Vault Risk Methodology

How we score vault risk and decide what’s safe to list

Risk Tiers

Each vault receives a risk score from 0–100 (higher = riskier), which maps to a tier:

Low
0 – 24
Well-established, audited, battle-tested
Medium
25 – 49
Some risk factors present
High
50 – 74
Significant risk, review first
Critical
75 – 100
Severe risk, active issues

Risk Rating

The headline signal on every vault is a letter grade from A+ to F. It’s mapped from the composite risk score (0–100, where 0 is safest and 100 is riskiest) — the lower the score, the better the grade:

A+
0–5
A
6–12
A-
13–20
B+
21–28
B
29–37
B-
38–46
C+
47–56
C
57–66
C-
67–77
D
78–88
F
89–100

The grade comes straight from the risk score, so solid engineering can never mask an active problem — a vault that’s depegging or has a blocking redemption state carries a high risk score and grades accordingly. Bands are tighter at the safe end, where small score differences matter most.

What We Measure

The risk score is a weighted blend across several dimensions. No single dimension can dominate — a high score reflects multiple dimensions pointing the same way. We weigh:

Protocol maturity

Smart-contract and protocol track record, including any history of incidents.

Asset quality & peg

Quality of the underlying collateral and how stably the vault’s share price holds its peg.

Governance & centralization

Who controls the vault — admin keys, multisig vs. single-owner, and upgrade authority.

Exitability & liquidity

Whether holders can actually redeem — available liquidity, utilization, and any redemption gates.

Code & audits

Contract verification, security-audit coverage, and automated code-risk analysis.

Track record & performance

Returns, drawdowns, capital flows, and signs of dormancy or decline.

Risk Breakdown Categories

Each vault's overall score is backed by per-category sub-scores (0–100, higher = riskier) — the same breakdown shown in the “Risk Breakdown” panel on every vault detail page and returned by the vaults API. A category only appears on a vault when its signal is present:

Depeg

Risk that the underlying asset loses its peg. Higher means the asset has already drifted from its reference price or shows signs of instability.

TVL Outflow

Rate of recent withdrawals from the vault. Higher means a large share of deposits has exited in the observation window.

Drawdown

Worst peak-to-trough loss in vault share price over the lookback. Higher means larger realised losses for depositors.

Code Risk

Static analysis of the vault contract source. Higher means more dangerous patterns were flagged (unchecked calls, unrestricted admin surface, etc.).

Deployer

Risk derived from the deployer address — prior deployments, funding source, and historical incidents.

Contract

On-chain behaviour of the contract — mutability, admin actions, ownership, and abnormal state changes.

Looping

Share of vault assets recursively lent and borrowed to amplify yield. Higher means more leverage and liquidation sensitivity.

Utilization

Share of vault capital currently deployed vs idle. Very high utilisation amplifies withdrawal-queue risk during drawdowns.

Oracle

Risk from the price oracle(s) the vault depends on — staleness, single-source exposure, and manipulation surface.

Asset Risk

Intrinsic risk of the underlying collateral — LST/LRT exposure, depeg history, and concentration in volatile tokens.

Centralization

How much of the vault is controlled by a single admin, multisig, or EOA without timelock guards.

Protocol

Risk from the host protocol — governance, prior incidents, audit coverage, and operational maturity.

Upgradeability

Upgradeability surface of the contract. Higher means the admin can materially change vault behaviour without user consent.

Momentum

Short-term directional move in vault share price. Higher means a sharp adverse move in the recent window.

Liquidity

On-chain liquidity available to exit the vault. Higher means redemptions may have market-impact cost.

Listing Verdict

The verdict combines the risk score with hard gates: any blocking flag (or a closed / locked redemption state) forces “Do not list” regardless of score.

Safe to list
< 30
No blocking flags, low risk across all dimensions
Caution
30 – 54
Moderate risk, review underlying positions
Review required
55 – 74
High risk, manual review before listing
Do not list
≥ 75
Critical risk or a blocking flag is present

Withdrawal Risk Levels

Blocked

Redemptions are fully closed — no exit possible.

Locked

Paused, or a lockup period is in effect — funds can’t be withdrawn until it clears.

Illiquid

Nominally open, but there isn’t enough liquidity to redeem at current size.

Constrained

Withdrawals work but face friction — high utilization, queues, or an enforced delay before redemption completes.

Key Risk Flags

unverifiedBlocking

Contract source code is not verified on the block explorer.

redemption_closedBlocking

Withdrawals are currently disabled.

dormantBlocking

No meaningful activity for an extended period — likely abandoned.

eoa_ownerHigh

Vault owned by a single externally-owned account (no multisig / timelock).

upgradeableHigh

Contract can be upgraded by an admin.

no_auditsHigh

No known security audits for this vault.

high_loopingMedium

High recursive-lending exposure, which amplifies losses under stress.

depegMedium

Underlying asset or share price is showing depeg risk.

negative_returnMedium

Vault has negative lifetime returns.

low_tvlLow

Very small total value locked.

new_vaultLow

Recently deployed, with limited track record.

Data Sources

Vault metadata & performance

Strategy classification, APY, returns, and volatility.

Live pricing & TVL

Current share prices and protocol total value locked.

Lending-market liquidity & utilization

Available redemption liquidity and market utilization rates.

Contract verification

Source-code verification and on-chain contract configuration.

Webacy code & contract risk

Automated code analysis, contract-level risk, and deployer reputation.

Want this data via API?

Every score, grade and signal on this page is available through the Webacy API — plug it straight into your own product.

View the API docs