ERC-4626 virtual-share offset (OZ ≥4.9)
Superstate's assessment for RD-F-074 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
USTB and USCC tokens are not ERC-4626 vaults. They implement ERC-20 with ERC-7246 extensions (allowance-based lockup). Share value is set by fund NAV via Chainlink/SuperstateOracle, not by deposited assets in a vault ratio. No first-depositor-inflation attack surface via vault share accounting. Taxonomy §Cat 4 PD-024: ERC-4626 virtual-share offset is lending-only context.
Sources #
- Audit0xMacro superstate-2 audit (2024-07-10)0xMacro superstate-2 scope: SuperstateToken.sol, USCC.sol, USTB.sol implement ERC-20 + ERC-7246 + Permit — no ERC-4626 interface in scoperetrieved 2026-05-16
Methodology #
Determine whether ERC-4626 vaults use OpenZeppelin ≥4.9 virtual-share offset pattern to prevent first-depositor share-inflation.
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol superstate factor RD-F-074 score not_applicable collected_at 2026-05-16 00:06:37