Dependency graph (protocols depended upon)

Yearn Finance's assessment for RD-F-050 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

External protocol dependencies: V2 strategies — Aave v1/v2, Compound v2, Curve (3pool/yPool/sETH), Convex, dYdX (deprecated), Uniswap v2/v3. V3 strategies — Morpho, Aave v3, Curve/Convex, Sushi, Katana DEX. Yearn docs explicitly document failure modes per protocol type: lending (governance risk, smart contract vuln, liquidation failures, incorrect price feed causing liquidation), AMMs (liquidity shortages, impermanent loss), leverage (oracle-driven liquidation failures). Multi-protocol diversification reduces single-point risk. Prior incidents show Curve manipulation (2021 yDAI) and Fulcrum misconfiguration (2023 yUSDT/TUSD) as realized dependency failures. Yellow: major dependencies, known failure modes, prior realized risk, no single critical unredundant dependency.

Sources #

URL
Rekt.news — Yearn Finance Feb 2021 exploityearn-rekt1: 2021-02-04 yDAI Curve pool manipulation — dependency failure realizedretrieved 2026-05-16
Docs
Yearn Finance Protocol Risks documentationYearn protocol risk page listing Aave/Morpho/Curve/AMM failure modes explicitlyretrieved 2026-05-16
URL
Rekt.news — Yearn Finance Apr 2023 exploityearn2-rekt: 2023-04-13 Fulcrum address misconfiguration — V1-era dependency failureretrieved 2026-05-16

Methodology #

List all external protocols whose failure would directly impair this protocol (LST providers, bridges, stablecoin issuers, keepers).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol yearn-finance factor RD-F-050 score yellow collected_at 2026-05-16 08:34:32