AgentSkillsCN

design-defi

DeFi协议设计——可组合性、不变量设计、经济安全与攻击面分析。

SKILL.md
--- frontmatter
name: design-defi
description: DeFi protocol design — composability, invariant design, economic security, and attack surface analysis

What I do

  • Provide protocol design frameworks for DeFi systems
  • Document composability risks, invariant design, and economic security analysis
  • Cover MEV exposure, governance patterns, and token economic constraints
  • Supply attack surface analysis and anti-patterns for protocol designers

When to use me

Use this skill when designing DeFi protocols, analyzing economic security, or evaluating protocol composability. Pair with design-core for foundational design principles and design-web3 for blockchain architecture decisions.

DeFi Protocol Taxonomy

CategoryExamplesCore MechanismPrimary Risk
AMMUniswap, Curve, BalancerConstant-function market makingImpermanent loss, MEV extraction
Lending/BorrowingAave, Compound, MorphoCollateralized debt positionsLiquidation cascades, oracle failure
Yield AggregatorYearn, BeefyStrategy routing across protocolsComposability risk, strategy bugs
DerivativesGMX, dYdX, SynthetixSynthetic exposure or perpetualsOracle manipulation, funding rate attacks
StablecoinsMakerDAO, Frax, EthenaPeg maintenance via collateral or algorithmDe-peg events, bank run dynamics
Liquid StakingLido, Rocket PoolTokenized staking positionsValidator slashing, redemption delays

Composability Risk Matrix

InteractionRisk LevelFailure Mode
Protocol A reads Protocol B's priceHighOracle manipulation propagates across protocols
Protocol A holds Protocol B's LP tokensMediumIL or exploit in B drains A's reserves
Protocol A uses Protocol B as collateralHighDe-peg or exploit in B triggers cascading liquidations
Protocol A routes through Protocol BMediumB's downtime or exploit blocks A's core function
Protocol A governs Protocol B's parametersLow-MediumGovernance attack on A compromises B

Rule: Every external protocol dependency is an attack surface. Map all dependencies before launch. Have circuit breakers for each.

Invariant Design by Protocol Type

Protocol TypeCore InvariantViolation Consequence
AMM (x*y=k)Reserve product is non-decreasing after feesFunds drained via price manipulation
LendingTotal borrows <= total collateral * LTVProtocol insolvency, bad debt
StablecoinCollateral value >= outstanding supply * target ratioDe-peg, bank run
Vault/AggregatorShare price is monotonically non-decreasingDepositors lose principal
DerivativesSum of all positions' PnL + fees = 0 (zero-sum)Protocol takes unhedged directional risk

Test invariants continuously. Every state transition must preserve invariants. Fuzz with adversarial sequences, not just single operations.

Economic Security Analysis Framework

  1. Oracle dependencies -- List every price feed. What happens if each returns stale data, zero, or max uint? Use TWAP over spot where possible.
  2. Liquidation cascades -- Model what happens when collateral drops 30% in one block. Can liquidators process the volume? Is there bad debt?
  3. Flash loan attack surface -- Can any function be exploited when an attacker has unlimited capital for one transaction? Test every public function with flash-loaned inputs.
  4. Price manipulation vectors -- Can a large trade in a low-liquidity pool move a price that your protocol depends on? Calculate cost of attack vs profit.
  5. Governance attack cost -- How much capital to acquire enough votes to pass a malicious proposal? Is it less than the protocol's TVL?

MEV Exposure Assessment

MEV TypeAffected ProtocolsMitigation
Sandwich attacksAMMs, DEX aggregatorsSlippage limits, private mempools, batch auctions
FrontrunningLiquidations, NFT mintsCommit-reveal schemes, Flashbots Protect
BackrunningOracle updates, large tradesDesign for it; let arbitrageurs correct prices
JIT liquidityConcentrated liquidity AMMsAccept as feature; benefits traders
Liquidation MEVLending protocolsDutch auction liquidations, gradual liquidation

Protocol Upgrade & Governance Patterns

PatternSpeedSecurityBest For
ImmutableN/AMaximumSimple, audited, final protocols
Timelock + multi-sigDaysHighProduction protocols with known admin set
Governor + token votingDays-weeksMediumDecentralized protocols with active community
Emergency shutdownImmediateSituationalCircuit breaker for critical vulnerabilities
Optimistic governanceDays (unless vetoed)Medium-HighFrequent parameter updates with safety net

Default: Timelock (48h minimum) + multi-sig (3/5 or higher) for all privileged operations. Emergency shutdown as a separate, faster path.

Token Economic Design Constraints

  • Supply mechanics -- Fixed supply, inflationary, or deflationary. Each creates different holder incentives and long-term sustainability.
  • Incentive alignment -- Token holders, LPs, and users must all benefit from protocol growth. Misalignment leads to mercenary capital.
  • ve-token models -- Lock tokens for voting power and boosted rewards. Aligns long-term holders but creates liquidity risk and governance capture.
  • Fee distribution -- Protocol fees to token holders, treasury, or buyback-and-burn. Each has regulatory and incentive implications.
  • Emission schedules -- Front-loaded emissions attract early users but create sell pressure. Gradual emissions sustain longer but grow slower.

Anti-Patterns

Anti-PatternWhy It FailsWhat To Do Instead
Unbounded composabilityEach integration multiplies attack surfaceWhitelist integrations; circuit breakers per dependency
Single oracle dependencyOracle failure or manipulation breaks the protocolMultiple oracle sources with median or fallback logic
No circuit breakersExploits drain entire TVL before anyone reactsPause functions, rate limits, maximum single-tx value
Rug-pullable admin keysSingle EOA controls protocol funds or parametersTimelock + multi-sig; progressive decentralization
Untested invariantsInvariant violations discovered in productionFuzz invariants with adversarial sequences before launch
Ignoring flash loan contextFunctions assume capital constraints that flash loans removeTest every public function with flash-loaned inputs
Copy-paste tokenomicsToken model from unrelated protocol misaligns incentivesDesign token mechanics for your specific value flows