Oracle price deviation >X% from secondary
Chainlink CCIP's assessment for RD-F-099 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
CCIP is the oracle infrastructure, not an oracle consumer. CCIP's core contracts do not consume external price feeds for internal rate-limiting or message-validation decisions. Token pools use static token-bucket parameters (absolute token quantities), not oracle-fed USD pricing. CCIP has no lending book, no collateral pricing, no oracle dependency in the Cat 3 sense. This signal is structurally inapplicable to CCIP's own operation. Note: Downstream protocols that USE CCIP (e.g., Aave GHO, Coinbase Wrapped Assets) may consume Chainlink price feeds separately, but those are not CCIP's internal dependency.
Sources #
- InternalChainlink CCIP profile — external dependencies section.research/protocols/chainlink-ccip/00-profile.md §7 — oracle dependency: none in the CCIP-calls-Chainlink-feeds sense; CCIP IS the oracle layerretrieved 2026-05-16
- CCIP Architecture OverviewCCIP architecture overview — no external oracle dependency; token pools use static token-bucket rate limits not oracle-fedretrieved 2026-05-16
Methodology #
Detect whether the primary oracle's reported price deviates >X% from the best available secondary source (another feed or venue).
See the full factor methodology and distribution across all protocols →