QX DeFi Risks Compass
  • 💡GETTING STARTED
    • About
    • License
    • How to Give Attribution For Usage of QX DeFi Risks Compass
  • 🏦Risks in TradFI
    • Global Finance - Key Framework
    • Risk Frameworks
    • Basics I - Terminology & Concepts
  • ⛓️RISKS IN DEFI
    • Deciphering DeFi Risks
    • DeFi Risk Management
    • EEA DeFi Risk Assessment Guidelines
    • Basics II - DeFi
  • 🥷Systematic Risks
    • Market Risk
      • Defining Market Risk
      • Assessing Market Risk
      • Managing Market Risk
      • In Practice
      • Liquidity Risk
        • Defining Liquidity Risk
        • Assessing Liquidity Risk
        • Managing Liquidity Risk
        • In Practice
    • Compliance & Legal Risk
      • Defining Compliance & Legal Risk
      • Assessing Compliance Risk
      • Managing Compliance Risk
      • In Practice
    • Bridge Risk
      • Defining Bridge Risk
      • Assessing Bridge Risk
      • Mitigating Bridge Risk
      • In Practice
    • Oracle Risk
      • Defining Oracle Risks
      • Assessing Oracle Risks
      • Managing Oracle Risks
      • In Practice
  • 🥷UNSYSTEMATIC RISKS
    • Software Risk
      • Defining Software Risks
      • Assessing Software Risks
      • Managing Software Risks
      • In Practice
    • Economic/Financial Risks
      • Defining Economic Risks
      • Assessing Economic Risks
      • Managing Economic Risks
      • Tokenomics Risk
        • Defining Tokenomics Risks
        • Assessing Tokenomics Risk
        • Managing Tokenomics Risk
      • MEV Risk
        • Defining MEV Risk
        • Assessing MEV Risk
        • Managing MEV Risk
      • Credit Risk
        • Defining Credit Risk
        • Assessing Credit Risk
        • Managing Credit Risk
    • Governance Risk
      • Defining Governance Risk
      • Assessing Governance Risk
      • Managing Governance Risk
    • Standards Conformance Risks
      • Defining Standards Conformance Risks
      • Assessing Standards Conformance Risks
      • Managing Standards Conformance Risks
    • Security Risk
      • Security Risk Assessment
      • Security Risk Mitigation
Powered by GitBook
On this page
  1. UNSYSTEMATIC RISKS

Security Risk

Smart contract risk focuses on measuring the technical security of the underlying code for any asset. Only code for assets that have undergone rigorous audits by well-respected auditors are appropriate for the Aave protocol. Beyond audits, smart contract risk remains (i.e., it can never be eliminated fully) and users must be vigilant in assessing such risk. Bug bounties can be used to help reduce smart contract risk. The maturity of any code can be assessed based on the number of days and the number of transactions with a particular smart contract — use, community, development and, in some instances, reliability are proxies for how battle-tested the code is.

Smart contract hacks have already resulted in billions of funds lost. Accordingly, tokens with the highest smart-contract risk (i.e., D+ and below), are extremely risky collaterals. They should only be onboarded with strict risk mitigation such as supply caps or isolation mode.

PreviousManaging Standards Conformance RisksNextSecurity Risk Assessment

Last updated 1 year ago

🥷