Aave V2 Deprecation: Risk Mitigation Through Oracle Simplification

Aave V2's deprecation strategy now includes hardcoding stablecoin prices to prevent oracle manipulation attacks that could trigger unfair liquidations. The move simplifies operations while closing a critical security gap as the legacy market winds down.

As Aave V2 approaches its sunset phase, the protocol faces a critical operational decision: how to safely wind down legacy markets while minimizing exposure to sophisticated attack vectors. Chaos Labs has completed a comprehensive analysis of oracle configurations and risk parameters across V2's listed assets, resulting in targeted recommendations that balance operational efficiency with protocol security. The core insight is counterintuitive—sometimes the simplest approach to managing risk is preferable to relying on complex external data feeds that create potential vulnerabilities in markets designated for deprecation.

The most consequential recommendation involves stablecoin oracle treatment. For stablecoins functioning exclusively as debt assets without Curve Price Oracle (CAPO) upper bounds, Chaos Labs proposes hardcoding prices at $1 rather than relying on dynamic oracle mechanisms. This seemingly trivial change addresses a genuine attack surface: an adversary with sufficient stablecoin holdings could temporarily manipulate price feeds upward, artificially inflating reported debt values across the protocol. While the underlying economic worth of the debt remains stable, the inflated oracle price triggers cascading liquidations, creating asymmetric advantages for attackers positioned as liquidators. They can repay debt at genuine market rates while seizing collateral valued at artificially elevated prices—a transfer of value directly from unsuspecting borrowers to malicious actors.

The mechanics of this attack are particularly pernicious in liquidation scenarios. If oracle manipulation inflates debt prices sufficiently, a liquidator could theoretically repay only a minimal debt portion while claiming an entire collateral position. Once the price manipulation reverts, the account would retain substantial debt but lack collateral backing, effectively creating a protocol loss. By hardcoding stablecoin prices, Aave eliminates this manipulation vector entirely while reducing operational complexity—no external price feeds means no temporary deviations, regardless of market volatility or coordinated oracle attacks. This approach mirrors industry best practices seen in other protocols managing legacy or wind-down markets.

The broader strategic implication reflects maturity in protocol risk management. Rather than maintaining full market functionality during deprecation, Aave is strategically simplifying attack surfaces while preserving core functionality. This sets a precedent for how established protocols responsibly retire legacy versions without creating security vacuums that sophisticated attackers can exploit during transition periods.