How Does Carrot Lend Work?

Yield|Risk C+|5 mechanisms|4 interactions

Carrot Lend was a Solana yield optimizer that automatically routed stablecoin deposits across top lending protocols (Drift, Kamino, MarginFi, Jupiter, Save) to capture the best available rates. The protocol shut down April 30, 2026 after cascading losses from the Drift Protocol exploit (April 1, 2026, $285M, DPRK-attributed per Mandiant) caused TVL to collapse from ~$28M to ~$79K (~$8M in direct losses). The voluntary withdrawal deadline (May 14, 2026) has passed; forced deleveraging of all Boost, Turbo, and CRT positions is underway. Drift published a recovery plan on May 5, 2026: recovery tokens issued at $1 per $1 of verified loss, redeemable from a $148M committed pool ($127.5M Tether, $20M partners) against $295M in total losses — Carrot users eligible via CRT snapshot at 20:00 UTC April 1, 2026. Carrot team confirmed distribution via IOU token; no timeline set as it depends on Drift recovery pool growth. Full recovery estimated at ~8 years at current Drift revenue projections.

TVL

$73,000

Sector

Yield

Risk Grade

C+

Value Grade

D-

Core Mechanisms

3.3.3

Yield Routing Engine (YRE) — auto-allocates stablecoin deposits across top Solana lending protocols (Drift, Kamino, MarginFi, Jupiter, Save)

Automated yield optimization scanning real-time APYs and rebalancing across 5+ protocols

3.4.2

CRT liquid yield-bearing token — represents share of auto-optimized stablecoin vault

Reward-bearing token that appreciates as vault generates yield across Solana lending

6.1.1

Carrot Boost — leveraged looping strategies that amplify stablecoin yields through borrowing loops

Automates supply-borrow-supply loops on underlying lending protocols for leveraged yield

6.4.1

Relies on oracle feeds from integrated lending protocols (Drift, Kamino, etc.) for position management

Indirect oracle dependency through underlying protocol integrations

2.1.2

Performance fee on yield generated by vault strategies

Standard yield optimizer fee model

How the Pieces Interact

3.3.36.1.1High

YRE routing combined with Boost leverage means automated reallocation could move leveraged positions between protocols mid-loop, creating settlement risk

6.1.16.4.1Medium

Leveraged looping strategies depend on stable borrowing rates — rate spikes on underlying protocols can make loops unprofitable faster than rebalancing can respond

3.4.23.3.3Medium

CRT redemptions during stress could force rapid unwinding of yield positions across multiple protocols, potentially at unfavorable rates

3.3.36.4.1Medium

Yield routing across 5 protocols multiplies smart contract exposure — exploit in any integrated protocol affects Carrot depositors. This risk materialized April 1, 2026 when Drift Protocol was exploited for $285M, cascading into a 95% TVL loss for Carrot and protocol shutdown.

What Could Go Wrong

  1. SHUTDOWN COMPLETE: Forced deleveraging of all Boost, Turbo, and CRT positions began May 14, 2026. Protocol is in wind-down; remaining TVL (~$79K) represents residual assets under deleveraging. No user action available beyond awaiting Drift recovery token distribution.
  2. Drift Protocol exploit (April 1, 2026, $285M) cascaded through Carrot's integrated lending positions — TVL collapsed from ~$28M to ~$79K, exactly as modeled in collapse scenario cs-1.
  3. Drift Protocol recovery plan (announced May 5, 2026): recovery tokens issued at $1/$1 of verified loss, redeemable from a $148M committed pool ($127.5M Tether, $20M partners) against $295M total losses. Carrot CRT balances were snapshotted at 20:00 UTC April 1, 2026. Distribution via IOU token confirmed by Carrot team — no timeline set. Pool barely seeded; analyst projections estimate ~8 years to full recovery at current revenue rates.
  4. Two audits (Sec3, MadShield) did not identify or quantify concentrated integration risk to Drift — audit scope gap exposed multi-protocol dependency risk.

Underlying Protocol Exploit Cascades to Carrot

Elevated

Trigger: Exploit in one of the 5 integrated Solana lending protocols causes losses for Carrot-deposited funds

  1. 1.Security exploit in Drift, Kamino, MarginFi, or other integrated protocol Carrot funds allocated to exploited protocol are at risk
  2. 2.YRE detects issue and attempts to reallocate, but funds may already be compromised Portion of vault assets lost in exploit
  3. 3.CRT token value drops as vault losses are realized CRT holders face permanent loss of deposited value
  4. 4.Mass CRT redemptions stress remaining vault positions Forced unwinding of positions across healthy protocols at potentially unfavorable rates
See all 2 collapse scenarios in the full risk report →

Risk Profile at a Glance

Mechanism Novelty3/15
Interaction Severity5/20
Oracle Surface2/10
Documentation Gaps4/10
Track Record15/15
Scale Exposure0/10
Regulatory Risk4/10
Vitality Risk9/10
C+

Overall: C+ (42/100)

Lower score = safer

More on Carrot Lend

Is Carrot Lend Safe?

Safety analysis

Is Carrot Lend a Good Investment?

Value analysis

Full Risk Report

All mechanisms & interactions

Related Yield Explainers

How Does Mitosis Work?DHow Does Piku DAO Work?D+How Does Alpaca Leveraged Yield Farming Work?C-How Does Re7 Labs Work?C-How Does Grove Finance Work?C-