Is Rootstock Safe?
Risk Grade: C+ (37/100)
Rootstock is rated as elevated risk — multiple novel mechanisms and notable interaction risks.
Rootstock is the most proven Bitcoin smart contract platform — 7+ years, no bridge exploits, ~85% Bitcoin hashrate backing — but it faces a genuine existential challenge from newer Bitcoin L2s that offer better DeFi UX and more active developer communities. The PowPeg bridge is the right risk to focus on: it's the architecture that secures all bridged BTC, and while the HSM design is clever, it ultimately rests on trusting 9 federations members. For DeFi-on-Bitcoin exposure, RSK offers the strongest security track record but the weakest growth narrative among current Bitcoin L2 options. Best suited for risk-conscious Bitcoin holders who want smart contract functionality without venturing far from Bitcoin's security model.
Rootstock (RSK) is Bitcoin's oldest and most battle-tested smart contract platform, launched in January 2018 as a sidechain secured by Bitcoin's proof-of-work via merge-mining. Think of it as Ethereum built on top of Bitcoin's security: miners simultaneously mine both networks at no extra cost, with ~81-90% of Bitcoin's hashrate protecting RSK in 2025. The native token RBTC is a 1:1 BTC-pegged gas token managed by the PowPeg bridge — a federation of 9 hardware-secured signatories (pegnatories) who control the BTC-RBTC bridge using tamper-resistant HSM devices. RSK hosts approximately $163-197M in DeFi TVL (Q4 2025), with Money on Chain and Sovryn as the leading protocols. The RIF token provides ecosystem utility (name services, storage, payments) and in February 2025 integrated with LayerZero, enabling RBTC/RIF to move across 100+ blockchains. The biggest risk isn't RSK's technical design — it's the trust placed in the PowPeg federation: 9 companies/individuals hold the keys to all bridged BTC, and if a majority are compromised or coerced, all locked BTC is at risk. The Ronin Bridge hack (same n-of-m multisig model) is the closest historical parallel. On the positive side: 7+ years without a bridge-level exploit is a strong Lindy effect, and the PowHSM design makes casual key theft extremely difficult. The main challenge is competitive: newer Bitcoin L2s (BOB, Babylon, Stacks with sBTC) are attracting developers, and RSK's active address count has been declining — from ~420/day in Q3 2025 to ~280/day in Q4 2025.
TVL
$24,000
Mechanisms
6
Interactions
5
Value Grade
C-
Key Risks for Rootstock Users
Federation bridge risk: 9 signatories control all bridged BTC. A majority compromise (via hack, regulatory seizure, or insider threat) could drain the bridge. The Ronin Bridge exploit showed this architecture can fail even with reputable participants.
Ecosystem concentration: Money on Chain holds ~48% of RSK's TVL. A single protocol failure or exploit could cut RSK's TVL nearly in half overnight.
Competitive displacement: Newer Bitcoin L2s with better UX, more liquidity, and fresher developer communities are gaining traction. RSK's declining active user metrics (-18% YoY in Q4 2025) suggest this competitive pressure is already materializing.
RIF token limited upside: With all 1 billion RIF tokens already in circulation and limited direct fee-capture from RSK protocol activity, RIF appreciation depends heavily on ecosystem growth that has been slowing.
Top Risk Factors
- •PowPeg federation of ~9 HSM-holding signatories controls all bridged BTC — regulatory pressure or coordinated key compromise could freeze or seize peg reserves
- •Emergency Recovery Protocol (ERP) involves named entities including RootstockLabs and MoneyOnChain, creating a secondary centralization vector if PowPeg signatories become unresponsive
- •Declining user-side metrics (active addresses -33% QoQ, -18% YoY in Q4 2025) despite strong merge-mining participation, suggesting ecosystem may be losing developer/user traction to newer Bitcoin L2 competitors
- •RIF token utility largely limited to RIF Name Service and ecosystem services; limited fee-capture mechanism means token does not benefit proportionally from protocol growth
How Rootstock Compares to Peers
Rootstock ranks #18 of 37 L2 protocols (above-median). At a risk score of 37/100, it's in line with the sector average (36/100).
Adjacent peers: Soneium (C+, 36/100) is ranked just safer, and Immutable X (C+, 37/100) is ranked just riskier.
See the full L2 sector leaderboard or the Rootstock vs Immutable X comparison.
Common Questions about Rootstock
Plain-English answers based on Rootstock's scores across Hindenrank's 8 risk dimensions. The highest-scoring (riskiest) dimension is Vitality Risk (6/10).
Has Rootstock ever been hacked or exploited?
Rootstock has no recorded incidents in Hindenrank's track record dimension (scored 0/15). This is the strongest possible signal on this dimension, but the protocol may simply be too new or too small to have been stress-tested.
How much money is at stake in Rootstock?
Rootstock currently holds a small TVL — exit liquidity is a real concern at this size. Smaller TVL means individual depositors carry a larger share of any loss event, and it can be harder to exit a position quickly during stress.
What's the worst-case scenario for Rootstock?
Hindenrank has identified specific collapse scenarios for Rootstock. The most prominent: "PowPeg Federation Compromise". The trigger condition is A coordinated attack (HSM firmware exploit, regulatory seizure of multiple pegnatories, or insider threat) compromises a supermajority of the 9 PowPeg signatories simultaneously. Reading through the full scenario list on the protocol page is the single best way to understand the actual failure modes — generic "smart contract risk" is rarely the thing that takes a protocol down.
Is Rootstock regulated or insured?
Rootstock has some regulatory exposure (4/10), typical of mid-sized DeFi protocols. There is no specific enforcement action on record, but the structure includes elements that regulators have flagged in similar protocols. No DeFi protocol carries FDIC-style insurance — even with low regulatory risk, depositors are not protected in the way bank customers are.
What are the biggest red flags for Rootstock?
Hindenrank's retail-focused risk audit flagged: Federation bridge risk: 9 signatories control all bridged BTC. A majority compromise (via hack, regulatory seizure, or insider threat) could drain the bridge. The Ronin Bridge exploit showed this architecture can fail even with reputable participants. Ecosystem concentration: Money on Chain holds ~48% of RSK's TVL. A single protocol failure or exploit could cut RSK's TVL nearly in half overnight. Competitive displacement: Newer Bitcoin L2s with better UX, more liquidity, and fresher developer communities are gaining traction. RSK's declining active user metrics (-18% YoY in Q4 2025) suggest this competitive pressure is already materializing. On the technical side, 1 critical-severity interaction risk has been identified.
Should beginners deposit into Rootstock?
Rootstock's C+ grade puts it in the elevated-risk band. This is not a beginner-friendly protocol. Anyone depositing here should treat the position as speculative and avoid concentrating significant savings in it.
How does Rootstock compare to safer L2 alternatives?
Rootstock is one protocol in Hindenrank's L2 coverage. The safest L2 protocols on the leaderboard tend to share three traits: a long incident-free track record, conservative mechanism design, and high-quality public documentation. Compare Rootstock against the full L2 ranking before committing capital.
For the full 8-dimension score breakdown, the radar chart, and dependency graph, see the Rootstock risk report.
Read the Full Rootstock Risk Report
This protocol has 2 collapse scenarios. 1 critical and 2 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.
View Full Report →Get risk alerts before it's too late
Weekly grade changes, downgrade alerts, and new protocol risk findings. Free.