Chainlink aggregator min/max bound misconfig

Venus Protocol's assessment for RD-F-060 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

ChainlinkOracle.sol validates only positive prices (answer <= 0 reverts). No upper-bound check for anomalously high prices. No explicit Chainlink aggregator minAnswer/maxAnswer validation. BoundValidator provides indirect upper bound via anchor ratio, but this is cross-validated against another oracle (not the Chainlink aggregator's own min/max). LUNA 2022 incident involved Chainlink pausing at a floor value — current maxStalePeriod check mitigates the specific LUNA scenario (stale pause triggers revert) but upper-bound gap remains.

Sources #

URL
Venus Protocol Loses $11M — Chainlink LUNA SuspensionBeInCrypto LUNA oracle incident — Chainlink suspensionretrieved 2026-04-28
GitHub
ChainlinkOracle.sol sourceChainlinkOracle.sol — only checks answer > 0, no upper boundretrieved 2026-04-28

Methodology #

Determine whether the Chainlink aggregator's `minAnswer` and `maxAnswer` circuit-breaker bounds are misconfigured (too wide or too narrow) for the asset class.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol venus factor RD-F-060 score yellow collected_at 2026-04-28 18:30:49