Prior exploit count

Compound V3 (Comet)'s assessment for RD-F-077 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

0 direct smart-contract exploits against Compound V3 Comet. 1 V3-era governance attack (2024-07-28, $0 net loss after proposal cancellation). Threshold: green=0 exploits; yellow=1 with full recovery.

Detail #

No Rekt leaderboard entries for compound-v3 slug (data cache rekt.incidents: []). No DeFiLlama hacks entries. 2024 Proposal 289 governance attack (Golden Boys) is the only V3-era incident; resolved with $0 net loss via negotiated cancellation. 2023 vulnerability disclosure: patched pre-exploitation, $0 loss. 2021 V2 COMP distribution bug predates V3 (Comet launched 2022-08-26) and is a V2 Comptroller incident. Scoring on V3-era incidents only: 1 incident with full recovery.

Sources #

URL
https://www.web3isgoinggreat.com/?id=compound-dao-governance-attackretrieved 2026-04-27
Internal
Hacksdatabase/hacks/compound.md — V2 2021 COMP distribution bug (pre-V3 incident)retrieved 2026-04-27
URL
https://rekt.newsretrieved 2026-04-27

Methodology #

Count the number of distinct incidents in the hack database affecting this protocol.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol compound-v3 factor RD-F-077 score yellow collected_at 2026-04-28 00:20:50