In November 2025, a $93 million loss at a single yield protocol became roughly $285 million in cross-protocol debt exposure in under 72 hours. The capital was not stolen from the vaults. It was deployed into them, by curators whose disclosures looked reasonable right up until they did not. Vault curator due diligence is now the load-bearing control in onchain credit, and most of it is still being done on a front page that shows APY and TVL.
TL;DR
- Curated vaults are the dominant structure in onchain lending, with billions routed through Morpho, Euler, and adjacent protocols by exchanges, asset managers, and treasuries
- Curators do not hold your funds. They set the caps, whitelists, oracles, and leverage bounds that decide whether the vault survives stress
- The November 2025 Stream Finance and Elixir failures were not custody failures. They were disclosure failures, and every warning sign was visible onchain to anyone measuring the right conditions
- TVL is not exit liquidity, a stated cap is not a contract-enforced cap, and a launch-day review is not a rating
- The ten questions below map to the structural conditions that actually precede loss
- Webacy's Vault Technical Risk Rating scores these conditions continuously, with every score traceable to the specific structural condition driving it
Why Curator Risk Became the Main Risk
A vault curator is an independent risk manager who configures a lending vault: which markets it can enter, how much exposure each one gets, which collateral is acceptable, which oracle prices it, and how leverage is bounded. Gauntlet, Steakhouse, Re7, MEV Capital, and now traditional managers like Bitwise all operate in this role. The closest traditional analogue is a fund manager, with one structural difference: the curator never takes custody. Contract-level caps mean a curator physically cannot move funds somewhere the vault does not permit.
That guarantee is narrower than most depositors think. It protects you from theft by the curator. It does not protect you from a curator whitelisting collateral that turns out to be backed by nothing.
Academic work published in late 2025 framed the change: DeFi lending has evolved into a two-layer architecture where base protocols supply the infrastructure and third-party curators determine underwriting parameters, leverage bounds, and oracle feeds. The researchers argued that this transition requires a corresponding upgrade in transparency standards, so that curator strategies can be compared on a money-market basis.
Learning From History: What November 2025 Taught Us
Stream Finance disclosed a roughly $93 million loss caused by an external fund manager. Its xUSD token fell around 77% within 24 hours. Because xUSD had been accepted as collateral across Morpho, Euler, Silo, and Gearbox, the loss propagated outward. The DeFi research group Yields and More identified close to $285 million in direct debt exposure across lending protocols, with TelosC, Elixir, MEV Capital, and Re7 Labs among the most exposed creditors.
The leverage was recursive. Onchain analysis before the collapse estimated backing assets of roughly $170 million against borrowing of roughly $530 million, a leverage ratio above 4x built through looping.
The dependency was circular. Elixir's deUSD had lent approximately $68 million to Stream, representing about 65% of deUSD's backing, against xUSD collateral. xUSD was in part backed by borrowed deUSD. When one broke, both broke.
The oracle was frozen. Multiple protocols had hardcoded xUSD's price at $1.00 to prevent cascading liquidations. Positions that should have been liquidated could not be. Curated vault TVL fell from a peak near $10 billion in three days as depositors ran for exits that, in many vaults, were not there.
None of these design choices were hidden, but nobody asked them to be clarified.
So, here are 10 questions you can ask your vault curator before you deploy capital.
The 10 Questions
1. What is the effective leverage in this vault after netting recursive positions, and where is the cap enforced?
Ask for the number after loops are netted, not the headline collateralization ratio. Ask where the cap lives. A cap in a policy document is a promise, but a cap enforced at the contract level is a constraint. Morpho Vaults V2 lets curators set both absolute and relative caps on shared risk identifiers such as collateral, oracle, and protocol exposure. Ask which of theirs are actually set.
2. What can actually exit today, and at what price impact?
What share of the vault can redeem within 24 hours without moving the underlying markets, and what the idle balance and liquidity adapter depth look like right now. In a stress event, everyone asks this question at the same moment, and the answer is usually worse than it was the day before.
3. What happens when utilization pins at 100%?
Utilization crossing 85% should carry a warning. When Stream unwound, one xUSD market reportedly reached 100% utilization with borrow rates near 88%, and positions did not liquidate. Lista DAO ran an emergency governance vote to force-liquidate vaults where borrow rates had climbed toward 800% and borrowers were not repaying. Lenders were liquid on paper and locked out in practice.
Ask for the mechanism: Who can force deallocation, at what penalty, and has it ever been used?
4. Which oracle prices each market, and is any price hardcoded?
This is the question most diligence checklists get almost right. "What oracle do you use" invites a brand name. The correct question is whether any market in the vault uses a hardcoded price, a fundamental-value oracle, or any feed that will not move when the market does. Those designs exist for a reason, and the reason is to suppress liquidations. That suppression is exactly what turned a depeg into bad debt in November 2025.
