ERC-4626 virtual-share offset (OZ ≥4.9)
Stake DAO's assessment for RD-F-074 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Per PD-024, ERC-4626 vault virtual-share offset is a lending-specific factor. Stake DAO's RewardVault (ERC-4626) at 0x74D8dd40118B13B210D0a1639141cE4458CAe0c0 is a yield-aggregation / staking reward wrapper, not a lending market. Source verification confirmed no virtual decimals offset (_decimalsOffset) is implemented in the RewardVault — noted for transparency but does not change the not_applicable classification because the vault is not a lending market. Multiple audits (Trust Security 2025-04, Pashov 2025-08, Omniscia 2025-05/09) cover staking v2 and do not flag first-depositor inflation attacks, consistent with the vault's non-lending classification.
Sources #
- EtherscanRewardVault Contract — EtherscanRewardVault at 0x74D8dd40118B13B210D0a1639141cE4458CAe0c0: source-verified, ERC-4626 compliant, no virtual decimals offset implemented. Implements deposit/mint/withdraw/redeem/convertToAssets/convertToShares.retrieved 2026-05-16
- Stake DAO Protocol Profile §800-profile.md §8: Trust Security 2025-04 (staking v2), Pashov 2025-08 (staking v2 + Morpho), Omniscia 2025-05/09 (staking v2) — multiple audits of the ERC-4626 staking system without first-depositor inflation findingsretrieved 2026-05-16
Methodology #
Determine whether ERC-4626 vaults use OpenZeppelin ≥4.9 virtual-share offset pattern to prevent first-depositor share-inflation.
See the full factor methodology and distribution across all protocols →