Scores/Lista DAO

Lista DAO

TEMPERED

Lending / Staking · BSC · $500M+ TVL · 15 contracts

Official site: lista.org ↗

726

3004756508251000

Confidence63%

Z-Factor0.70

Updated 2026-05-27Public score

Security Profile

Access Control
65

Economic Soundness
62

Oracle Integrity
60

Compositional Risk
65

Governance
55

Maturity
55

Resilience
50

Supply Chain
68

Op Security
59

Cascade Exposure
100

Access Ctrl
65

Economic
62

Oracle
60

Compos.
65

Govern.
55

Maturity
55

Resilience
50

Supply Ch.
68

OpSec
59

Cascade
100

Min

Avg

Max

100

Audit History

Peckshield

2023-07

BlockSec

2024-01

Bug Bounty Program

$1,000,000

Max payout on Immunefi

View Program

Assessment

BNB Chain CDP/liquid staking protocol with predecessor exploit history (Helio $15M hack). D6 low (55) for 24-month maturity and exploit heritage. BNB Chain security profile reduces D3 and D11. Confidence low due to chain-specific risk factors.

Dimension Breakdown

Methodology

Access Control

Weight 18% · 68% confidence

+16Admin multisig controls protocol parameters

+16CDP operations permissionless for users

+16Liquidation bot access open

+16BNB Chain security profile differs from Ethereum

Provenance

Economic Soundness

Weight 13% · 65% confidence

+21CDP model with lisUSD stablecoin

+21Liquid staking derivative (slisBNB) collateral

+21Liquidation mechanism under BNB Chain constraints

-38~$500M TVL but limited stress-testing under severe conditions

Provenance

Oracle Integrity

Weight 13% · 62% confidence

+20Chainlink BNB Chain feeds (smaller validator set than Ethereum)

+20Oracle dependency for CDP liquidation triggers

+20BNB Chain oracle infrastructure less battle-tested

-40Single oracle provider risk

Provenance

Battle-Tested Maturity

Weight 12% · 60% confidence

+14Live since mid-2023 (~24 months, rebranded from Helio)

+14Helio predecessor had 2022 exploit ($15M)

+14Rebuilt codebase after exploit

+14Z-factor: 0.8

Provenance

Governance & Upgradeability

Weight 10% · 60% confidence

-45LISTA token governance, still maturing

+28Limited governance decentralization history

+28BNB Chain validator centralization affects base layer

Provenance

Adversarial Resilienceredacted

Weight 10% · 30% confidence

No validated adversarial findings — score set to neutral baseline

Provenance

Operational Security

Weight 10% · 60% confidence

-20No branch protection detected

-20CI/CD present but unstable (60% success)

+20Strong PR review culture (80% reviewed)

+20Low development activity (4 commits/month)

Provenance

Compositional Risk

Weight 5% · 65% confidence

+16BNB Chain DeFi ecosystem integration

+16slisBNB composes with PancakeSwap, Venus, etc.

+16lisUSD stablecoin integration across BNB DeFi

+16Moderate composition surface

Provenance

Cascade Exposure

Weight 5% · 50% confidence

100

+33Member of 2 dependency cluster(s)

+33No cross-protocol cascade exposure detected

+33Source: cross_protocol_composition.json dependency analysis

Provenance

Supply Chain

Weight 4% · 65% confidence

+23Standard Solidity with OpenZeppelin

+23BNB Chain specific deployments

+23Moderate dependency footprint

Provenance

Top Score Drivers

Dimensions with the greatest marginal impact on BRI.

Access Control

65+34.3 potential

Admin multisig controls protocol parameters

Battle-Tested Maturity

55+31.7 potential

Live since mid-2023 (~24 months, rebranded from Helio)

Adversarial Resilience

50+30.6 potential

Oracle Integrity

60+29.2 potential

Single oracle provider risk

Economic Soundness

62+27.3 potential

~$500M TVL but limited stress-testing under severe conditions

Adversarial Risk Signals

Publicly verifiable security posture indicators.

Disclosure HistoryNot Assessed

Remediation VelocityNot Assessed

Bug Bounty ProgramNot Assessed

Audit CoverageNot Assessed

Incident HistoryNot Assessed

Deployed 2023-08-0110 dimensionsProvenance Ledger

methodology v2.1formula v1.1weights v1.1evidence sha256:sha256:0...

Score History & Verification

Score provenance tracking begins with the next reassessment.

Full provenance ledger

On-Chain Data

Protocol Slug: "lista"
Oracle: BRORegistry (Base)
Evidence: IPFS (pinned)
Staleness Threshold: 24 hours

Read Score

registry.getScore("lista")

Reduce exploitable risk

Continuous adversarial analysis, vulnerability detection, and verified reassessment.

View Plans Methodology

Embed this score

Live, updates automatically. Free for any site. Click-through links open the full report on BlackHart.

Public

Style

Theme

Format

Preview

Copy iframe code

<iframe
  src="https://blackhart.io/embed/oracle/lista?variant=card&theme=dark"
  title="BlackHart Risk Index: Lista DAO"
  width="340"
  height="290"
  frameborder="0"
  loading="lazy"
  style="border:0; max-width:100%;"
></iframe>

Believe this score contains a factual error? Submit evidence for review