Is Vesu Safe?

|Lending
C+

Risk Grade: C+ (38/100)

Vesu is rated as elevated risk — multiple novel mechanisms and notable interaction risks.

Vesu represents an ambitious experiment in fully permissionless, governanceless lending on Starknet. The programmable hooks system is innovative but introduces significant smart contract risk. Suitable for DeFi-native users who understand the risks of permissionless pool systems, but not for conservative depositors seeking battle-tested lending.

Vesu is a fully permissionless lending protocol on Starknet where anyone can create lending pools with custom risk parameters. Unlike most DeFi lending platforms, Vesu has no governance token and no central authority — it operates as pure infrastructure. Users can supply crypto assets to earn yield, borrow against collateral, or build custom lending experiences using programmable 'hooks.' The protocol also offers Vesu Vaults, which are automated yield strategies that allocate across multiple lending pools. Vesu has been audited by ChainSecurity but was flagged for high complexity and elevated risk of undiscovered bugs.

TVL

$24M

Mechanisms

6

Interactions

4

Value Grade

D-

Key Risks for Vesu Users

1.

Permissionless pool creation means anyone can set up a lending pool — malicious or poorly configured pools could trap depositor funds.

2.

ChainSecurity audit flagged high complexity and single developer dependency, with novel issues found in the last review cycle.

3.

No governance token or safety module means there is no protocol-level backstop if something goes wrong — depositors bear all losses.

Top Risk Factors

  • Vesu's fully permissionless lending pool creation with programmable 'hooks' introduces significant smart contract surface area — ChainSecurity's audit noted the 'high complexity and extensibility present a large attack surface.'
  • The protocol relies primarily on one smart contract developer, and novel issues and regressions were found during the last audit review cycle, presenting elevated risk of undiscovered vulnerabilities.
  • No governance token means no economic backstop or safety module — bad debt from permissionless pools has no recourse beyond the pool's own depositors.

Risk Score Breakdown

Vesu's highest risk area is Track Record (8/15). Here's how each dimension contributes to the overall 38/100 score:

Mechanism Novelty6/15
Interaction Severity8/20
Oracle Surface3/10
Documentation Gaps3/10
Track Record8/15
Scale Exposure3/10
Regulatory Risk5/10
Vitality Risk2/10

Read the Full Vesu Risk Report

This protocol has 2 collapse scenarios. 2 high-severity interaction risks identified. See the full mechanism classification, interaction matrix, and deep-dive recommendations.

View Full Report →

Considering an investment?

Read our Investment Analysis →Compare Lending Alternatives →

Related Lending Safety Analyses

Is Tapioca Safe?D+Is Abracadabra Safe?D+Is Radiant Capital Safe?D+Is YieldBlox Safe?D+Is Maple Finance Safe?C-

Related Lending Investment Analyses

Is Tapioca a Good Investment?D-Is Abracadabra a Good Investment?D-Is Radiant Capital a Good Investment?FIs YieldBlox a Good Investment?DIs Maple Finance a Good Investment?C

Ratings use Hindenrank's eight-dimension risk rubric. Lower score = lower risk. Grades range from A (safest) to F (riskiest). This is not financial advice.