Is Axelar Safe?
Risk Grade: C- (57/100)
Axelar is rated as elevated risk — multiple novel mechanisms and notable interaction risks.
Solid cross-chain messaging infrastructure with a battle-tested validator model, but the value-bridged vs cost-of-attack ratio and ITS mint surface warrant caution post-KelpDAO.
Axelar is a cross-chain messaging network connecting 55+ blockchains via General Message Passing (GMP). Its security comes from a Cosmos-SDK Proof-of-Stake validator set (~75 validators) that signs threshold-BLS attestations for cross-chain messages. This is the classic 'external validator set' bridge security model — well-understood but with well-known failure modes. After the April 2026 KelpDAO LayerZero exploit ($292M) shifted cross-chain security into the spotlight, every bridge's validator-to-value ratio is under scrutiny. Axelar's Interchain Token Service (ITS) ships canonical cross-chain tokens with similar mint-authority architecture to LayerZero OFT — which means it inherits the same class of risk that just burned Kelp.
TVL
$137M
Mechanisms
6
Interactions
5
Value Grade
D
Key Risks for Axelar Users
Validator-set security means an attacker compromising 2/3 of Axelar validators can forge cross-chain messages
ITS-issued tokens inherit the validator-set trust assumption for mint authority across every chain
GMP applications (Squid, ITS, etc.) inherit all Axelar security assumptions — cascade risk is high
Axelar does not yet slash validators for incorrectly signing cross-chain messages, only for double-signing blocks
Post-KelpDAO exploit, any cross-chain mint-authority design is a prime target for AI-assisted vulnerability research
Top Risk Factors
- •Validator-set security model — attackers need to compromise a supermajority of Axelar validators to forge messages; economic cost = 2/3 of AXL staked, which is modest vs the value bridged
- •KelpDAO April 2026 $292M LayerZero exploit demonstrates that bridge-config flaws are now the dominant DeFi exploit vector; Axelar connects 55+ chains so the per-chain configuration surface is vast
- •General Message Passing (GMP) is a generic cross-chain RPC — any application using GMP inherits the security assumptions of the Axelar validator set
How Axelar Compares to Peers
Axelar ranks #21 of 24 Bridge protocols (bottom quartile — among the riskiest). At a risk score of 57/100, it's 15 points riskier than the sector average of 42/100.
Adjacent peers: Hyperlane (C-, 51/100) is ranked just safer, and Jumper Exchange (D+, 59/100) is ranked just riskier.
See the full Bridge sector leaderboard or the Axelar vs Jumper Exchange comparison.
Common Questions about Axelar
Plain-English answers based on Axelar's scores across Hindenrank's 8 risk dimensions. The highest-scoring (riskiest) dimension is Interaction Severity (14/20).
Has Axelar ever been hacked or exploited?
Axelar has had some operational issues or moderate incidents in its history. The track record dimension scored 10/15 — not catastrophic, but enough to flag. Look at the specific events and whether they were addressed by the team before drawing conclusions.
How much money is at stake in Axelar?
Axelar currently holds more than $137M in user deposits. A protocol of this size typically has deeper liquidity, more eyes on the code, and more attention from auditors — but it also means a single failure has a much larger blast radius.
What's the worst-case scenario for Axelar?
Hindenrank has identified specific collapse scenarios for Axelar. The most prominent: "Validator Supermajority Collusion or Compromise". The trigger condition is An attacker achieves collusion, coercion, or key compromise over 2/3+ of Axelar validators' signing power, enabling forgery of cross-chain messages. Reading through the full scenario list on the protocol page is the single best way to understand the actual failure modes — generic "smart contract risk" is rarely the thing that takes a protocol down.
Is Axelar regulated or insured?
Axelar has some regulatory exposure (4/10), typical of mid-sized DeFi protocols. There is no specific enforcement action on record, but the structure includes elements that regulators have flagged in similar protocols. No DeFi protocol carries FDIC-style insurance — even with low regulatory risk, depositors are not protected in the way bank customers are.
What are the biggest red flags for Axelar?
Hindenrank's retail-focused risk audit flagged: Validator-set security means an attacker compromising 2/3 of Axelar validators can forge cross-chain messages ITS-issued tokens inherit the validator-set trust assumption for mint authority across every chain GMP applications (Squid, ITS, etc.) inherit all Axelar security assumptions — cascade risk is high On the technical side, 1 critical-severity interaction risk has been identified.
Should beginners deposit into Axelar?
Axelar's C- grade puts it in the elevated-risk band. This is not a beginner-friendly protocol. Anyone depositing here should treat the position as speculative and avoid concentrating significant savings in it.
How does Axelar compare to safer Bridge alternatives?
Axelar is one protocol in Hindenrank's Bridge coverage. The safest Bridge protocols on the leaderboard tend to share three traits: a long incident-free track record, conservative mechanism design, and high-quality public documentation. Compare Axelar against the full Bridge ranking before committing capital.
For the full 8-dimension score breakdown, the radar chart, and dependency graph, see the Axelar risk report.
Read the Full Axelar Risk Report
This protocol has 3 collapse scenarios. 1 critical and 3 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.
View Full Report →Get risk alerts before it's too late
Weekly grade changes, downgrade alerts, and new protocol risk findings. Free.