Permissionless-pool lending oracle

crvUSD (Curve Stablecoin)'s assessment for RD-F-181 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

crvUSD is a CDP with governance-controlled collateral listing (ControllerFactory admin-gated). New collateral markets require Curve DAO governance vote. AggregatorStablePrice add_price_pair() gated to admin (not permissionless). No permissionless pool oracle acceptance path. This is not a permissionless isolated-tier lending market — that architecture is LlamaLend (separate product). F181 is clearly inapplicable as a risk.

Sources #

Etherscan
crvUSD ControllerFactory — EtherscanControllerFactory 0xC9332fdCB1C491Dcc683bAe86Fe3cb70360738BC — admin-controlled market creation; not permissionlessretrieved 2026-05-16
Internal
crvUSD protocol profile §1 and §7Profile §1: CDP architecture requiring DAO-approved collateral listing; profile §7: no permissionless listingretrieved 2026-05-16

Methodology #

Determine whether the lending protocol accepts spot prices from a DEX where any user can permissionlessly create new pools, without requiring a TWAP window, liquidity floor, or token-age minimum on the venue side.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol crvusd factor RD-F-181 score green collected_at 2026-05-16 19:09:40