Aave Moves to Reclaim Risk Infrastructure With LlamaRisk Renewal

Aave is renewing LlamaRisk's role as Risk Service Provider while pursuing a structural fix to its infrastructure dependencies. The protocol plans to build protocol-owned risk systems on Chainlink's Runtime Environment, ensuring community oversight and operational resilience.

Aave is taking a decisive step toward operational independence by renewing LlamaRisk's mandate as its Risk Service Provider for another epoch. The decision arrives at a critical juncture: the protocol recently experienced a significant disruption when a primary risk vendor's departure left it without essential infrastructure, including automated oracles and parameter automation systems. This vulnerability exposed a structural problem that has quietly plagued decentralized protocols for years—the outsourcing of core security functions to external providers operating closed-source systems that the DAO cannot inspect, verify, or seamlessly replace.

The incident highlighted how delegation of risk management to a single entity, no matter how competent, introduces hidden dependencies that can cripple protocol operations overnight. When Aave's risk layer became unavailable, there was no fallback mechanism and no way for the community to quickly understand or remediate the underlying systems. This is precisely the kind of single point of failure that undermines the resilience promise of decentralized finance. LlamaRisk's response—immediately stepping in alongside AaveLabs to restore the Risk Steward and maintain operational continuity—bought time, but the renewal proposal addresses something more fundamental: making this situation structurally impossible in the future.

The solution centers on building Aave's risk infrastructure as a protocol-owned system rather than a delegated service. LlamaRisk plans to migrate the risk layer onto Chainlink's Runtime Environment, a framework that allows the Aave DAO to retain full custody of its risk code while still leveraging professional management. Crucially, this architecture enables the community to cryptographically verify off-chain logic through workflow IDs, preserving transparency without forcing all operations on-chain. The proposal commits to comprehensive coverage across Aave V3, V4, and the emerging Horizon instance, encompassing specialized price feeds for complex assets like Pendle perpetual tokens and real-world asset NAVs, dynamic parameter automation for supply and borrow caps, interest rate management, and circuit breaker systems. All code will undergo audits before deployment.

This renewal marks a philosophical shift in how Aave approaches critical infrastructure—from outsourcing to owning, from opaque to verifiable, from dependent to autonomous. As protocols continue absorbing lessons from operational failures, the move toward protocol-owned risk layers will likely become a template other lending platforms adopt.