Scores/Lido

Lido

DAMASCUS

Liquid Staking · Ethereum · $15B+ TVL · 20 contracts

Official site: lido.fi ↗

847

3004756508251000

Confidence85%

Z-Factor0.92

Updated 2026-05-27Public score

Security Profile

Access Control
88

Economic Soundness
85

Oracle Integrity
92

Compositional Risk
80

Governance
88

Maturity
93

Resilience
47

Supply Chain
88

Op Security
66

Cascade Exposure
48

Access Ctrl
88

Economic
85

Oracle
92

Compos.
80

Govern.
88

Maturity
93

Resilience
47

Supply Ch.
88

OpSec
66

Cascade
48

Min

Avg

Max

Audit History

Certora (Formal Verification)

2023-04Report

Statemind

2023-04Report

Oxorio

2023-06

MixBytes

2022-08

Bug Bounty Program

$2,000,000

Max payout on Immunefi

View Program

Assessment

Dominant liquid staking protocol, 66 months live, no critical exploits. D4 compositional risk (external validator deps, wide DeFi integration) and D2 rebasing complexity prevent top tier.

Dimension Breakdown

Methodology

Access Control

Weight 18% · 85% confidence

+22Role-based ACL via Aragon framework

+22Curated node operator registry with staking limits

+22Pause/resume capabilities on critical functions

+22Slight centralization in node operator curation

Provenance

Economic Soundness

Weight 13% · 84% confidence

+28Rebasing token model adds complexity vs exchange-rate

+28Withdrawal queue handles unstaking flow

-15Slashing risk passed through to stETH holders

+28$15B+ TVL validated through multiple market cycles

Provenance

Oracle Integrity

Weight 13% · 90% confidence

+23Internal oracle for stETH/ETH exchange rate

+23No external price feed dependency for core function

+23Oracle committee reports validator balances

+23Rate update bounded by sanity checks

Provenance

Battle-Tested Maturity

Weight 12% · 93% confidence

+19Live since December 2020 (66 months)

+19Survived all major market events

+19$15B+ TVL, largest liquid staking protocol

+19Active since ETH Beacon Chain launch

Provenance

Governance & Upgradeability

Weight 10% · 85% confidence

+22LDO token voting via Aragon

+22Dual governance mechanism in development

+22Easy Track for routine proposals

+22Gate Seal for emergency pausing

Provenance

Adversarial Resilienceredacted

Weight 10% · 95% confidence

Score derived from continuous adversarial security research

Provenance

Operational Security

Weight 10% · 60% confidence

-17No branch protection detected

-17CI/CD present but unstable (40% success)

+16Commit signing: 100% verified

+16SECURITY.md present (detailed)

Provenance

Compositional Risk

Weight 5% · 78% confidence

+20Staking Router routes to multiple modules (DVT, CSM)

+20Extensive DeFi integration (Curve, Aave, MakerDAO)

+20wstETH wrapper adds composition interface

+20Multiple external validator dependencies

Provenance

Cascade Exposure

Weight 5% · 65% confidence

+16Appears in 3 cross-protocol cascade chain(s)

-52Failure cascades to 12 downstream protocol(s)

+16Member of 3 dependency cluster(s)

+16Source: cross_protocol_composition.json dependency analysis

Provenance

Supply Chain

Weight 4% · 90% confidence

+22Standard OpenZeppelin libraries

+22Modern Solidity versions

+22Verified contracts on Etherscan

+22Well-maintained dependency set

Provenance

Top Score Drivers

Dimensions with the greatest marginal impact on BRI.

Adversarial Resilience

47+42.9 potential

Operational Security

66+23.2 potential

No branch protection detected

Cascade Exposure

48+20.4 potential

Failure cascades to 12 downstream protocol(s)

Access Control

88+12.7 potential

Role-based ACL via Aragon framework

Economic Soundness

85+11.7 potential

Rebasing token model adds complexity vs exchange-rate

Adversarial Risk Signals

Publicly verifiable security posture indicators.

Disclosure HistoryNot Assessed

Remediation VelocityNot Assessed

Bug Bounty ProgramNot Assessed

Audit CoverageNot Assessed

Incident HistoryNot Assessed

Deployed 2020-12-1710 dimensionsProvenance Ledger

methodology v2.1formula v1.1weights v1.1evidence sha256:sha256:6...

Score History & Verification

Score provenance tracking begins with the next reassessment.

Full provenance ledger

On-Chain Data

Protocol Slug: "lido"
Oracle: BRORegistry (Base)
Evidence: IPFS (pinned)
Staleness Threshold: 24 hours

Read Score

registry.getScore("lido")

Reduce exploitable risk

Continuous adversarial analysis, vulnerability detection, and verified reassessment.

View Plans Methodology

Embed this score

Live, updates automatically. Free for any site. Click-through links open the full report on BlackHart.

Public

Style

Theme

Format

Preview

Copy iframe code

<iframe
  src="https://blackhart.io/embed/oracle/lido?variant=card&theme=dark"
  title="BlackHart Risk Index: Lido"
  width="340"
  height="290"
  frameborder="0"
  loading="lazy"
  style="border:0; max-width:100%;"
></iframe>

Believe this score contains a factual error? Submit evidence for review