币界网报道：Interchain Labs has disclosed that an individual associated with North Korea contributed to Cosmos repositories between 2022 and 2024 while employed by former maintainers. The individual had limited access to two repositories—cosmos/IAVL and cosmos/cosmos-sdk—with most contributions later deprecated or excluded from the roadmap after SDK v2's cancellation. Independent audits found no remaining risks. To ensure transparency, ICL is offering double bounties for vulnerabilities linked to the GitHub account "cool-develope" on Cosmos' HackerOne page. The individual reapplied for a position after ICL took over core development but was rejected due to enhanced security protocols. Since February, ICL has implemented extensive security upgrades, including credential rotation and stricter audit controls. ICL co-CEO Barry Plunkett emphasized the need for rigorous security standards, noting no malicious code was found but encouraging community review via the bounty program. Asymmetric Research CEO Jonathan Claudius highlighted the importance of proactive security in open-source ecosystems. This follows earlier concerns by Cosmos co-founder Jae Kwon about North Korean-linked developers contributing to the Cosmos Hub's liquid staking module without proper vetting.