BlackHartBlackHart
Scores/Aave V3

Aave V3

MITHRIL

Lending / Borrowing · Multi-chain · $15B+ TVL · 30 contracts

Confidence 87%Z-Factor 0.87Updated 2026-05-06Public Score

Public risk assessment — scores are produced with the same methodology as monitored protocols

912
BRI Score
3004756508251000

Security Profile

Access Ctrl
90
Economic
91
Oracle
85
Compos.
78
Govern.
92
Maturity
95
Resilience
96
Supply Ch.
90
OpSec
85
Cascade
55
Min
55
Avg
86
Max
96

Audit History

Trail of Bits
2022-01Report →
Certora (Formal Verification)
2023-01Report →
Sigma Prime
2022-01Report →
Peckshield
2022-01Report →

Bug Bounty Program

$1,000,000
Max payout on Immunefi
View Program →

Assessment

Gold standard lending protocol. Zero validated findings, 38-month V3 track record, org since 2017. IRRATIONAL game equilibrium confirms no profitable deviation. 880 reflects massive structural surface area (991 nodes, 2601 edges) balanced by exceptional defense depth. Near-ADAMANTINE but Chainlink dependency and flash loan callback surface prevent top tier.

Dimension Breakdown

How scores work →
Access Control
Weight 18%88% conf
90
Excellent
  • 8 modifiers: ifAdmin, onlyPoolConfigurator, onlyPoolAdmin, onlyPositionManager, onlyUmbrella, initializer, onlyPool
  • Internal check functions: _onlyPoolConfigurator, _onlyPoolAdmin, _onlyPositionManager
  • Role-based ACL: hasRole, getRoleAdmin, grantRole, revokeRole, renounceRole
  • 958 function authority entries in graph
  • Emergency pause via onlyPoolAdmin with 3600s response time
Economic Soundness
Weight 13%90% conf
91
Excellent
  • Health factor model: calculateUserAccountData with 15 call edges (thorough validation)
  • validateBorrow: 24 call edges (most complex validation function)
  • validateLiquidationCall: 15 call edges checking health factor thresholds
  • Flash loan exists: FLASHLOAN_PREMIUM_TOTAL, FLASHLOAN_PREMIUM_TO_PROTOCOL (fee-configurable)
  • Isolation mode: isolationModeTotalDebt with 3 writers provides isolation
  • 16 events track all value operations: Supply, Withdraw, Borrow, Repay, FlashLoan, LiquidationCall
Oracle Integrity
Weight 13%85% conf
85
Strong
  • ADDRESSES_PROVIDER (immutable): oracle indirection via provider pattern
  • RESERVE_INTEREST_RATE_STRATEGY (immutable): externalized rate computation
  • getReserveNormalizedIncome, getReserveNormalizedVariableDebt: internal oracle functions
  • eMode categories add oracle complexity (10 writers to _eModeCategories)
  • Slight deduction: single oracle provider dependency (Chainlink)
Battle-Tested Maturity
Weight 12%95% conf
95
Excellent
  • V3 live since March 2023 (38 months), V2 since 2020, V1 since 2020, org since 2017
  • Zero protocol-level exploits across any version
  • Multiple audit firms, continuous auditing program
  • Formally verified core contracts
  • Z-factor: 0.866
Governance & Upgradeability
Weight 10%90% conf
92
Excellent
  • Timelocked governance execution via external governance contracts
  • onlyPoolConfigurator gates: initReserve, dropReserve, setConfiguration, updateFlashloanPremium, configureEModeCategory*
  • onlyPoolAdmin gates: syncIndexesState, syncRatesState, setLiquidationGracePeriod, rescueTokens, eliminateReserveDeficit
  • onlyUmbrella: specialized insurance/umbrella operations
  • Guardian multisig for emergency actions
Adversarial Resilience
Weight 10%95% conf
96
Excellent
  • Score derived from continuous adversarial security research
Operational Security
Weight 10%80% conf
85
Strong
  • Aave Companies manages operations professionally
  • Defender min response time: 3600s (1 hour) via emergency pause
  • Multi-chain deployment infrastructure
  • Active monitoring and parameter adjustment
Compositional Risk
Weight 5%82% conf
78
Good
  • 1019 call edges show high internal composition complexity
  • Top fan-out: mint(28), validateBorrow(24), initialize(23), executeFlashLoan(22)
  • Flash loan callback: executeOperation creates cross-boundary composition
  • 3 composition type errors: FL->_handleFlashLoanRepayment(missing R), getSiloedBorrowingState->isBorrowingOne
  • 5 compound chains identified (M+M->C via delegatecall bypass) - structural only
  • multicall enables transaction batching with composition risk
Cascade Exposure
Weight 5%90% conf
55
Moderate
  • Appears in 9 cross-protocol cascade chain(s)
  • Member of 9 dependency cluster(s)
  • Score: 55/100 (higher = more isolated from systemic risk)
  • Source: cross_protocol_composition.json dependency analysis
Supply Chain
Weight 4%92% conf
90
Excellent
  • OpenZeppelin libraries (industry standard)
  • Modern Solidity versions, regularly updated
  • Verified on all deployment chains
  • Professional dependency management

Risk Drivers

Primary risk factors driving this score, ordered by severity.

Cascade Exposure55
Compositional Risk78
Oracle Integrity85

Adversarial Risk Signals

Observable security posture indicators. These signals reflect publicly verifiable information and responsible disclosure outcomes. No specific vulnerability details are exposed.

Disclosure HistoryNot Assessed
Remediation VelocityNot Assessed
Bug Bounty ProgramNot Assessed
Audit CoverageNot Assessed
Incident HistoryNot Assessed
Deployed 2023-03-16Z-Factor 0.86610 active dimensions

Score History & Verification

Score provenance tracking begins with the next reassessment.

On-Chain Data

Protocol Slug
"aave-v3"
Oracle
BRORegistry (Base)
Evidence
IPFS (pinned)
Staleness Threshold
24 hours
Read Score
registry.getScore("aave-v3")

Reduce exploitable risk

BlackHart Monitoring provides continuous adversarial analysis, vulnerability detection, remediation support, and verified reassessment when your risk posture improves.

View Monitoring PlansHow Scores Work
Believe this score contains a factual error? Submit evidence for review →