Oracle-manipulation-proof borrow cap

crvUSD (Curve Stablecoin)'s assessment for RD-F-073 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Per-market debt ceilings exist and are governance-set (WETH: $200M, WBTC: $200M, wstETH: ~$150M per historical proposals). System utilization is estimated ~40-50% [?] vs. aggregate ceilings. HOWEVER: (1) The crvUSD price oracle (AggregatorStablePrice) is Curve-internal (EMA-smoothed aggregation from Curve stableswap pools), NOT Chainlink-anchored — susceptible to oracle manipulation if Curve pool liquidity is thin, though EMA reduces flash-loan risk (ChainSecurity audit confirmed EMA mitigation). (2) No public documentation of a ceiling-vs-oracle-manipulation-cost calibration methodology. (3) The June 2024 upward depeg event showed crvUSD oracle (market price) can spike significantly during demand surges, affecting all downstream markets. Debt ceilings exist and appear conservative, but calibration rigor is not fully evidenced. Scoring yellow.

Sources #

Audit
ChainSecurity — Curve Stablecoin Security AuditChainSecurity crvUSD audit — confirmed EMA mitigation of flash-loan oracle influence riskretrieved 2026-05-16
URL
Curve opens vote to add WETH collateral with $200M debt ceilingThe Block — WETH $200M debt ceiling governance proposalretrieved 2026-05-16

Methodology #

Determine whether the per-asset borrow cap is ≤ (oracle pool depth × manipulation-resistance multiplier).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol crvusd factor RD-F-073 score yellow collected_at 2026-05-16 19:09:40