Known-exploit-template selector deployed by any address

Circle USYC's assessment for RD-F-162 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

USYC is a bespoke permissioned RWA token - standard DeFi exploit-template database (reentrancy loops, flash-loan oracle attacks) does not apply to this protocol class. A targeted exploit template would need to attack the Entitlements bypass, proxy upgrade, or minting authority - all requiring admin-key compromise rather than permissionless contract interaction. No on-chain deploy sweep performed. No public reports of known-exploit-template targeting permissioned RWA token architecture.

Sources #

Etherscan
USYC ERC-20 Token ProxyUSYC Ethereum proxy - permissioned token architecture; no permissionless attack surfaceretrieved 2026-05-16

Methodology #

Determine whether any contract has been deployed containing a function-selector pattern matching a known exploit template targeting protocols of this class.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol circle-usyc factor RD-F-162 score gray collected_at 2026-05-15 21:56:43