defirisk.co
rubric v1.7.0

Post-exploit response score

Liquity V1 + V2 (LUSD / BOLD)'s assessment for RD-F-081 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No production exploit against mainnet users has occurred in either v1 (61 months) or v2 (12 months). Post-exploit response score requires a reference incident. The Feb 2025 pre-launch Stability Pool disclosure (zero user loss) provides favorable qualitative evidence: same-day disclosure, transparent multi-stage communication, full redeploy after extensive re-auditing — but is classified as pre-launch, not a production exploit per invocation brief U2.

Sources #

  • URL
    V2 Redeployment UpdatesLiquity v2 redeployment blog documenting pre-launch Stability Pool vulnerability response (Feb 12 disclosure, May 19 relaunch)retrieved 2026-05-16

Methodology #

Curator-score (1–5) the most recent incident response on: compensation completeness, transparency of disclosure, root-cause analysis depth, and operational recovery speed.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol liquity factor RD-F-081 score gray collected_at 2026-05-16 10:35:50