# Risks & Audits ## Smart Contracts Risks The protocol will be interacting with a number of smart contracts, all of which imposes risks. This can be both known and unknown risks that could result in the failure or vulnerability on the smart contracts which could result in assets being locked or lost forever. ## Liquidation Risks Assets that are supplied or borrowed on the protocol could fluctuate in value due to the systemic risks of the issuing platforms or market volatility, including the loss of peg of certain pegged assets. This could result in the liquidation or closing of a user's position. ## Risk Assessment & Management BENQI works closely with [Chaos Labs](https://community.chaoslabs.xyz/benqi) on the risk assessment and management of assets for the BENQI Liquidity Market (BLM) to safely maximize capital efficiency. The BENQI Chaos Labs Dashboard displays risk monitoring done on BENQI Liquidity Market {% embed url="" %} ## Risks Associated with Protocol Functions 1\. Protocol parameter updates BENQI distributes signing authority across multiple parties through a multisig framework. Protocol parameters, including interest rate models, collateral factors, asset listings, and liquid staking related functions, may be updated through this framework in accordance with the protocol's designated procedures and, where applicable, with input from BENQI's risk and security partners.\ \ What this means for you: The multisig framework is intended to reduce the risk of unilateral action by any single party. However, if a sufficient number of signers are compromised through phishing, key theft, social engineering, or misconduct, an unauthorized actor could: * Modify protocol parameters (e.g., collateral factors, liquidation thresholds, staking delegation rules) * Approve harmful assets or transactions * Redirect staked AVAX * Disable or interfere with protective measures Security audits assess smart contract code but do not protect against signer compromise or misuse of authorized functions. 2\. Upgrade Risks Certain protocol contracts, including those governing the lending markets and liquid staking, are upgradeable. Where an upgrade is implemented, the revised contract logic may alter how the protocol behaves, including how your positions, deposits, staking, or withdrawals are processed. Upgrades may introduce risks that did not exist in the prior version. You should review the protocol's current upgrade framework and associated permissions before depositing assets.\ \ 3\. Emergency Response Functions The protocol includes functions designed to respond to exploits, technical failures, or market disruptions. These may include the ability to pause markets, pause staking or redemptions, adjust parameters on an accelerated timeline, or restrict certain operations. While intended as protective measures, these functions may themselves create or introduce risks. If exercised improperly, compromised, or triggered erroneously, they could affect your ability to withdraw assets or redeem sAVAX, alter your position value, or result in losses.\ \ 4\. Multi-Party Computation (MPC) Infrastructure Avalanche staking requires the cross-chain transfer of AVAX. To manage these transfers securely, BENQI uses an off-chain Multi-Party Computation (MPC) protocol. This distributes signing authority across multiple geographically independent nodes, requiring a minimum threshold of nodes to collaborate to approve any transaction. What this means for you: * Threshold Compromise: If a coordinated attack successfully breaches the required threshold of independent nodes simultaneously, whether through server exploits, software vulnerabilities, unauthorized access, or physical security breaches, an attacker could generate valid signatures to cause loss or misdirection of staked assets. * Operational Halts: If too many nodes experience simultaneous outages, due to severe network or infrastructure failures, and the signing threshold cannot be met, operations like staking, unstaking, and cross-chain transfers will be temporarily paused until the network is restored. Acknowledgment By using BENQI, including its lending markets and liquid staking protocol, you acknowledge that your assets may interact with smart contracts and related systems that are subject to certain upgrade, maintenance, and emergency response functions implemented through a multisig framework. You further acknowledge that the exercise, misuse, compromise, or failure of such functions could adversely affect protocol operations, asset availability, user positions, or result in losses. These risks, together with validator risks, MPC risks, redemption delays, and exchange rate deviations specific to liquid staking, are distinct from, and may arise independently of, risks associated with smart contract vulnerabilities, liquidations, or market conditions. ## Audits BENQI will be continuously pursuing security audits for the protocol. However, security audits don't eliminate risks completely. Please do not supply your life savings, or assets you can’t afford to lose, to BENQI, especially as a liquidity provider. ### **BENQI Liquidity Market** Smart Contract Audit by Halborn (May 2021) {% file src="" %} Smart Contract Audit by Halborn {% endfile %} ### **BENQI Liquid Staking** Smart Contract Audit by Halborn (November 2021 - February 2022) {% file src="" %} Smart Contract Audit by Halborn {% endfile %} BENQI Liquid Staking Formal Verification by Certora (April 2022) {% file src="" %} sAVAX Smart Contract Formal Verification by Certora {% endfile %} AAVE v3 sAVAX Formal Verification and Listing Stewards Audit by Certora (June 2022)
{% file src="" %} sAVAX on AAVE v3 Formal Verification by Certora {% endfile %} ### Ignite Ignite Security Analysis by Cyfrin (December 2024) {% file src="" %} Ignite Security Analysis by Dedaub (March 2023) {% file src="" %} Ignite Smart Contract Audit by Dedaub {% endfile %} ### BENQI Isolated Markets BENQI Isolated Markets Audit (2024) {% file src="" %} Moonwell code4rena Analysis (October 2023) {% embed url="" %} Moonwell Finance Smart Contract Security Assessment (August 2023) {% file src="" %} ### Chaos Labs Dual Oracle Contract (May 2025) {% file src="" %}