Gate News bot message, Interchain Labs (ICL) has confirmed that an individual later identified as having ties to North Korea was employed by former maintainers from 2022 to 2024 and contributed to the Cosmos codebase. This Cosmos core developer collaborated with Security Alliance ( and Asymmetric Research to release a security report confirming that the individual's access to two codebases was limited: cosmos/IAVL and cosmos/cosmos-sdk. The review found that most of the code he contributed had been deprecated or removed from the roadmap following the SDK v2 deprecation, and no residual risks or vulnerabilities were found in the independent audit. However, to enhance transparency, ICL will offer double rewards on the Cosmos HackerOne page next month for anyone who discovers any qualifying vulnerabilities related to the participant's GitHub account "cool-develope."

PANews, June 16 news, according to The Block report, Interchain Labs has confirmed that an individual, later identified as being associated with North Korea, was employed by a former maintainer during the period from 2022 to 2024 and contributed to the Cosmos codebase. This individual had limited access to the cosmos/IAVL and cosmos/cosmos-sdk codebases, and most of their contributed code has been deprecated or excluded from the roadmap, with independent audits finding no security vulnerabilities. To support transparency, ICL will offer a month of double rewards on the Cosmos HackerOne page for discovering vulnerabilities related to this participant's GitHub account. After ICL took over core stack development, new security protocols were implemented to prevent further contributions, and the individual was rejected when reapplying for a position. ICL has addressed all Co