BlackHartBlackHart
Scores/Puffer Finance

Puffer Finance

DAMASCUS

Liquid Restaking · Ethereum · $1B+ TVL · 10 contracts

Confidence 52%Z-Factor 0.55Updated 2026-05-17Public Score

Public risk assessment — scores are produced with the same methodology as monitored protocols

773
BRI Score
3004756508251000

Security Profile

Access Ctrl
70
Economic
72
Oracle
75
Compos.
62
Govern.
55
Maturity
62
Resilience
72
Supply Ch.
78
OpSec
56
Cascade
89
Min
55
Avg
69
Max
89

Audit History

SlowMist
2024-01
BlockSec
2024-02
Code4rena
2024-06

Bug Bounty Program

$100,000
Max payout on Immunefi
View Program →

Assessment

Liquid restaking protocol with lowest bond requirement (1 ETH). 27+ months live with no exploits. Young protocol with expanding product surface (UniFi). Governance centralization and EigenLayer dependency are main risks.

Dimension Breakdown

How scores work →
Access Control
Weight 18%68% conf
70
Good
arrow_forward
+18Operator permission system
+18Admin controls for protocol parameters
+18Validator ticket system
+18Centralized admin functions
receipt_longView provenance chainarrow_forward
Economic Soundness
Weight 13%68% conf
72
Good
arrow_forward
+18pufETH liquid restaking model
+181 ETH bond requirement (lowest in market)
+18Validator ticket economics novel
+18UniFi integration adds complexity
receipt_longView provenance chainarrow_forward
Oracle Integrity
Weight 13%72% conf
75
Good
arrow_forward
+25Exchange rate oracle
-25No external price feed in core
+25Rate update mechanism
+25Trust assumption in rate submission
receipt_longView provenance chainarrow_forward
Battle-Tested Maturity
Weight 12%60% conf
62
Moderate
arrow_forward
+21Live since February 2024 (27+ months)
+21Rapidly growing TVL
-38No exploits
+21Multiple product launches
receipt_longView provenance chainarrow_forward
Governance & Upgradeability
Weight 10%60% conf
55
Moderate
arrow_forward
+18Early-stage governance
+18Team controls most parameters
-45No meaningful decentralization yet
+18Foundation structure
receipt_longView provenance chainarrow_forward
Adversarial Resiliencelock
Weight 10%68% conf
72
Good
  • Audited by multiple firms
  • Active bounty program
  • C4 competition conducted
  • Young protocol with evolving surface
Operational Security
Weight 10%60% conf
56
Moderate
arrow_forward
-7No branch protection detected
-7CI/CD present but unstable (20% success)
+28Strong PR review culture (80% reviewed)
-7Low development activity (4 commits/month)
receipt_longView provenance chainarrow_forward
Compositional Risk
Weight 5%65% conf
62
Moderate
arrow_forward
+16EigenLayer dependency
+16pufETH integration across DeFi
+16UniFi rollup adds surface
+16Multiple product lines
receipt_longView provenance chainarrow_forward
Cascade Exposure
Weight 5%60% conf
89
Strong
arrow_forward
+30Appears in 2 cross-protocol cascade chain(s)
+30Member of 4 dependency cluster(s)
-11Score: 89/100 (higher = more isolated from systemic risk)
+30Source: cross_protocol_composition.json dependency analysis
receipt_longView provenance chainarrow_forward
Supply Chain
Weight 4%75% conf
78
Good
arrow_forward
+20Standard Solidity
+20OpenZeppelin
+20Verified contracts
+20Moderate dependencies
receipt_longView provenance chainarrow_forward

Risk Drivers

Primary risk factors driving this score, ordered by severity.

Governance & Upgradeability55
Operational Security56
Compositional Risk62

Adversarial Risk Signals

Observable security posture indicators. These signals reflect publicly verifiable information and responsible disclosure outcomes. No specific vulnerability details are exposed.

Disclosure HistoryNot Assessed
Remediation VelocityNot Assessed
Bug Bounty ProgramNot Assessed
Audit CoverageNot Assessed
Incident HistoryNot Assessed
Deployed 2024-02-01Z-Factor 0.55010 active dimensionsreceipt_longProvenance Ledger

Score History & Verification

Score provenance tracking begins with the next reassessment.

receipt_longView full provenance ledger →

On-Chain Data

Protocol Slug
"puffer"
Oracle
BRORegistry (Base)
Evidence
IPFS (pinned)
Staleness Threshold
24 hours
Read Score
registry.getScore("puffer")

Reduce exploitable risk

BlackHart Monitoring provides continuous adversarial analysis, vulnerability detection, remediation support, and verified reassessment when your risk posture improves.

View Monitoring PlansHow Scores Work
Believe this score contains a factual error? Submit evidence for review →