5. What is my look-through exposure, not my first-hop exposure?
Concentration by asset and by counterparty is the right instinct but applied one level too shallow. Ask the curator to show the dependency graph: for every asset in the vault, what backs it, and does any of that backing loop back into something else the vault holds. Ask whether their other vaults hold correlated exposure to the same counterparty. Elixir's first-hop exposure looked like a diversified lending position but two hops down it was a closed circle.
6. How much of your yield comes from sources I cannot verify onchain?
Stream's xUSD vault expanded from roughly $40 million to nearly $400 million while displaying a flat 15% yield throughout the growth. Onchain yield compresses as more depositors split the same fees. A yield that stays flat through a 10x is a number being set rather than earned, and in this case it was being set against an offchain strategy run by a fund manager with no custody segregation and no onchain verifiability.
Any share of yield sourced offchain is a share of the vault you cannot audit or diligence. That may be acceptable. It should not be invisible.
7. Who holds owner, curator, allocator, and sentinel, and what is the timelock on each action?
Modern vault frameworks separate these roles deliberately. Owners handle top-level permissions, curators set risk parameters, allocators execute, and sentinels can reactively cut caps, deallocate, or revoke pending timelocked changes. Ask who sits in each seat, whether they are the same entity behind different multisigs, and whether the sentinel has ever exercised the veto. Then check the timelock against your answer to Question 2. Timelocks typically run one to seven days. A 24-hour timelock on a vault that needs a week to unwind is decorative.
8. Name every vault you have curated that took a loss, the date, and who absorbed it.
"Have you ever had a loss" invites a no. "Name the vault and the date" invites a record. Curators who disclosed quickly in November 2025 gave the market something to work with. Re7 Labs publicly acknowledged roughly $14.65 million of exposure in its xUSD isolated vault on Euler. That disclosure is a point in a curator's favor, not against it. This is about curator track record.
9. How do you get paid, and what do you lose if I lose?
Curators earn management fees, performance fees, or both, and structures vary widely. A performance-fee-only curator is paid for the upside while the depositor absorbs the downside, which is precisely the incentive that pushes vaults toward the yield frontier. Ask for the split. Then ask the harder version: do you hold first-loss capital in this vault, do you curate for competing protocols, and are you a borrower in any market you whitelisted?
10. Show me this vault's risk score right now, and show me how it has moved.
A launch-day review tells you what a vault looked like the day someone checked. Collateral shifts, liquidity concentrates, governance changes, and leverage builds continuously. A curator who can show you an independent, continuously updated structural score, and can explain which specific condition moved it, is operating at a different standard than one who can send you a PDF.
What Continuous Ratings Change
Webacy is an institutional onchain risk infrastructure company whose Digital Asset Ratings product scores vaults and stablecoins continuously rather than periodically. The Vault Technical Risk Rating evaluates vaults across multiple structural dimensions, producing a composite 0 to 100 score where higher values indicate greater structural risk, with hard floor overrides for critical conditions that no weighted average should be allowed to dilute.
The dimensions map directly onto the questions above: recursive leverage, liquidity concentration, admin key and upgrade exposure, oracle dependency, contamination propagation, and curator risk. The system measures structural integrity rather than performance. Yield is deliberately excluded as a primary driver, because a vault can hold a stable share price while remaining structurally exposed.
The right way to use these ten questions is not as a one-time interview. Ask them, get the answers, and then monitor whether the answers stay true.
FAQ
What is a vault curator in DeFi?
A vault curator is an independent risk manager who configures a lending vault's parameters: which markets it can allocate to, exposure caps, collateral whitelists, oracle selection, and leverage bounds. Curators are noncustodial. They cannot move depositor funds, but they determine the risk the vault carries.
Is curator risk the same as custody risk?
No. Contract-level caps and timelocks prevent a curator from taking or misdirecting funds. Curator risk is underwriting risk: the possibility that a curator whitelists unsound collateral, sets caps too loosely, or relies on an oracle that fails under stress. Every major curated-vault loss to date has come from underwriting, not theft.
What is the difference between TVL and exit liquidity?
TVL measures how much capital sits in a vault. Exit liquidity measures how much of it can leave without moving the underlying markets. In November 2025, curated vault TVL fell from a peak near $10 billion in three days, and many depositors discovered that the second number was far smaller than the first.
How often should a vault be independently rated?
Continuously. Collateral composition, leverage, liquidity depth, and governance parameters all change between reviews. A rating issued at launch describes a vault that no longer exists.
Conclusion
Curated vaults are becoming core financial infrastructure, and the diligence standard has not caught up with the capital. The ten questions above are not a substitute for continuous monitoring. They are the minimum bar for knowing what you are about to monitor. Ask them before you deploy, and then verify that the answers hold every day after.
See Webacy's Digital Asset Ratings live at DD.xyz: continuous, explainable structural risk scores for vaults and stablecoins, with every score traceable to the condition driving it.


