defirisk.co
rubric v1.7.0

Permissionless-pool lending oracle

Dolomite's assessment for RD-F-181 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Dolomite's asset listing is governed and curated, not permissionless. New markets are added by admin via ownerAddMarket() requiring GnosisSafe/PartiallyDelayedMultiSig authorization and 1-day timelock. The oracle for each market is set at market creation by admin. Users cannot create new markets or oracle sources permissionlessly. Isolation Mode module adds a wrapper layer but asset listing within it remains curated by Dolomite governance. F181 condition (permissionless DEX-pool oracle acceptance) is not met.

Sources #

  • Docs
    Admin Privileges — Dolomitedocs.dolomite.io/admin-privileges — ownerAddMarket requires admin (GnosisSafe + timelock) authorizationretrieved 2026-05-16
  • GitHub
    AdminImpl.sol — ownerAddMarketdolomite-exchange/dolomite-margin/blob/master/contracts/protocol/impl/AdminImpl.sol — ownerAddMarket requires admin role; market creation is admin-gatedretrieved 2026-05-16

Methodology #

Determine whether the lending protocol accepts spot prices from a DEX where any user can permissionlessly create new pools, without requiring a TWAP window, liquidity floor, or token-age minimum on the venue side.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dolomite factor RD-F-181 score green collected_at 2026-05-16 11:12:56