Same-root-cause repeat exploit
Sky Lending (formerly MakerDAO)'s assessment for RD-F-079 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Three distinct root-cause clusters: (1) oracle congestion + zero-bid auction mechanism (Black Thursday 2020-03-12); (2) DSChief voting interface flaw allowing vote on unetched slates (April 2019); (3) flash-loan MKR weight manipulation in same block (October 2020). No root-cause cluster recurs across incidents.
Sources #
- URLWhat Really Happened To MakerDAO?Glassnode: oracle congestion + zero-bid auction root cause (Black Thursday)retrieved 2026-04-28
- DSChief 1.2: Flash Loan Protection — Sky ForumSky Forum DSChief 1.2: flash-loan token-weight manipulation root cause (October 2020)retrieved 2026-04-28
- MakerDAO Critical Vulnerability — OpenZeppelinOpenZeppelin: DSChief voting interface flaw root cause (April 2019)retrieved 2026-04-28
Methodology #
Determine whether the protocol has been exploited ≥2 times via the same root-cause cluster.
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol sky-lending factor RD-F-079 score green collected_at 2026-04-28 00:43:18