Is Pyth Network Safe?
Risk Grade: B (22/100)
Pyth Network is rated as moderate risk — some novel mechanisms, generally well-understood.
Moderate risk — strong institutional backing and growing adoption as the dominant oracle for Solana and newer chains, with manageable risk from Wormhole dependency and the still-maturing first-party oracle model.
Pyth Network is a decentralized oracle delivering real-time price data from 124+ first-party publishers (including Binance, Jane Street, Cboe) to DeFi protocols across 100+ blockchains. With 380+ price feeds updating every 400 milliseconds, it is the dominant oracle on Solana and growing rapidly across other chains. Its B grade reflects strong institutional publisher participation, active development, and a clean track record, with moderate risk from its Wormhole cross-chain dependency and the novel first-party oracle architecture that is still maturing relative to Chainlink's longer track record.
TVL
—
Mechanisms
6
Interactions
5
Value Grade
D+
Key Risks for Pyth Network Users
Pyth delivers price data across 100+ blockchains using Wormhole's cross-chain messaging system. Wormhole suffered a $320 million exploit in February 2022, and any future Wormhole vulnerability could compromise the integrity of Pyth price feeds across all integrated chains.
Unlike Chainlink's push-based model where oracles automatically update prices on-chain, Pyth uses a pull-based system where DeFi protocols must actively request price updates. If a protocol fails to pull fresh data during rapid price movements, it may use stale prices for liquidations or trades, potentially causing user losses.
While Pyth has 124+ registered publishers, some less liquid price feeds rely on a smaller subset of active publishers. If several major publishers simultaneously experience outages or submit incorrect data for a specific feed, the aggregation mechanism may not fully compensate, producing an incorrect price.
The PYTH token is primarily a governance token with limited fee capture. Publisher rewards represent 22% of total supply, creating ongoing emission pressure. If PYTH price declines significantly, publisher rewards may become insufficient to maintain high-quality data infrastructure.
Top Risk Factors
- •First-party oracle data publisher trust: Pyth relies on data publishers (exchanges, market makers, trading firms) to submit honest price data. While aggregation across 124+ publishers reduces manipulation risk, individual publishers could submit stale or incorrect data. The confidence interval mechanism provides a measure of data agreement, but downstream DeFi protocols may not always properly handle wide confidence bands.
- •Pull-based oracle model introduces latency risk: Unlike Chainlink's push-based model, Pyth uses a pull-based system where consumers must request price updates. If a DeFi protocol fails to pull an update during rapid price movement, it may use stale data for critical operations like liquidations. The 400ms update frequency mitigates this for active consumers, but the model shifts responsibility for freshness to integrators.
- •Cross-chain message relay dependency: Pyth uses Wormhole as its cross-chain messaging layer to deliver price data from Pythnet (its Solana-based appchain) to 100+ supported blockchains. Wormhole has experienced significant security incidents (including a $320M exploit in February 2022), and any Wormhole vulnerability could compromise price data integrity across all Pyth-integrated chains.
- •Concentrated publisher ecosystem despite breadth: While Pyth lists 124+ publishers, a significant portion of price feed data comes from a smaller subset of high-volume publishers (Binance, Cboe, Jane Street). If several major publishers simultaneously experience outages or submit incorrect data, the aggregation mechanism may not fully compensate.
Risk Score Breakdown
Pyth Network's highest risk area is Scale Exposure (5/10). Here's how each dimension contributes to the overall 22/100 score:
Read the Full Pyth Network Risk Report
This protocol has 2 collapse scenarios. 1 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.
View Full Report →Considering an investment?