How Does Synapse Work?

Bridge|Risk C|7 mechanisms|6 interactions

A cross-chain bridge for moving tokens between blockchains, processing $2.5B+ in monthly volume with $80M in deposits. It narrowly avoided an $8M hack in 2021 when validators caught a bug in forked code just in time. Its C grade reflects bridge security risks compounded by validator trust assumptions and liquidity fragmentation.

TVL

$20M

Sector

Bridge

Risk Grade

C

Value Grade

C

Core Mechanisms

Bridge/Lock-And-Mint

Synapse Bridge: lock assets on source chain, mint nAssets (nUSD, nETH) on destination via validator consensus

Standard lock-and-mint bridge pattern. Validators reach consensus on source chain lock before authorizing destination chain mint. Locked assets on source chain represent a concentrated honeypot for attackers.

Bridge/Liquidity-Pool

Cross-chain AMM liquidity pools enabling direct swaps between chains without wrapped assets

Liquidity pool bridge model allows users to swap directly between native assets on different chains. Pool balance depends on directional flow; imbalances create slippage and rebalancing costs.

AMM/Stableswap

StableSwap AMM pools (forked from Saddle Finance) for bridged stablecoin swaps with low slippage

Curve-style StableSwap pools optimize for low-slippage swaps between pegged assets. The November 2021 vulnerability originated in the virtual price calculation of this forked codebase.

Validation/Optimistic

Optimistic verification with bonded validator actors for cross-chain message passing

Bridge validators stake bonds and operate under optimistic assumptions. Messages are considered valid unless challenged within a window. Validator collusion or liveness failure could enable fraudulent transactions.

Governance/Token

SYN governance token used for staking, validator bonding, and DAO governance

SYN token serves triple duty: governance voting, validator bonding collateral, and staking rewards. Token price decline reduces validator bonding security.

Incentives/Liquidity-Mining

SYN token emissions to bridge liquidity providers across multiple chains

SYN emissions incentivize LPs to provide liquidity on bridge pools across chains. Mercenary capital risk: LPs farm rewards and exit during stress when liquidity is most needed.

Bridge/Message-Passing

Novel

Generic cross-chain message passing layer supporting arbitrary data alongside token transfers

Synapse's message passing goes beyond token bridging to support arbitrary cross-chain communication. This expands the attack surface beyond simple token transfers to any cross-chain application logic.

How the Pieces Interact

Lock-and-mint bridgeForked StableSwap AMMCritical

The November 2021 near-exploit originated from a virtual price calculation bug in forked Saddle Finance code interacting with bridge mint logic. Forked code inherits vulnerabilities that may not be caught in audits focused on new code.

Cross-chain mintingValidator consensusCritical

If validators collude or are compromised, they can authorize mints on destination chains without corresponding locks on source chains. At $2.5B+ monthly volume, even brief validator compromise creates massive extraction opportunity.

Multi-chain liquidity poolsMarket crash directional flowHigh

During market stress, bridge traffic becomes heavily one-directional (alt-chain to Ethereum). Liquidity pools on high-demand chains deplete rapidly, causing extreme slippage and trapping capital on low-demand chains.

SYN token emissionsBridge LP liquidityHigh

Liquidity mining attracts mercenary capital that exits during stress. Bridge LPs earning SYN rewards withdraw when SYN price drops, removing liquidity precisely when bridge demand peaks.

SYN token priceValidator bonding securityMedium

Validator security bonds are denominated in SYN. If SYN price declines significantly, the economic security of the bridge decreases proportionally, making exploits more profitable relative to bond cost.

See all 6 interactions in the full risk report →

What Could Go Wrong

  1. Cross-chain bridge exploits are the largest category of DeFi losses; Synapse narrowly averted an $8M exploit in November 2021 via a forked Saddle Finance virtual price bug
  2. Multi-chain liquidity pools can become severely imbalanced during market stress, trapping user capital on low-demand chains with extreme slippage
  3. Bridge validator set and optimistic verification model introduces counterparty trust assumptions that concentrate risk in a small operator set

Cross-Chain Bridge Exploit and Infinite Mint

Moderate

Trigger: A vulnerability in the bridge's lock-and-mint or liquidity pool mechanism allows an attacker to mint unbacked tokens on a destination chain

  1. 1.Attacker discovers a bug in the bridge validator logic or smart contract (similar to the November 2021 metapool vulnerability) Attacker mints unbacked tokens on one or more destination chains
  2. 2.Unbacked tokens are swapped for legitimate assets via DEXs before the attack is detected Bridge liquidity pools are drained as attackers extract real value for minted tokens
  3. 3.Bridge operators detect the exploit and pause operations Users with in-flight transactions are frozen; cross-chain liquidity evaporates
  4. 4.Wrapped/bridged Synapse assets on destination chains become unbacked Users holding bridged assets face potential total loss; protocols integrated with Synapse bridged tokens face cascading liquidations
See all 2 collapse scenarios in the full risk report →

Risk Profile at a Glance

Mechanism Novelty3/15
Interaction Severity12/20
Oracle Surface5/10
Documentation Gaps3/10
Track Record7/15
Scale Exposure3/10
Regulatory Risk3/10
Vitality Risk8/10
C

Overall: C (44/100)

Lower score = safer

More on Synapse

Is Synapse Safe?

Safety analysis

Is Synapse a Good Investment?

Value analysis

Full Risk Report

All mechanisms & interactions

Related Bridge Explainers

How Does CrossCurve Work?D+How Does LI.FI Work?D+How Does Jumper Exchange Work?D+How Does Axelar Work?C-How Does deBridge Work?C-