Permissionless-pool lending oracle

BENQI's assessment for RD-F-181 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

BenqiChainlinkOracle for core markets uses Chainlink push-feeds mapped by symbol hash — not a DEX venue where users can permissionlessly create new pools. Isolated Markets use Chaos Labs + Chainlink push-oracles. No permissionless pool-creation path exists in the oracle acceptance layer. The Rhea Finance attack vector (fake pools accepted by oracle from permissionless venue) structurally cannot occur here. Not applicable by oracle architecture type.

Sources #

Internal
Profile §7 — oracle architecturerisk-dashboard/.research/protocols/benqi/00-profile.md §7 — oracle architecture uses Chainlink push-feedsretrieved 2026-05-16
Etherscan
BenqiChainlinkOracle verified source (Snowscan)BenqiChainlinkOracle source — oracle feeds set via setFeed(symbol, address) by admin, not accepted from permissionless pool factoryretrieved 2026-05-16

Methodology #

Determine whether the lending protocol accepts spot prices from a DEX where any user can permissionlessly create new pools, without requiring a TWAP window, liquidity floor, or token-age minimum on the venue side.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol benqi factor RD-F-181 score not_applicable collected_at 2026-05-16 11:02:12