Chainlink
MITHRILOracle Infrastructure · Multi-chain · $16B+ secured TVL · 20 contracts
Public risk assessment — scores are produced with the same methodology as monitored protocols
Security Profile
88
92
95
78
82
96
87
90
85
46
88
92
95
78
82
96
87
90
85
46
Audit History
Bug Bounty Program
Assessment
Gold standard oracle infrastructure. 84+ months live, zero protocol exploits, secures $16B+. D4 penalized for massive downstream integration surface, D5 for centralized governance. Near-ADAMANTINE.
Dimension Breakdown
How scores work →- Multi-sig node operator management with OCR committee
- Feed admin controls with configurable parameters
- Timelocked updates for critical feed configurations
- Staking v0.2 adds economic security layer
- LINK token economics proven over 6+ years
- Staking mechanism adds validator incentive alignment
- No flash-loan attack surface in core oracle
- Fee model sustainable with growing adoption
- Gold standard oracle: aggregation across 30+ node operators
- Deviation and heartbeat thresholds per feed
- Proof of Reserve for wrapped/bridged assets
- CCIP extends oracle model to cross-chain
- Live since May 2019 (84+ months)
- Zero protocol-level exploits across any version
- $16B+ TVL secured across DeFi
- 15+ audit firms over lifetime
- Z-factor: 0.823
- Chainlink Labs retains significant operational control
- No on-chain governance token for feed management
- Node operator selection is permissioned
- Community program emerging but not decentralized governance
- Score derived from continuous adversarial security research
- Chainlink Labs operates professional infrastructure
- 24/7 monitoring of feed health
- Incident response team for feed outages
- Multi-cloud, multi-region deployment
- Thousands of protocols depend on Chainlink feeds
- Downstream integration failures are not Chainlink bugs
- CCIP and VRF expand compositional surface
- Feed-specific risk isolation (one bad feed != all)
- Appears in 2 cross-protocol cascade chain(s)
- Failure cascades to 20 downstream protocol(s)
- Member of 2 dependency cluster(s)
- Score: 46/100 (higher = more isolated from systemic risk)
- Source: cross_protocol_composition.json dependency analysis
- Standard Solidity, minimal external dependencies
- Verified on all deployment chains
- Professional dependency management
- Regular compiler version updates
Risk Drivers
Primary risk factors driving this score, ordered by severity.
Adversarial Risk Signals
Observable security posture indicators. These signals reflect publicly verifiable information and responsible disclosure outcomes. No specific vulnerability details are exposed.
Score History & Verification
Score provenance tracking begins with the next reassessment.
On-Chain Data
- Protocol Slug
- "chainlink"
- Oracle
- BRORegistry (Base)
- Evidence
- IPFS (pinned)
- Staleness Threshold
- 24 hours
registry.getScore("chainlink")Reduce exploitable risk
BlackHart Monitoring provides continuous adversarial analysis, vulnerability detection, remediation support, and verified reassessment when your risk posture improves.