defirisk.co
rubric v1.7.0

ERC-777/1155/721 hook without reentrancy guard

Stake DAO's assessment for RD-F-015 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Core tokens (CRV, BAL, FXS, PENDLE) are standard ERC-20 — no ERC-777 callbacks. sdCRV is standard ERC-20 (confirmed from source). Factor likely N/A by architecture but cannot confirm without full Slither scan across all strategy contracts.

Sources #

  • Etherscan
    sdCRV Contract SourcesdCRV 0xD1b5651E55D4CeeD36251c61c50C889B36F6abB5 — standard ERC-20 pragma 0.8.7retrieved 2026-05-16

Methodology #

Determine whether the protocol integrates token standards with callbacks (ERC-777 tokensReceived, ERC-1155 onReceived, ERC-721 onReceived) without reentrancy guards on the affected functions.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol stake-dao factor RD-F-015 score gray collected_at 2026-05-16 12:29:20