758
3004756508251000
Confidence50%
Z-Factor0.58
Updated 2026-05-27Public scoreSecurity Profile
Access Control
68
68
Economic Soundness
72
72
Oracle Integrity
72
72
Compositional Risk
60
60
Governance
52
52
Maturity
58
58
Resilience
70
70
Supply Chain
78
78
Op Security
54
54
Cascade Exposure
89
89
Access Ctrl
68
68
Economic
72
72
Oracle
72
72
Compos.
60
60
Govern.
52
52
Maturity
58
58
Resilience
70
70
Supply Ch.
78
78
OpSec
54
54
Cascade
89
89
Min
52
Avg
67
Max
89
Audit History
Sigma Prime
2024-01
Code4rena
2024-03
Bug Bounty Program
$250,000
Max payout on Immunefi
Assessment
Liquid restaking protocol with rsETH token. 29+ months live with no exploits but limited battle-testing. Deep EigenLayer dependency and early governance centralization. Growing TVL but young protocol.
Dimension Breakdown
MethodologyAccess Control
68Weight 18% · 65% confidence
+23Admin controls for deposits/withdrawals
+23Operator permissions
+23Multisig for emergency
-32Centralized parameter control
Provenance
Economic Soundness
72Weight 13% · 68% confidence
+18rsETH liquid restaking model
+18EigenLayer rewards pass-through
+18Fee structure transparent
+18Withdrawal queue implementation
Provenance
Oracle Integrity
72Weight 13% · 68% confidence
+18Exchange rate oracle
+18Rate update mechanism
+18Trust assumption in submissions
+18Limited oracle redundancy
Provenance
Battle-Tested Maturity
58Weight 12% · 55% confidence
+14Live since December 2023 (29+ months)
+14Growing TVL
+14No exploits
+14Relatively young
Provenance
Governance & Upgradeability
52Weight 10% · 58% confidence
+13Early-stage governance
+13Team controls operations
+13No meaningful decentralization
+13Foundation structure
Provenance
Adversarial Resilienceredacted
70Weight 10% · 65% confidence
- Audited
- Active bounty
- C4 competition
- Young protocol
Provenance
Operational Security
54Weight 10% · 60% confidence
-46No branch protection detected
+11Active CI/CD (100% success rate)
+11Commit signing: 57% verified
+11Strong PR review culture (100% reviewed)
Provenance
Compositional Risk
60Weight 5% · 62% confidence
+15EigenLayer dependency
+15rsETH DeFi integration
+15Multiple AVS exposure
+15Restaking composition complexity
Provenance
Cascade Exposure
89Weight 5% · 60% confidence
+30Appears in 2 cross-protocol cascade chain(s)
+30Member of 2 dependency cluster(s)
+30Source: cross_protocol_composition.json dependency analysis
Provenance
Supply Chain
78Weight 4% · 75% confidence
+20Standard Solidity
+20OpenZeppelin
+20Verified
+20Moderate deps
Provenance
Top Score Drivers
Dimensions with the greatest marginal impact on BRI.
Access Control
68+32.9 potential
Centralized parameter control
Governance & Upgradeability
52+31 potential
Early-stage governance
Battle-Tested Maturity
58+30.9 potential
Live since December 2023 (29+ months)
Operational Security
54+29.1 potential
No branch protection detected
Economic Soundness
72+20 potential
rsETH liquid restaking model
Adversarial Risk Signals
Publicly verifiable security posture indicators.
Disclosure HistoryNot Assessed
Remediation VelocityNot Assessed
Bug Bounty ProgramNot Assessed
Audit CoverageNot Assessed
Incident HistoryNot Assessed
methodology v2.1formula v1.0weights v1.0evidence sha256:sha256:f...
Score History & Verification
Score provenance tracking begins with the next reassessment.
On-Chain Data
- Protocol Slug
- "kelp-dao"
- Oracle
- BRORegistry (Base)
- Evidence
- IPFS (pinned)
- Staleness Threshold
- 24 hours
Read Score
registry.getScore("kelp-dao")Reduce exploitable risk
Continuous adversarial analysis, vulnerability detection, and verified reassessment.
Embed this score
Live, updates automatically. Free for any site. Click-through links open the full report on BlackHart.
Style
Theme
Format
Preview
Copy iframe code
<iframe
src="https://blackhart.io/embed/oracle/kelp-dao?variant=card&theme=dark"
title="BlackHart Risk Index: Kelp DAO"
width="340"
height="290"
frameborder="0"
loading="lazy"
style="border:0; max-width:100%;"
></iframe>