Known-exploit function-selector replay

Venus Protocol's assessment for RD-F-095 — scored not_assessed on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

v1-deferred per T-09 §3.3. The Compound-fork donation attack vector (direct ERC-20 transfer to vToken contract bypassing supply cap) is a documented replay pattern. If a known-exploit-replay signal were wired, the direct-transfer-to-vToken selector pattern would be the trigger. Not available in v1 production pipeline.

Sources #

URL
https://blocksec.com/blog/venus-thena-donation-attackretrieved 2026-05-06

Methodology #

Detect whether a call-pattern matches a known-exploit replay template (specific selector sequence and calldata shape) against this protocol.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol venus factor RD-F-095 score not_assessed collected_at 2026-04-28 18:30:49