Scores/Maple Finance

Maple Finance

DAMASCUS

Institutional Lending · Ethereum + Solana · $500M+ TVL · 15 contracts

Official site: maple.finance ↗

814

3004756508251000

Confidence70%

Z-Factor0.81

Updated 2026-05-27Public score

Security Profile

Access Control
82

Economic Soundness
75

Oracle Integrity
85

Compositional Risk
78

Governance
78

Maturity
72

Resilience
50

Supply Chain
82

Op Security
54

Cascade Exposure
100

Access Ctrl
82

Economic
75

Oracle
85

Compos.
78

Govern.
78

Maturity
72

Resilience
50

Supply Ch.
82

OpSec
54

Cascade
100

Min

Avg

Max

100

Audit History

Trail of Bits

2021-07

Peckshield

2022-01

Three Sigma

2023-09

Bug Bounty Program

$500,000

Max payout on Immunefi

View Program

Assessment

Institutional lending protocol that survived $50M bad debt from Celsius/Alameda. V2 rebuild addressed structural issues but historical event permanently impacts D6/D7. Undercollateralized lending inherently carries credit risk (D2).

Dimension Breakdown

Methodology

Access Control

Weight 18% · 75% confidence

+20Pool delegates manage individual lending pools

+20Governor admin controls global parameters

+20Withdrawal manager controls redemption flow

+20Loan manager handles loan lifecycle

Provenance

Economic Soundness

Weight 13% · 68% confidence

+19Institutional undercollateralized lending (inherent credit risk)

+19Pool delegate due diligence is off-chain trust model

+19Celsius/Alameda bad debt exposed credit risk model

+19V2 improvements: better withdrawal mechanics, loan terms

Provenance

Oracle Integrity

Weight 13% · 80% confidence

+21Internal accounting for loan terms and interest

+21No external price oracle dependency for core lending

+21Pool share pricing based on NAV calculation

+21Interest rate model is pool-delegate configured

Provenance

Battle-Tested Maturity

Weight 12% · 72% confidence

+14Live since May 2021 (60 months)

+14$50M+ bad debt from Celsius/Alameda collapse (2022)

+14V2 rebuild addressed structural weaknesses

+14Surviving and operational post-crisis

Provenance

Governance & Upgradeability

Weight 10% · 70% confidence

+20MPL token governance for protocol parameters

+20Pool delegate selection process

+20Governor multisig for emergency actions

+20Limited on-chain governance history

Provenance

Adversarial Resilienceredacted

Weight 10% · 30% confidence

No validated adversarial findings — score set to neutral baseline

Provenance

Operational Security

Weight 10% · 60% confidence

-23No branch protection detected

+11Active CI/CD (100% success rate)

+11Commit signing: 100% verified

-23Weak PR review coverage (11%)

Provenance

Compositional Risk

Weight 5% · 72% confidence

+20Stablecoin dependency (USDC primarily)

+20Integration with institutional borrowers (off-chain trust)

+20Withdrawal manager creates pool composition complexity

+20Limited DeFi composability by design

Provenance

Cascade Exposure

Weight 5% · 50% confidence

100

+33Member of 1 dependency cluster(s)

+33No cross-protocol cascade exposure detected

+33Source: cross_protocol_composition.json dependency analysis

Provenance

Supply Chain

Weight 4% · 78% confidence

+20Standard Solidity with OpenZeppelin base

+20Verified contracts on Ethereum

+20Professional build pipeline

+20Moderate dependency complexity

Provenance

Top Score Drivers

Dimensions with the greatest marginal impact on BRI.

Adversarial Resilience

50+36.9 potential

Operational Security

54+32.6 potential

No branch protection detected

Battle-Tested Maturity

72+20.6 potential

Live since May 2021 (60 months)

Economic Soundness

75+19.6 potential

Institutional undercollateralized lending (inherent credit risk)

Access Control

82+18.7 potential

Pool delegates manage individual lending pools

Adversarial Risk Signals

Publicly verifiable security posture indicators.

Disclosure HistoryNot Assessed

Remediation VelocityNot Assessed

Bug Bounty ProgramNot Assessed

Audit CoverageNot Assessed

Incident HistoryNot Assessed

Deployed 2021-05-0110 dimensionsProvenance Ledger

methodology v2.1formula v1.1weights v1.1evidence sha256:sha256:9...

Score History & Verification

Score provenance tracking begins with the next reassessment.

Full provenance ledger

On-Chain Data

Protocol Slug: "maple"
Oracle: BRORegistry (Base)
Evidence: IPFS (pinned)
Staleness Threshold: 24 hours

Read Score

registry.getScore("maple")

Reduce exploitable risk

Continuous adversarial analysis, vulnerability detection, and verified reassessment.

View Plans Methodology

Embed this score

Live, updates automatically. Free for any site. Click-through links open the full report on BlackHart.

Public

Style

Theme

Format

Preview

Copy iframe code

<iframe
  src="https://blackhart.io/embed/oracle/maple?variant=card&theme=dark"
  title="BlackHart Risk Index: Maple Finance"
  width="340"
  height="290"
  frameborder="0"
  loading="lazy"
  style="border:0; max-width:100%;"
></iframe>

Believe this score contains a factual error? Submit evidence for review