Same-root-cause repeat exploit

crvUSD (Curve Stablecoin)'s assessment for RD-F-079 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No direct crvUSD smart-contract exploit has occurred requiring an exploit post-mortem. The June 2024 peg event has a high-quality post-mortem (LlamaRisk report: names root cause — PegKeeper V2 deviation-check anti-spam mechanism; names contracts — PegKeeper V2, Regulator; explains mechanism clearly), but this is an operational event post-mortem, not an exploit post-mortem. RD-F-079 assesses post-mortem quality for exploit incidents. Not applicable.

Sources #

URL
crvUSD Upward Depeg (June 12, 2024) Incident Report — LlamaRiskLlamaRisk crvUSD depeg report — high-quality operational post-mortem, confirms no exploitretrieved 2026-05-16

Methodology #

Determine whether the protocol has been exploited ≥2 times via the same root-cause cluster.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol crvusd factor RD-F-079 score not_applicable collected_at 2026-05-16 19:09:40