Scores/Angle Protocol

Angle Protocol

DAMASCUS

Stablecoin · Multi-chain · $200M+ TVL · 15 contracts

Official site: angle.money ↗

780

3004756508251000

Confidence77%

Z-Factor0.80

Updated 2026-05-27Public score

Security Profile

Access Control
78

Economic Soundness
72

Oracle Integrity
65

Compositional Risk
75

Governance
68

Maturity
75

Resilience
50

Supply Chain
82

Op Security
50

Cascade Exposure
100

Access Ctrl
78

Economic
72

Oracle
65

Compos.
75

Govern.
68

Maturity
75

Resilience
50

Supply Ch.
82

OpSec
50

Cascade
100

Min

Avg

Max

100

Audit History

Chainsecurity

2021-10

Sigma Prime

2023-06

Code4rena

2023-09

Bug Bounty Program

$500,000

Max payout on Immunefi

View Program

Assessment

Well-audited EUR stablecoin with simple architecture but smaller team, limited adversarial exposure, and oracle complexity. Below DAMASCUS due to Guardian centralization risks, opaque oracle config, and lack of active bounty program. Above FORGED due to clean audit history, standard patterns, and no exploit history.

Dimension Breakdown

Methodology

Access Control

Weight 18% · 80% confidence

+20Two-tier access: onlyGovernor (full power) + onlyGuardian (ops/fees)

+20Minter role pattern on AgToken restricts supply inflation

+20Guardian can set fees and pause without timelock -- ops flexibility vs risk tradeoff

+20No granular per-collateral admin roles (single Guardian controls all)

Provenance

Economic Soundness

Weight 13% · 70% confidence

+141:1 swap model with fee curves avoids complex liquidation logic

+14Savings vault uses linear rate accrual (no compounding rounding risk)

+14Rate capped by maxRate governor param prevents runaway yield

+14No flash mint capability limits inflation attack surface

Provenance

Oracle Integrity

Weight 13% · 68% confidence

+13Oracle config per collateral -- flexible but complex

+13Supports Chainlink, Redstone, Pyth, custom feeds

+13updateOracle is permissionless -- anyone can trigger refresh

-35Oracle config is opaque bytes blob -- harder to audit on-chain

Provenance

Battle-Tested Maturity

Weight 12% · 78% confidence

+12Protocol live since Nov 2021 (42 months), Transmuter since Jun 2023

+12No critical exploits on current Transmuter architecture

+12V1 (StableMaster) deprecated -- clean migration to V2

+12Multiple audits: Chainsecurity, Code4rena, Sigma Prime

Provenance

Governance & Upgradeability

Weight 10% · 65% confidence

+14OZ Governor with veANGLE voting -- standard pattern

+14Timelock on execution path for governance proposals

+14Guardian multisig has significant direct power (fees, pause, rates)

+14Guardian can effectively DoS protocol by pausing all collaterals

Provenance

Adversarial Resilienceredacted

Weight 10% · 30% confidence

No active bug bounty program on major platforms currently
Code4rena contest found issues in V2 design phase
Transmuter architecture is simpler than V1 -- reduced attack surface
EUR-focused protocol receives less adversarial attention than USD stablecoins

Provenance

Operational Security

Weight 10% · 50% confidence

-50No branch protection detected

+10No CI/CD pipeline detected

+10Commit signing: 87% verified

+10Strong PR review culture (77% reviewed)

Provenance

Compositional Risk

Weight 5% · 72% confidence

+19Simple architecture: Token + Transmuter + Savings (3 core contracts)

+19ERC-4626 standard for savings enables clean integration

+19Minimal external DeFi dependencies in core

+19Collateral tokens are external dependency surface

Provenance

Cascade Exposure

Weight 5% · 50% confidence

100

+33Member of 2 dependency cluster(s)

+33No cross-protocol cascade exposure detected

+33Source: cross_protocol_composition.json dependency analysis

Provenance

Supply Chain

Weight 4% · 80% confidence

+27Solidity 0.8.x with built-in overflow protection

+27Verified source on Etherscan

+27Standard dependency management

Provenance

Top Score Drivers

Dimensions with the greatest marginal impact on BRI.

Operational Security

50+34.4 potential

No branch protection detected

Adversarial Resilience

50+34.4 potential

Oracle Integrity

65+27.6 potential

Oracle config is opaque bytes blob -- harder to audit on-chain

Access Control

78+22 potential

Two-tier access: onlyGovernor (full power) + onlyGuardian (ops/fees)

Economic Soundness

72+20.9 potential

Redemption curve during depeg events introduces slippage risk

Adversarial Risk Signals

Publicly verifiable security posture indicators.

Disclosure HistoryNot Assessed

Remediation VelocityNot Assessed

Bug Bounty ProgramNot Assessed

Audit CoverageNot Assessed

Incident HistoryNot Assessed

Deployed 2021-11-0410 dimensionsProvenance Ledger

methodology v2.1formula v1.1weights v1.1evidence sha256:sha256:6...

Score History & Verification

Score provenance tracking begins with the next reassessment.

Full provenance ledger

On-Chain Data

Protocol Slug: "angle"
Oracle: BRORegistry (Base)
Evidence: IPFS (pinned)
Staleness Threshold: 24 hours

Read Score

registry.getScore("angle")

Reduce exploitable risk

Continuous adversarial analysis, vulnerability detection, and verified reassessment.

View Plans Methodology

Embed this score

Live, updates automatically. Free for any site. Click-through links open the full report on BlackHart.

Public

Style

Theme

Format

Preview

Copy iframe code

<iframe
  src="https://blackhart.io/embed/oracle/angle?variant=card&theme=dark"
  title="BlackHart Risk Index: Angle Protocol"
  width="340"
  height="290"
  frameborder="0"
  loading="lazy"
  style="border:0; max-width:100%;"
></iframe>

Believe this score contains a factual error? Submit evidence for review