Flash loan >$10M targeting protocol tokens
Save (formerly Solend)'s assessment for RD-F-100 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Flash loan >$10M origination targeting protocol. T-09 v1 shortlist — phase-2. Solana applicable (composability-based flash loans within single transactions, not EVM Aave/Balancer model). Directional context: Solend IS a flash-loan provider — in Jul 2022, the Nirvana Finance attacker borrowed $10.25M USDC from Solend's flash-loan facility to attack Nirvana (Solend was a passive venue per U4 — NOT a Solend exploit). The relevant signal direction is a flash loan sourced FROM Solend's own pools targeting Solend's own oracle/market (self-attack scenario). No such attack-class pattern detected today. Detection pipeline for Solana-native flash loan scan not built.
Sources #
- InternalSave protocol profile — no EVM flash loan mechanism.research/protocols/save/00-profile.md §7 — no EVM cross-calls; Solana-native composability; eclipse deployment separateretrieved 2026-05-17
- CoinDesk — Solana DeFi Protocol Nirvana Drained After Flash Loan ExploitNirvana Finance Jul 2022: attacker borrowed $10.25M USDC from Solend flash-loan facility — repaid in full; Solend = passive venue (U4 rule)retrieved 2026-05-17
Methodology #
Detect whether a flash loan >$10M denominated in protocol tokens or LP tokens has originated, likely to interact with this protocol.
See the full factor methodology and distribution across all protocols →