defirisk.co
rubric v1.7.0

Bridge validator count (M)

A cross-chain & bridge factor in the v1.7.0 rubric. Measured per protocol on a s cadence.

Methodology how we score #

**What this measures** This factor records the number of distinct validators or signers in the bridge's signer set — or, for LayerZero OFT integrations, the count, threshold, and operator diversity of the Decentralised Verifier Network (DVN) configuration. The count is derived from bridge contract reads and protocol documentation. This factor applies only to bridge-touching protocols; non-bridge protocols show this factor as N/A.

**Why it matters** Validator count directly determines the minimum attacker footprint required to forge a bridge message. Harmony Bridge ($100M, 2022) used a 2-of-5 multisig with hot-wallet signers; compromising two keys was sufficient to drain the bridge. The Kelp DAO rsETH hack ($292M, 2026) exploited a 1/1 DVN configuration on a LayerZero OFT adapter — a single validator node controlled the entire message verification path, reducing the attack surface to a single key compromise. The T-01 evidence base links low validator counts to approximately 7 protocols, and the Kelp DAO incident has elevated the threshold-of-1 edge case to a near-critical finding for LayerZero deployments.

**Green / Yellow / Red** Green is scored when the bridge uses 7 or more independent validators (or DVN operators for LayerZero) with documented geographic and organisational independence. Yellow is scored when the count is 3–6 with partial independence documentation. Red is scored when the validator count is 1 or 2, or when a LayerZero OFT uses a single DVN operator.

**Common gray cases** Gray is applied when validator identity and independence cannot be confirmed from public on-chain or documentation sources.

**Notable historical examples** - **Kelp DAO** ($292M, 2026): 1/1 LayerZero DVN configuration; single validator controlled rsETH message verification.

Measurement what to look for #

Count the number of distinct validators or signers in the bridge's signer set (for non-LZ bridges; use F179 for LayerZero OFT).

Data & output #

Data source
Bridge contract `getValidators()` / `signers()` or equivalent via RPC + bridge docs
Output format
Green / Yellow / Red
Evidence artifact
Validator address list + count + bridge contract address
Confidence signal
green = ≥7 validators; yellow = 4–6 validators; red = ≤3 validators; gray = LayerZero OFT (use F179 instead) or bridge contract not identifiable

Scored protocols 80 carry this factor #

Protocol RD-F-148
Aave v3 ethereum yellow Across Protocol ethereum green Aerodrome Finance base not_applicable Axelar Network ethereum yellow Babylon Protocol bitcoin yellow Balancer (v2 + v3) ethereum not_applicable Beefy Finance ethereum yellow BENQI avalanche not_applicable BlackRock USD Institutional Digital Liquidity Fund (BUIDL) ethereum not_applicable Cap (cUSD / stcUSD) ethereum yellow Centrifuge ethereum yellow Chainlink CCIP ethereum yellow Circle USYC binance not_applicable Compound V3 (Comet) ethereum yellow Concrete ethereum gray Convex Finance ethereum not_applicable crvUSD (Curve Stablecoin) ethereum not_applicable Curve Finance ethereum yellow deBridge ethereum yellow Dolomite ethereum yellow dYdX v4 (dYdX Chain) dydx not_applicable EigenLayer ethereum not_applicable Ethena ethereum yellow ether.fi ethereum green Euler V2 ethereum not_applicable Falcon Finance ethereum not_applicable Fluid ethereum green Frax Finance ethereum red GMX v2 (GMX Synthetics) arbitrum not_applicable Hyperlane ethereum yellow Hyperliquid arbitrum yellow Jito solana green Jupiter solana not_applicable Jupiter Perpetual Exchange solana not_applicable JustLend DAO tron not_applicable Kamino Lend solana not_applicable Kinetiq hyperliquid not_applicable Lido ethereum green Liquid Collective (LsETH) ethereum not_applicable Liquity V1 + V2 (LUSD / BOLD) ethereum not_applicable Lista DAO bsc gray Lombard Finance ethereum green M^0 ethereum yellow Maple Finance ethereum yellow Marinade Finance solana not_applicable Meteora solana not_applicable mETH Protocol ethereum gray Midas ethereum yellow Morpho V1 (Morpho Blue + MetaMorpho) ethereum not_applicable Multipli ethereum gray Ondo Finance ethereum green OpenEden ethereum not_applicable Orca solana not_applicable PancakeSwap bsc yellow Pendle Finance ethereum yellow Polymarket polygon not_applicable QuickSwap polygon not_applicable Raydium solana not_applicable Rocket Pool ethereum not_applicable Sanctum solana not_applicable Save (formerly Solend) solana not_applicable Sky Lending (formerly MakerDAO) ethereum yellow Spark Protocol ethereum yellow Spiko stellar gray Stake DAO ethereum not_applicable StakeWise v3 ethereum not_applicable Stargate Finance ethereum gray stHYPE (Valantis Labs) hyperliquid not_applicable SUNSwap (sun.io) tron not_applicable Superstate ethereum not_applicable Sushi (SushiSwap) — v2 + v3 + Trident + BentoBox/Kashi + SushiXSwap ethereum not_applicable Symbiotic ethereum not_applicable Synapse Protocol ethereum gray Uniswap (v2 + v3) ethereum not_applicable USDD (Decentralized USD) tron not_applicable Usual (USD0 / bUSD0 / USUAL) ethereum yellow Veda (BoringVault) ethereum gray Venus Protocol bsc yellow Wormhole ethereum gray Yearn Finance ethereum not_applicable
1 red · 23 yellow · 7 green

Linked hacks 1 historical incident #

causalKelp DAO (rsETH liquid restaking) — Forged cross-chain message via LayerZero EndpointV2 lzReceive — exploitation of 1/1 DVN (single-validator) configuration2026-04-18 · $292M · Forged cross-chain message via LayerZero EndpointV2 lzReceive — exploitation of 1/1 DVN (single-validator) configuration · Bridge validator count (M) — LayerZero DVN sub-field [via cross-hack: Factor 80: DVN / Multi-Validator Configuration on Cross-Chain Messages]
rubric_version v1.7.0 factor RD-F-148 category 10 carried 80 critical no