Immutable X

Immutable X receives a C+ risk grade (37/100) from Hindenrank, where lower scores indicate lower risk. Elevated risk — instantly upgradeable contracts, no forced-inclusion mechanism, and off-chain data availability create significant trust assumptions, partially offset by a clean track record and strong gaming partnership pipeline. Immutable X is an Ethereum Layer 2 focused on gaming and NFTs, originally built on StarkEx and now transitioning to Immutable zkEVM powered by Polygon CDK. With over 660 signed gaming titles and approximately $200M in ecosystem value, it is the leading Web3 gaming infrastructure platform. Its C+ grade reflects significant centralization risks: instantly upgradeable contracts with no timelock, a centralized sequencer with no forced-inclusion mechanism, and off-chain data availability that prevents users from independently verifying state. The protocol has no history of exploits and benefits from $277M in institutional backing, but the gaming-concentrated ecosystem and heavy admin key dependency drive the elevated risk assessment.

The key risks identified for Immutable X are: (1) Immutable zkEVM's core contracts — including the bridge holding user assets — can be upgraded instantly by admin keys with no timelock delay and no exit window for users. This means the team could theoretically modify the system at any time, and users have no opportunity to withdraw before an unwanted change takes effect. (2) If the centralized sequencer goes offline or censors transactions, there is no mechanism for users to force-include their transactions on Ethereum L1. Unlike Arbitrum and Optimism which offer forced-inclusion fallbacks, Immutable zkEVM withdrawals are effectively frozen during any sequencer outage. (3) Transaction data is stored off-chain (validium mode) rather than posted to Ethereum. While this reduces costs, it means users cannot independently verify the chain state or prove their balances if the data availability provider fails or withholds information. (4) The protocol's revenue depends almost entirely on NFT and gaming trading volume, which has been volatile across the Web3 gaming sector. If gaming adoption does not sustain current levels, protocol fees, staking rewards, and ecosystem development funding all decline.

Immutable X scores 37/100 across eight risk dimensions: Mechanism Novelty: 3/15, Interaction Severity: 8/20, Oracle Surface: 0/10, Documentation Gaps: 4/10, Track Record: 3/15, Scale Exposure: 5/10, Regulatory Risk: 6/10, Vitality Risk: 8/10. The highest risk area is Vitality Risk at 8/10.

Among 37 rated L2 protocols on Hindenrank, Immutable X ranks #18 by safety (lowest risk score = safest). Its 37/100 risk score and C+ grade place it in the middle tier of L2 protocols.

Immutable X scores 3/15 on the Track Record risk dimension, indicating some history of security incidents or exploits. Higher scores reflect more severe or frequent incidents. Review the full risk report for details.