★ Empty cToken-style market (zero supply/borrow)
Jupiter Perpetual Exchange's assessment for RD-F-070 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
CRITICAL FACTOR (★) — not_applicable. Jupiter Perps is not a Compound V2 fork and not a lending protocol. It holds no cToken-style markets with totalSupply/totalBorrow accounting. JLP is an SPL token on Solana representing a proportional share of the five-custody pool AUM — this is structurally different from a cToken. The empty-market donation attack requires: (1) a share-based vault or cToken market, (2) the ability to donate tokens directly to that market to inflate exchange rate, and (3) a zero-supply state that allows the attacker to become the sole depositor. None of these conditions apply to Jupiter Perps. Profile §5 confirms the codebase is original (not a Compound fork). Data-cache confirms lending_protocol: false. gap_reason: not_applicable.
Sources #
- Internal00-profile.md jupiter-perps §5 Fork Lineagerisk-dashboard/.research/protocols/jupiter-perps/00-profile.md — §5 Fork Lineage: original codebase, not a Compound forkretrieved 2026-05-16
- 03-taxonomy.md Category 4 PD-024 Compound-fork-only designationrisk-dashboard/research/outputs/03-taxonomy.md — PD-024 resolution: RD-F-070 Compound-fork-only, not_applicable for non-Compound-fork protocolsretrieved 2026-05-16
- Pool Account - Jupiter DevelopersJupiter pool account architecture — JLP as SPL token with AUM/supply share model, no cToken structureretrieved 2026-05-16
Methodology #
Determine whether any listed Compound V2-fork market has `totalSupply == 0` and `totalBorrow == 0`, the precondition for a donation-exploit.
See the full factor methodology and distribution across all protocols →