Is Neverland Safe?
Risk Grade: B- (35/100)
Neverland is rated as moderate risk — some novel mechanisms, generally well-understood.
Moderate risk — battle-tested Aave V3 base provides strong foundation, but self-repaying loan complexity, young Monad infrastructure, and concentrated veTokenomics governance add meaningful risk layers.
Neverland is a Monad-native lending protocol built on the battle-tested Aave V3 architecture, featuring self-repaying loans and veTokenomics through the Pixie Dust (DUST) governance token. With approximately $21M TVL on Monad mainnet, it underwent a security review by Composable Security that identified and resolved 23 issues including 1 critical and 3 high vulnerabilities before deployment. Its B- risk grade reflects the added complexity of self-repaying loan automation on top of Aave V3, dependency on the young Monad L1 chain, and governance concentration risk from veDUST directing 100% of protocol revenue.
TVL
$38M
Mechanisms
6
Interactions
4
Value Grade
C-
Key Risks for Neverland Users
A pre-launch security audit found 23 issues including 1 critical and 3 high-severity vulnerabilities. While all were resolved before deployment, the high finding count suggests complex code with a significant attack surface that may harbor additional undiscovered issues.
Self-repaying loans add automated yield-to-repayment logic on top of the base Aave V3 framework. This additional complexity creates new potential attack vectors not present in standard Aave V3 deployments, similar to the type of auxiliary feature that caused the Euler Finance exploit ($197M loss).
veDUST governance allows holders to direct 100% of protocol revenue. If governance becomes concentrated, a single entity could redirect all protocol income to their own positions while also influencing lending parameters like collateral factors and interest rates.
Monad is a relatively new L1 blockchain whose reliability under market stress has not been extensively proven. If Monad experiences network issues, all lending operations including liquidations and oracle updates would pause, potentially creating bad debt.
Top Risk Factors
- •Pre-launch security audit by Composable Security found 23 issues including 1 critical and 3 high vulnerabilities. While these were resolved before deployment, the high issue count suggests complex attack surface that may harbor additional undiscovered vulnerabilities.
- •Monad-native deployment means the protocol is tied to Monad's relatively new and less battle-tested infrastructure. Monad is a young EVM-compatible L1, and its reliability under stress has not been extensively proven.
- •veTokenomics with veDUST governance directing 100% of protocol revenue creates incentive for governance capture — concentrated veDUST holders could redirect all protocol income to themselves at the expense of other users.
- •Self-repaying loan functionality adds complexity beyond the base Aave V3 architecture, creating additional attack surface in the repayment automation logic.
How Neverland Compares to Peers
Neverland ranks #42 of 90 Lending protocols (above-median). At a risk score of 35/100, it's in line with the sector average (37/100).
Adjacent peers: Suilend (B-, 34/100) is ranked just safer, and Alchemix (B-, 35/100) is ranked just riskier.
See the full Lending sector leaderboard or the Neverland vs Alchemix comparison.
Common Questions about Neverland
Plain-English answers based on Neverland's scores across Hindenrank's 8 risk dimensions. The highest-scoring (riskiest) dimension is Track Record (10/15).
Has Neverland ever been hacked or exploited?
Neverland has had some operational issues or moderate incidents in its history. The track record dimension scored 10/15 — not catastrophic, but enough to flag. Look at the specific events and whether they were addressed by the team before drawing conclusions.
How much money is at stake in Neverland?
Neverland currently holds roughly $38M in user deposits. Smaller TVL means individual depositors carry a larger share of any loss event, and it can be harder to exit a position quickly during stress.
What's the worst-case scenario for Neverland?
Hindenrank has identified specific collapse scenarios for Neverland. The most prominent: "Self-Repaying Loan Exploit Drains Protocol Reserves". The trigger condition is A vulnerability in the self-repaying loan automation logic allows an attacker to manipulate yield calculations or repayment routing to extract protocol funds. Reading through the full scenario list on the protocol page is the single best way to understand the actual failure modes — generic "smart contract risk" is rarely the thing that takes a protocol down.
Is Neverland regulated or insured?
Neverland has some regulatory exposure (5/10), typical of mid-sized DeFi protocols. There is no specific enforcement action on record, but the structure includes elements that regulators have flagged in similar protocols. No DeFi protocol carries FDIC-style insurance — even with low regulatory risk, depositors are not protected in the way bank customers are.
What are the biggest red flags for Neverland?
Hindenrank's retail-focused risk audit flagged: A pre-launch security audit found 23 issues including 1 critical and 3 high-severity vulnerabilities. While all were resolved before deployment, the high finding count suggests complex code with a significant attack surface that may harbor additional undiscovered issues. Self-repaying loans add automated yield-to-repayment logic on top of the base Aave V3 framework. This additional complexity creates new potential attack vectors not present in standard Aave V3 deployments, similar to the type of auxiliary feature that caused the Euler Finance exploit ($197M loss). veDUST governance allows holders to direct 100% of protocol revenue. If governance becomes concentrated, a single entity could redirect all protocol income to their own positions while also influencing lending parameters like collateral factors and interest rates.
Should beginners deposit into Neverland?
Neverland is rated B-, which is acceptable for users who understand the protocol's mechanism. Beginners should read the full risk breakdown and only deposit after they can articulate the top three failure modes. If you cannot explain how the protocol works, do not deposit.
How does Neverland compare to safer Lending alternatives?
Neverland is one protocol in Hindenrank's Lending coverage. The safest Lending protocols on the leaderboard tend to share three traits: a long incident-free track record, conservative mechanism design, and high-quality public documentation. Compare Neverland against the full Lending ranking before committing capital.
For the full 8-dimension score breakdown, the radar chart, and dependency graph, see the Neverland risk report.
Read the Full Neverland Risk Report
This protocol has 2 collapse scenarios. 2 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.
View Full Report →Get risk alerts before it's too late
Weekly grade changes, downgrade alerts, and new protocol risk findings. Free.