defirisk.co
rubric v1.7.0

Empty cToken-style market (zero supply/borrow)

PancakeSwap's assessment for RD-F-070 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

[★] Not applicable. PancakeSwap is a Uniswap V2/V3/StableSwap fork DEX — not a Compound V2 fork lending protocol. No cToken-style markets. No totalSupply/totalBorrow accounting. The BCE/USDT March 2025 exploit was a burn-mechanism manipulation via a third-party token, structurally distinct from an empty-market donation attack. Profile §5 confirms fork lineage is Uniswap V2, Uniswap V3, Curve, and Uniswap V4 — no Compound fork lineage exists. Data cache lending_protocol: false.

Sources #

  • Docs
    pancake-smart-contracts README — PancakeSwap GitHubProfile §5 fork lineage — Uniswap V2 fork (pancake-smart-contracts README); Uniswap V3 fork (blog.pancakeswap.finance V3 launch); StableSwap Curve fork (SlowMist 2022 audit); no Compound lineageretrieved 2026-04-28
  • Curator note
    PancakeSwap data cacheData cache: lending_protocol: false; borrow.present: falseretrieved 2026-04-28

Methodology #

Determine whether any listed Compound V2-fork market has `totalSupply == 0` and `totalBorrow == 0`, the precondition for a donation-exploit.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol pancakeswap factor RD-F-070 score not_applicable collected_at 2026-04-28 19:10:57