BlackHartBlackHart
Scores/Across Protocol/Provenance/Supply Chain
D8

Supply Chain

Compiler version CVEs, library dependencies, build reproducibility, and proxy pattern risk.

Weight 4%55% confidence
69
Moderate
info

How This Score Is Built

Compiler version CVEs, library dependencies, build reproducibility, and proxy pattern risk.

+23Strong positive
+12Positive
+5Slight positive
−15Strong negative
−8Negative
−3Slight negative

Score Composition

+23

Standard Solidity + OpenZeppelin base

Positiveopen_in_newGitHub Supply ChainMay 4, 2026
+23

MerkleLib is custom but well-audited

Positiveopen_in_newGitHub Supply ChainMay 4, 2026
+23

UMA SDK dependency is external but mature

Positiveopen_in_newGitHub Supply ChainMay 4, 2026

Evidence Chain (2 files)

GitHub APIMay 17, 2026, 06:58 PM
open_in_newGitHub (/)
sha256:5599ecdc6b55...
BlackHart AnalysisMay 4, 2026, 11:30 PM
open_in_newSupply Chain — GitHub Supply Chain
sha256:d5d53911c8bd...

Score History

Automated pipeline dimension update
Automated pipeline dimension update
Automated pipeline dimension update
How is Supply Chainscored? →← Back to Provenance Ledger