Permissionless-pool lending oracle

Maple Finance's assessment for RD-F-181 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

MapleGlobals oracle system requires governor-configured oracle addresses (onlyGovernor for setPriceOracle). No permissionless pool oracle acceptance. All oracle sources are whitelisted Chainlink feeds. No permissionless listing mechanism for oracle sources.

Detail #

setPriceOracle() is onlyGovernor — adding a new oracle source requires a governance action. No factory-pattern or permissionless oracle registration path exists in MapleGlobals. Protocol cannot accept spot prices from permissionlessly-created pools.

Sources #

GitHub
MapleGlobals source — permissioned oracle configurationMapleGlobals.sol setPriceOracle — onlyGovernor access controlretrieved 2026-04-27

Methodology #

Determine whether the lending protocol accepts spot prices from a DEX where any user can permissionlessly create new pools, without requiring a TWAP window, liquidity floor, or token-age minimum on the venue side.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol maple-finance factor RD-F-181 score green collected_at 2026-04-27 05:38:08