My read of this is that IF we can build reliable prediction-market oracles (which seems like a much easier problem than building real time oracles) THEN we can unlock this. Risk perspective: "liquidation hunting" will be replaced with "rollover hunting" x.com/VitalikButerin/status/…

For one, I believe that audits (for code bugs) are one of the things that DeFi does get right. And better audits or formal verification wouldn't have prevented most of the recent exploits: Resolv, Drift > private key compromise lack to timelock and other circuit breakers Venus Protocol > economic attack, flagged by audits but ignored Aperture Finance, Solv > bugs in unaudited contracts Makina Finance > vault logic compromise, OOS for audits In TradFi, companies are mandated to do thorough risk management by law. In DeFi, we're not. Solution? More social consensus that DeFi needs to learn to take better care of its risks. This already works with code audits - everyone believes that a protocol that doesn't have code reviewed by security experts can't be taken seriously. It also works for L2s because we have @l2beat. Comparably, we don't have nearly as good insight into the admin control levels of major DeFi protocol deployments. Similarly, we know far more about how to exit L2s in times of crisis than how to exit major DeFi protocols if/when their admin decides to do something funky. EF doesn't need to pick and choose some favorite protocols. But it would be nice to recognize that there's a crisis in "low-risk" DeFi and push for a more principled approach, where risk management goes beyond looking for bugs in the code.

mostly two reasons: - realization that LVR is only small part of what makes onchain liquidity challenging (vindication for us who said it all along) - realization that AMMs are typically money sinks, not money generators (vindication for OB folks) x.com/duelinggalois/status/2…

Low risk DeFi can't be the revenue engine for @ethereum if low risk DeFi does not exist. (Other than a couple of OG protocols like Uniswap) EF is already doing plenty to make the core protocol more secure. Next step is including DeFi too, like Solana has x.com/SolanaFndn/status/2041…

Uniswap UI will finally pick up new hooks automatically. This used to be a big friction point for teams looking to build on top of v4. Hooks were permissionless, but getting orderflow was not. Now most new hooks will be autorouted. x.com/Uniswap/status/2040114…

1/ Drift's admin key was compromised. $213M drained from @solana's largest DEX in under 10 seconds. Unfortunately, we've seen similar patterns before: - fake collateral market - a manipulated oracle - disabled circuit breakers Let's break it down 👇 written w/ Chaos AI

Shows that protocols should be designed in a way that the protocol can be forced to enter a safe state, like: - paused - functions selectively disabled - liquidity pulled from DEX (limits the exit) The hard question is who's permitted to do this. There's a tradeoff between time-to-react and centralization risks. But how about this idea: user-controlled pause. If anyone submits a zk proof that a key invariant can be broken → protocol auto-pauses pays a bounty. x.com/pashov/status/20367430…

Most yield products optimize for APY and bolt on risk as an afterthought. All @chaoslabs vaults are powered by the same Chaos AI risk models that have secured trillions in vol and billions in asset deposits. The appetite for Low-Risk DeFi is real. Higher.

In addition to everything else, @CoWSwap orders should be able to specify: "only execute if ≥ N solvers participated." Here just one solver submitted a solution. There was no competitive auction. x.com/Ehsan1579/status/20323…

Gauntlet decided to cancel the proposal, it's now gone from Snapshot. Shows that the Uni DAO still has some power left! Broadly speaking, this is what DAOs should do: check and call out BS, instead of trying to execute on their own. x.com/atiselsts_eth/status/2…

1/ stETH CAPO Misconfiguration Today, a misconfiguration on Aave's CAPO oracle caused wstETH E-Mode liquidations, resulting in a loss of 345 ETH. No bad debt was incurred, and all affected users will be fully reimbursed. More below.