Is Rings Protocol Safe?
Risk Grade: C- (53/100)
Rings Protocol is rated as elevated risk — multiple novel mechanisms and notable interaction risks.
Rings Protocol (Trevee) offers a novel yield-bearing stablecoin model on Sonic with genuine utility in the Sonic DeFi ecosystem, but carries above-average risk from its cross-chain architecture, demonstrated counterparty losses, and short track record. The $14M Stream Finance fraud in 2025 revealed material yield strategy fragility. Best suited for DeFi-native users with high risk tolerance who specifically want yield-bearing stablecoin exposure on Sonic.
Rings Protocol (now rebranded to Trevee) is a yield-bearing stablecoin protocol native to the Sonic blockchain. Users deposit stablecoins like USDC to mint scUSD, which maintains a 1:1 peg to USD. The protocol's key feature is that your deposited collateral does not sit idle — it is automatically deployed into DeFi yield strategies on Ethereum (via Veda BoringVaults) earning yield from protocols like Aave, Convex, and Morpho. This yield is then distributed to users who stake their scUSD to receive stkscUSD. The protocol also features a governance layer where users can lock staked tokens to earn bribes from other DeFi protocols competing for scUSD liquidity. Rings reached a peak TVL of $111M in February 2025 before contracting to approximately $54M. In November 2025, the protocol rebranded to Trevee and suffered a $14M loss from exposure to the Stream Finance fraud, which forced shutdown of its rehypothecation feature. Unlike traditional CDPs like MakerDAO, Rings does not use a liquidation engine — instead relying on 1:1 collateral backing. This simplicity removes liquidation cascades as a risk but means any collateral loss directly reduces scUSD backing. Key contracts are protected by a 3/5 multisig and a 24-hour timelock. Security audits on the underlying Veda BoringVault were conducted by Spearbit and 0xMacro.
TVL
$54M
Mechanisms
7
Interactions
6
Value Grade
B-
Key Risks for Rings Protocol Users
Your funds are held on two blockchains simultaneously: scUSD circulates on Sonic while your collateral sits in vaults on Ethereum. This cross-chain structure means a bridge failure could temporarily lock your ability to redeem, and there is a 5-day waiting period for redemptions even under normal conditions.
Yield strategies introduce hidden counterparty risk. In November 2025, Trevee lost $14M to the Stream Finance fraud — demonstrating that the yield-earning strategies backing scUSD can suffer losses that reduce the 1:1 backing ratio. Unlike overcollateralized CDPs, there is no liquidation buffer to absorb these losses.
The ve(3,3) governance system creates incentives for veNFT holders to vote for gauge allocations based on bribe payments rather than protocol safety, potentially directing scUSD liquidity toward riskier protocols that offer higher bribes.
Sonic is a relatively new blockchain (rebranded from Fantom in 2024/2025) with a smaller ecosystem than Ethereum. Sonic-specific risks include lower liquidity depth, fewer security researchers auditing contracts, and greater dependence on a small set of DeFi protocols for scUSD utility.
Top Risk Factors
- •Cross-chain collateral architecture creates bridge dependency: all user collateral is held in Veda BoringVaults on Ethereum mainnet while scUSD circulates on Sonic, exposing users to bridge failure, relay manipulation, or cross-chain settlement delays
- •Counterparty concentration risk demonstrated: $14M exposure to Stream Finance fraud (Nov 2025) forced shutdown of rehypothecation feature and triggered legal proceedings, revealing yield strategy fragility in adversarial market conditions
- •5-day redemption cooldown for scAssets limits exit liquidity during stress events, and peg stability during market dislocations relies on third-party DeFi integration depth rather than direct redemption arbitrage
- •ve(3,3) governance incentive model concentrates voting power among bribe-motivated veNFT holders, creating potential misalignment between gauge allocations and protocol safety
How Rings Protocol Compares to Peers
Rings Protocol ranks #25 of 25 CDP protocols (bottom quartile — among the riskiest). At a risk score of 53/100, it's 17 points riskier than the sector average of 36/100.
See the full CDP sector leaderboard or the Rings Protocol vs Pando Leaf comparison.
Common Questions about Rings Protocol
Plain-English answers based on Rings Protocol's scores across Hindenrank's 8 risk dimensions. The highest-scoring (riskiest) dimension is Interaction Severity (14/20).
Has Rings Protocol ever been hacked or exploited?
Rings Protocol has had some operational issues or moderate incidents in its history. The track record dimension scored 9/15 — not catastrophic, but enough to flag. Look at the specific events and whether they were addressed by the team before drawing conclusions.
How much money is at stake in Rings Protocol?
Rings Protocol currently holds roughly $54M in user deposits. Smaller TVL means individual depositors carry a larger share of any loss event, and it can be harder to exit a position quickly during stress.
What's the worst-case scenario for Rings Protocol?
Hindenrank has identified specific collapse scenarios for Rings Protocol. The most prominent: "Bridge Failure Triggers Ghost-Backed Stablecoin". The trigger condition is The Sonic ↔ Ethereum bridge used to relay collateral and yield settlements is exploited or halted for an extended period (days or longer). Reading through the full scenario list on the protocol page is the single best way to understand the actual failure modes — generic "smart contract risk" is rarely the thing that takes a protocol down.
Is Rings Protocol regulated or insured?
Rings Protocol has some regulatory exposure (4/10), typical of mid-sized DeFi protocols. There is no specific enforcement action on record, but the structure includes elements that regulators have flagged in similar protocols. No DeFi protocol carries FDIC-style insurance — even with low regulatory risk, depositors are not protected in the way bank customers are.
What are the biggest red flags for Rings Protocol?
Hindenrank's retail-focused risk audit flagged: Your funds are held on two blockchains simultaneously: scUSD circulates on Sonic while your collateral sits in vaults on Ethereum. This cross-chain structure means a bridge failure could temporarily lock your ability to redeem, and there is a 5-day waiting period for redemptions even under normal conditions. Yield strategies introduce hidden counterparty risk. In November 2025, Trevee lost $14M to the Stream Finance fraud — demonstrating that the yield-earning strategies backing scUSD can suffer losses that reduce the 1:1 backing ratio. Unlike overcollateralized CDPs, there is no liquidation buffer to absorb these losses. The ve(3,3) governance system creates incentives for veNFT holders to vote for gauge allocations based on bribe payments rather than protocol safety, potentially directing scUSD liquidity toward riskier protocols that offer higher bribes. On the technical side, 2 critical-severity interaction risks have been identified.
Should beginners deposit into Rings Protocol?
Rings Protocol's C- grade puts it in the elevated-risk band. This is not a beginner-friendly protocol. Anyone depositing here should treat the position as speculative and avoid concentrating significant savings in it.
How does Rings Protocol compare to safer CDP alternatives?
Rings Protocol is one protocol in Hindenrank's CDP coverage. The safest CDP protocols on the leaderboard tend to share three traits: a long incident-free track record, conservative mechanism design, and high-quality public documentation. Compare Rings Protocol against the full CDP ranking before committing capital.
For the full 8-dimension score breakdown, the radar chart, and dependency graph, see the Rings Protocol risk report.
Read the Full Rings Protocol Risk Report
This protocol has 2 collapse scenarios. 2 critical and 4 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.
View Full Report →Get risk alerts before it's too late
Weekly grade changes, downgrade alerts, and new protocol risk findings. Free.