Is Neverland Safe?
Risk Grade: C+ (37/100)
Neverland is rated as elevated risk — multiple novel mechanisms and notable interaction risks.
Moderate risk — battle-tested Aave V3 base provides strong foundation, but self-repaying loan complexity, young Monad infrastructure, and concentrated veTokenomics governance add meaningful risk layers.
Neverland is a Monad-native lending protocol built on the battle-tested Aave V3 architecture, featuring self-repaying loans and veTokenomics through the Pixie Dust (DUST) governance token. With approximately $21M TVL on Monad mainnet, it underwent a security review by Composable Security that identified and resolved 23 issues including 1 critical and 3 high vulnerabilities before deployment. Its B- risk grade reflects the added complexity of self-repaying loan automation on top of Aave V3, dependency on the young Monad L1 chain, and governance concentration risk from veDUST directing 100% of protocol revenue.
TVL
$31M
Mechanisms
6
Interactions
4
Value Grade
C-
Key Risks for Neverland Users
A pre-launch security audit found 23 issues including 1 critical and 3 high-severity vulnerabilities. While all were resolved before deployment, the high finding count suggests complex code with a significant attack surface that may harbor additional undiscovered issues.
Self-repaying loans add automated yield-to-repayment logic on top of the base Aave V3 framework. This additional complexity creates new potential attack vectors not present in standard Aave V3 deployments, similar to the type of auxiliary feature that caused the Euler Finance exploit ($197M loss).
veDUST governance allows holders to direct 100% of protocol revenue. If governance becomes concentrated, a single entity could redirect all protocol income to their own positions while also influencing lending parameters like collateral factors and interest rates.
Monad is a relatively new L1 blockchain whose reliability under market stress has not been extensively proven. If Monad experiences network issues, all lending operations including liquidations and oracle updates would pause, potentially creating bad debt.
Top Risk Factors
- •Pre-launch security audit by Composable Security found 23 issues including 1 critical and 3 high vulnerabilities. While these were resolved before deployment, the high issue count suggests complex attack surface that may harbor additional undiscovered vulnerabilities.
- •Monad-native deployment means the protocol is tied to Monad's relatively new and less battle-tested infrastructure. Monad is a young EVM-compatible L1, and its reliability under stress has not been extensively proven.
- •veTokenomics with veDUST governance directing 100% of protocol revenue creates incentive for governance capture — concentrated veDUST holders could redirect all protocol income to themselves at the expense of other users.
- •Self-repaying loan functionality adds complexity beyond the base Aave V3 architecture, creating additional attack surface in the repayment automation logic.
Risk Score Breakdown
Neverland's highest risk area is Track Record (10/15). Here's how each dimension contributes to the overall 37/100 score:
Read the Full Neverland Risk Report
This protocol has 2 collapse scenarios. 2 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.
View Full Report →Considering an investment?