BlackHartBlackHart
Scores/Sky (MakerDAO)

Sky (MakerDAO)

MITHRIL

Stablecoin / Lending · Ethereum · $12.7B TVL · 50 contracts

Confidence 90%Z-Factor 0.93Updated 2026-05-17Public Score

Public risk assessment — scores are produced with the same methodology as monitored protocols

865
BRI Score
3004756508251000

Security Profile

Access Ctrl
92
Economic
90
Oracle
94
Compos.
87
Govern.
85
Maturity
97
Resilience
54
Supply Ch.
82
OpSec
46
Cascade
93
Min
46
Avg
82
Max
97

Audit History

Trail of Bits
2019-08Report →
Runtime Verification (Formal)
2019-12Report →
Peckshield
2020-03
Trail of Bits (Liquidations 2.0)
2021-04

Bug Bounty Program

$10,000,000
Max payout on Immunefi
View Program →

Assessment

One of the oldest and most battle-tested DeFi protocols. 78 months, zero code exploits, formal verification. Near-ADAMANTINE but D8 (old compiler) and D5 (governance complexity) prevent top tier.

Dimension Breakdown

How scores work →
Access Control
Weight 18%90% conf
92
Excellent
arrow_forward
+23Wards/auth pattern battle-proven across all modules
+23ESM provides credible emergency shutdown (50K MKR threshold)
+23Every module uses rely/deny for fine-grained authorization
+23GSM 48h delay on governance execution
receipt_longView provenance chainarrow_forward
Economic Soundness
Weight 13%88% conf
90
Excellent
arrow_forward
+30Dutch auction liquidation (Liq 2.0 / Dog+Clipper) proven
+30Surplus Buffer absorbs bad debt before MKR dilution
+30Flash mint exists but rate-limited
-10$12.7B TVL with overcollateralization, survived Black Thursday
receipt_longView provenance chainarrow_forward
Oracle Integrity
Weight 13%92% conf
94
Excellent
arrow_forward
+24OSM enforces 1-hour price update delay (best-in-class)
+24Medianizer aggregates multiple Chronicle feeds
+24Purpose-built oracle architecture to prevent manipulation
+24Governance can freeze oracles in emergency
receipt_longView provenance chainarrow_forward
Battle-Tested Maturity
Weight 12%95% conf
97
Excellent
arrow_forward
+1978 months live (6.5 years) — one of oldest DeFi protocols
-3Survived Black Thursday, Terra/Luna, FTX collapse
+19Core dss contracts frozen since 2022
+19Zero code-level exploits in entire history
receipt_longView provenance chainarrow_forward
Governance & Upgradeability
Weight 10%88% conf
85
Strong
arrow_forward
+28MKR/SKY voting with executive spells (well-understood)
+28GSM adds 48h delay before spell execution
+28ESM can block malicious governance attacks
-15Deduction: governance fatigue risk, flash loan attack surface (mitigated by GSM)
receipt_longView provenance chainarrow_forward
Adversarial Resiliencelock
Weight 10%95% conf
54
Concerning
  • Score derived from continuous adversarial security research
Operational Security
Weight 10%60% conf
46
Concerning
arrow_forward
-7No branch protection detected
-7CI/CD present but unstable (0% success)
-7Weak PR review coverage (27%)
-7Minimal development activity (0 commits/month)
receipt_longView provenance chainarrow_forward
Compositional Risk
Weight 5%85% conf
87
Strong
arrow_forward
-6Core dss is remarkably self-contained (no external deps)
+44Modular internal architecture (Vat/Dog/Spot/Flap/Flop)
+44RWA modules introduce some external dependency
-6PSM has stablecoin counterparty risk
receipt_longView provenance chainarrow_forward
Cascade Exposure
Weight 5%60% conf
93
Excellent
arrow_forward
+31Appears in 2 cross-protocol cascade chain(s)
+31Member of 2 dependency cluster(s)
-7Score: 93/100 (higher = more isolated from systemic risk)
+31Source: cross_protocol_composition.json dependency analysis
receipt_longView provenance chainarrow_forward
Supply Chain
Weight 4%88% conf
82
Strong
arrow_forward
+41Core Vat uses Solidity 0.5.12 (old but formally verified)
+41Newer modules use 0.6.12
-9No proxy pattern on core (immutable)
-9Minimal dependencies — dss is remarkably self-contained
receipt_longView provenance chainarrow_forward

Risk Drivers

Primary risk factors driving this score, ordered by severity.

Operational Security46
Adversarial Resilience54
Supply Chain82

Adversarial Risk Signals

Observable security posture indicators. These signals reflect publicly verifiable information and responsible disclosure outcomes. No specific vulnerability details are exposed.

Disclosure HistoryNot Assessed
Remediation VelocityNot Assessed
Bug Bounty ProgramNot Assessed
Audit CoverageNot Assessed
Incident HistoryNot Assessed
Deployed 2019-11-18Z-Factor 0.92910 active dimensionsreceipt_longProvenance Ledger

Score History & Verification

Score provenance tracking begins with the next reassessment.

receipt_longView full provenance ledger →

On-Chain Data

Protocol Slug
"sky"
Oracle
BRORegistry (Base)
Evidence
IPFS (pinned)
Staleness Threshold
24 hours
Read Score
registry.getScore("sky")

Reduce exploitable risk

BlackHart Monitoring provides continuous adversarial analysis, vulnerability detection, remediation support, and verified reassessment when your risk posture improves.

View Monitoring PlansHow Scores Work
Believe this score contains a factual error? Submit evidence for review →