Scores/PancakeSwap

PancakeSwap

DAMASCUS

DEX / AMM · BSC + Multi-chain · $2B+ TVL · 30 contracts

Official site: pancakeswap.finance ↗

836

3004756508251000

Confidence77%

Z-Factor0.87

Updated 2026-05-27Public score

Security Profile

Access Control
82

Economic Soundness
85

Oracle Integrity
90

Compositional Risk
80

Governance
78

Maturity
72

Resilience
70

Supply Chain
82

Op Security
49

Cascade Exposure
89

Access Ctrl
82

Economic
85

Oracle
90

Compos.
80

Govern.
78

Maturity
72

Resilience
70

Supply Ch.
82

OpSec
49

Cascade
89

Min

Avg

Max

Audit History

Peckshield

2021-04

SlowMist

2022-01

BlockSec

2023-03

Bug Bounty Program

$1,000,000

Max payout on Immunefi

View Program

Assessment

BSC's dominant DEX, Uniswap V2/V3 fork. Proven AMM model inherited but fork penalty on D6 maturity. Centralized team governance (D5). No exploits, solid operational history. BSC ecosystem context differs from Ethereum.

Dimension Breakdown

Methodology

Access Control

Weight 18% · 78% confidence

+20Uniswap V2/V3 fork ACL with MasterChef v3

+20Timelock on admin operations

+20Cake pool and IFO admin controls

+20Multi-chain deployment adds admin surface

Provenance

Economic Soundness

Weight 13% · 82% confidence

+21Proven AMM model (Uniswap fork)

+21CAKE tokenomics with burn mechanism

+21IFO, lottery, prediction markets add secondary economic surface

+21vCAKE staking model for fee sharing

Provenance

Oracle Integrity

Weight 13% · 88% confidence

+22TWAP from AMM pairs (standard)

+22Chainlink for prediction markets and farms

+22No novel oracle mechanism (inherited from Uniswap)

+22Standard price feed integration

Provenance

Battle-Tested Maturity

Weight 12% · 80% confidence

+18Live since September 2020 (56 months)

+18Uniswap V2/V3 FORK - inherits code but not innovation credit

-28Fork penalty: derivative codebase, not original research

+18No protocol-level exploit

Provenance

Governance & Upgradeability

Weight 10% · 72% confidence

+20PancakeSwap team retains admin keys and upgrade authority

+20CAKE governance proposals but limited on-chain execution

+20Community influence via voting but team controls deployment

+20Less decentralized than Uniswap governance

Provenance

Adversarial Resilienceredacted

Weight 10% · 95% confidence

Continuous adversarial sweep adds new findings on a recurring cadence

Provenance

Operational Security

Weight 10% · 60% confidence

-26No branch protection detected

-26CI/CD present but unstable (0% success)

+12Commit signing: 100% verified

+12Strong PR review culture (77% reviewed)

Provenance

Compositional Risk

Weight 5% · 75% confidence

+20BSC-native with Ethereum, Arbitrum, zkSync expansion

+20Integration with BSC DeFi ecosystem (Venus, Alpaca)

+20Multi-chain expansion adds composition surface

+20Syrup pools integrate external protocols

Provenance

Cascade Exposure

Weight 5% · 60% confidence

+30Appears in 2 cross-protocol cascade chain(s)

+30Member of 3 dependency cluster(s)

+30Source: cross_protocol_composition.json dependency analysis

Provenance

Supply Chain

Weight 4% · 78% confidence

+20BSC Solidity toolchain (compatible but different ecosystem)

+20Modified Uniswap codebase with custom additions

+20Verified on BSC and expansion chains

+20Some custom libraries diverge from Uniswap upstream

Provenance

Top Score Drivers

Dimensions with the greatest marginal impact on BRI.

Operational Security

49+39.6 potential

No branch protection detected

Battle-Tested Maturity

72+21.6 potential

Fork penalty: derivative codebase, not original research

Access Control

82+19.5 potential

Uniswap V2/V3 fork ACL with MasterChef v3

Adversarial Resilience

70+19.5 potential

Governance & Upgradeability

78+13.5 potential

PancakeSwap team retains admin keys and upgrade authority

Adversarial Risk Signals

Publicly verifiable security posture indicators.

Disclosure HistoryNot Assessed

Remediation VelocityNot Assessed

Bug Bounty ProgramNot Assessed

Audit CoverageNot Assessed

Incident HistoryNot Assessed

Deployed 2020-09-2010 dimensionsProvenance Ledger

methodology v2.1formula v1.1weights v1.1evidence sha256:sha256:7...

Score History & Verification

Score provenance tracking begins with the next reassessment.

Full provenance ledger

On-Chain Data

Protocol Slug: "pancakeswap"
Oracle: BRORegistry (Base)
Evidence: IPFS (pinned)
Staleness Threshold: 24 hours

Read Score

registry.getScore("pancakeswap")

Reduce exploitable risk

Continuous adversarial analysis, vulnerability detection, and verified reassessment.

View Plans Methodology

Embed this score

Live, updates automatically. Free for any site. Click-through links open the full report on BlackHart.

Public

Style

Theme

Format

Preview

Copy iframe code

<iframe
  src="https://blackhart.io/embed/oracle/pancakeswap?variant=card&theme=dark"
  title="BlackHart Risk Index: PancakeSwap"
  width="340"
  height="290"
  frameborder="0"
  loading="lazy"
  style="border:0; max-width:100%;"
></iframe>

Believe this score contains a factual error? Submit evidence for review