.opensea.io	/assets/index-DGk1JYWX.js.map	9197.9 KB	1237	2d ago
marketplace.auth0.com	/_next/static/chunks/webpack-5aadf7b0e00...	13.4 KB	21	3d ago
marketplace.auth0.com	/_next/static/chunks/main-7e69766e8eff35...	656.8 KB	134	3d ago
clients.adstruc.com	/static/js/main.45ab4b31.js.map	15953.6 KB	2141	3d ago
wallet.opensea.io	/assets/index-BWT8Nbv7.js.map	9197.9 KB	1237	3d ago

🔧Recent High-Signal GitHub Commits (EYE 4) 12 of 23 watched repos ▶

Repo	Label	SHA	Message	Committed
coinbase/smart-wallet	security	`e7fde11a50fa`	Add SECURITY.md (#167)	12d ago
Uniswap/v4-periphery	generic_bypass	`9dafaaecc1e2`	fix: pin npm to specific version in deploy workflow (#520)	38d ago
babylonlabs-io/babylon	security	`d00e68415909`	chore(deps): bump google.golang.org/grpc from 1.77.0 to 1.79.3 in the go_modules group acr	47d ago
babylonlabs-io/babylon	security	`65d793a0a8b8`	ci: enhance backport workflow security (#1977)	55d ago
Uniswap/UniswapX	security	`9c8f9017a694`	fix: resolve zizmor GitHub Actions security findings (#362)	61d ago
Uniswap/v4-periphery	security	`cfa74b47304d`	fix: resolve zizmor GitHub Actions security findings (#515)	61d ago
babylonlabs-io/babylon	security	`0a2d17d8df02`	chore(deps): bump the go_modules group across 1 directory with 4 updates (#1974)	69d ago
dydxprotocol/v4-chain	security	`07b2c964e689`	upgrade cometbft and cosmos-sdk for tachyon security fix (#3320)	104d ago
Uniswap/UniswapX	security	`687d9e122082`	fix(DCA): dca allocation bug (#360)	107d ago
Uniswap/UniswapX	security	`898d71736220`	ci: integrate Nethermind Audit Agent for automated security scanning (#357)	109d ago
Truelayer/truelayer-signing	security	`868e7e7c04ba`	Bump Python library from 0.3.7 to 0.3.8 (#343)	296d ago
Uniswap/v4-core	security	`5f00c8416c19`	Safer readme example (#961)	403d ago

⚖️Sherlock Contest Watcher (EYE 11) 0 active / 297 tracked / $0 active pool ▶

Top active contests

Title	Pool	Status	Ends
No active Sherlock contests right now.

Recent state transitions

Title	Transition	Pool	Detected
No Sherlock transitions yet.

🏆Cantina Contest Watcher (EYE 12) 0 active / 142 tracked / $0 active pool ▶

Top active contests

Title	Pool	Status	Ends
No active Cantina contests right now.

Recent state transitions

Title	Transition	Pool	Detected
No Cantina transitions yet.

🏢Vendor Clusters 9 ▶

Cluster	Members
FDJ-Kindred	16
ByteDance-TLB	8
Atlassian-Edge	7
Salesforce-Experience-Cloud	6
Apple-Geneva-Staging	5
Intergamma	4
IDnow	2
Mozilla-allizom-Staging	2
AutoDiscovered-GitRepo-intergamma/shopfront	2

🔄Recent State Transitions 3 ▶

Host	Note	Detected
-	state changed suspended->active	2d ago
-	state changed suspended->active	3d ago
-	state changed active->suspended	3d ago

Snapshot

Detail (click to expand)

Top active contests

Recent state transitions

Top active contests

Recent state transitions