Sui Validator Security Benchmark — September 2025
Abstract
This article summarizes PGDN’s September 2025 validator security dataset for the Sui ecosystem. The benchmark provides a transparent baseline of validator posture using a consolidated scoring model; it intentionally excludes vulnerability specifics (e.g., CVE lists) to avoid sensitive disclosures while still enabling comparison and improvement over time.
Methodology
- Publicly reachable validator endpoints were scanned using PGDN’s framework.
- Each validator received a 0–100 composite score derived from non-sensitive indicators of security posture and reliability.
- Data collected: 122 validators; 119 with valid scores.
Key Findings (September 2025)
- Score distribution ranged from 15 to 93.
- Median score: 45.
- 18.5% of validators met or exceeded the recommended “good practice” threshold of 70.
Data Outputs
- Interactive Heatmap: https://pgdn.ai/heatmaps/2025-09-sui
- Research Repo: https://github.com/pgdn-network/pgdn-research/blob/main/reports/2025-09-sui.md
Validator Tools
Validators can query and rescan their scores through the PGDN Sentinel Discord Bot, and claim ownership for enhanced analytics.
Privacy & Safety
To promote responsible disclosure, PGDN publishes consolidated scores only in public datasets. Detailed findings, where applicable, are communicated privately with operators upon verification of ownership.
Conclusion
This benchmark is intended as a positive ecosystem health check. By publishing consolidated scores openly, PGDN supports validator communities in raising standards and strengthening decentralized networks. Monthly updates will provide ongoing visibility into improvements and trends.
Full Article
You can read the full article on our blog here
PGDN.ai conducts independent research into decentralized infrastructure security. Our mission: expose systemic risks before they cascade into systemic failures.
Related Posts
Sui Validators: A Billion-Dollar Liability
PGDN.ai’s scan of the Sui validator set found nearly 40% of voting power exposed. Misconfigurations, open ports, and unpatched CVEs turn Sui’s ‘critical infrastructure’ into a billion-dollar liability.
PGDN Sentinel: Bringing External Security Scores to Discord
PGDN Sentinel is a lightweight Discord bot for Sui validators that checks your node’s external security posture and benchmarks it against the network. Instantly see what attackers can see - open ports, CVEs, misconfigurations - and unlock deeper insights by proving node ownership. Simple, private, and right where operators already work: inside Discord.
Validator Slashing Incidents Are a Warning. Sui Could Be Next.
Recent Ethereum validator slashings showed how fragile infra can be. Our scan of Sui uncovered something worse: nearly 40% of validator voting power exposed.