Skip to main content
Sign in
Resupply1 decision on this page

Audit log

Every state-changing event for Resupply: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

  1. #1publishby system:backfill
    2026-05-27 02:44:48Z
    Score: ?? (no score change)
    anchoranchored
    chain
    mainnet-betaslot 422,413,716
    sig
    2JRmbJAr6W5v…5edpv7voexplorer ↗
    hash
    AeQKu7hPY6jD…s8WCpvZBsha256 → base58
    verifying row…full verify ↗
    canonical bytes (8577 B) ▸
    {"actor":"system:backfill","investigation_id":"64e2472a-e552-4647-93d9-1fca1269192c","kind":"publish","page_slug":"resupply","published_at":"2026-05-27T02:44:48.426Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Resupply","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://gov.prismafinance.com/t/pip-46-shutdown-prisma-finance-introduce-resupply/232","type":"other","url":""},{"credibility":3,"name":"https://www.cryptotimes.io/2024/03/29/prisma-finance-hacker-claims-11-6-million-whitehat-rescue/","type":"other","url":""},{"credibility":3,"name":"https://immunebytes.com/blog/prisma-finance-exploit-march-28-2024-detailed-analysis/","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/prisma-finance-exploited-10-million","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://x.com/ConvexFinance/status/1876252394045985148","type":"other","url":""},{"credibility":3,"name":"https://docs.resupply.fi/resupply-governance/tokenomics","type":"other","url":""},{"credibility":3,"name":"https://resupply.finance/","type":"other","url":""},{"credibility":3,"name":"https://iq.wiki/wiki/resupply-usd-reusd","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://blocksecteam.medium.com/blocksec-in-depth-analysis-and-reflections-on-the-resupply-protocol-attack-incident-932be23e1433","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-resupply-hack-june-2025","type":"other","url":""},{"credibility":3,"name":"https://decrypt.co/327148/hacker-drained-9-6-million-from-defi-stablecoin-protocol-resupply","type":"other","url":""},{"credibility":3,"name":"https://www.guardrail.ai/blog/resupplyfi-hack","type":"other","url":""},{"credibility":3,"name":"https://cryptorank.io/news/feed/0ca5a-hacker-drains-9-6-million-from-resupply","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.panewslab.com/en/articles/caa3441e-5a92-415f-b8b7-81b54052db44","type":"other","url":""},{"credibility":3,"name":"https://cryptocurrencynewscast.online/resupplyfi-exploiter-launders-9-8-million-in-stolen-eth-via-tornado-cash/","type":"other","url":""},{"credibility":3,"name":"https://www.dlnews.com/articles/defi/defi-stablecoin-lending-protocol-resupply-hit-with-93m-exploit/","type":"other","url":""},{"credibility":3,"name":"https://cryptopotato.com/stablecoin-protocol-resupply-suffers-9-5m-exploit/","type":"other","url":""},{"credibility":3,"name":"https://www.coinspeaker.com/resupply-fi-hacked-for-9-6m-who-has-been-affected/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto-labs.medium.com/post-hack-silence-governance-failure-deconstructing-resupplys-9-6m-a338cd9a70b7","type":"other","url":""},{"credibility":3,"name":"https://www.aicoin.com/en/article/469162","type":"other","url":""},{"credibility":3,"name":"https://www.panewslab.com/en/articles/176r70wk","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.theblock.co/post/360226/resupply-six-million-burn","type":"other","url":""},{"credibility":3,"name":"https://www.cryptotimes.io/2025/06/30/resupply-plans-6m-reusd-token-burn-to-recover-from-10m-hack/","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/resupply-protocol-outlines-recovery-plan-post-10m-exploit-proposes-6m-token-burn/","type":"other","url":""},{"credibility":3,"name":"https://bitcoinethereumnews.com/tech/resupply-protocol-outlines-recovery-plan-post-10m-exploit-proposes-6m-token-burn/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.ainvest.com/news/resupply-fully-repays-10-million-bad-debt-june-2025-exploit-2508/","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en/square/post/27733819837209","type":"other","url":""},{"credibility":3,"name":"https://www.coingecko.com/en/coins/resupply-usd","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-resupply-hack-june-2025","type":"other","url":""},{"credibility":3,"name":"https://veridise.com/blog/audit-insights/resupplyfi-hack-audit-habit/","type":"other","url":""},{"credibility":3,"name":"https://auditium.io/resources/resupply/","type":"other","url":""},{"credibility":3,"name":"https://blocksecteam.medium.com/blocksec-in-depth-analysis-and-reflections-on-the-resupply-protocol-attack-incident-932be23e1433","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto-labs.medium.com/post-hack-silence-governance-failure-deconstructing-resupplys-9-6m-a338cd9a70b7","type":"other","url":""},{"credibility":3,"name":"https://www.cryptotimes.io/2024/03/29/prisma-finance-hacker-claims-11-6-million-whitehat-rescue/","type":"other","url":""},{"credibility":3,"name":"https://gov.prismafinance.com/t/pip-46-shutdown-prisma-finance-introduce-resupply/232","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/prisma-finance-exploited-10-million","type":"other","url":""}]}],"sources_used":[],"summary":"Resupply (resupply.fi / resupply.finance) is a decentralized stablecoin lending protocol built by contributors from Convex Finance and Yearn Finance, succeeding the hacked Prisma Finance protocol after a March 2024 governance vote. The protocol suffered a critical $9.6 million exploit on June 26, 2025, caused by a donation-attack vulnerability in a newly deployed ERC-4626 vault, with stolen funds laundered through Tornado Cash. The team's post-exploit governance response generated significant community controversy, including alleged silencing of critics and a disputed insurance-pool burn proposal, before the bad debt was eventually fully repaid in August 2025.","timeline":[{"date":"2024-03-28","event":"Prisma Finance (Resupply predecessor) exploited for $11.6 million via MigrateTroveZap contract vulnerability; TVL collapses from $220M to $107M.","source":""},{"date":"2024-12-01","event":"Governance proposal PIP-46 passes, shutting down Prisma Finance and introducing Resupply as successor protocol built on FraxLend codebase by Convex and Yearn contributors.","source":""},{"date":"2025-01-07","event":"Convex Finance officially announces Resupply on X, describing it as a new stablecoin protocol developed jointly by Convex and Yearn.","source":""},{"date":"2025-05-17","event":"Resupply deploys a new LlamaLend Market via Curve's factory.","source":""},{"date":"2025-05-31","event":"Governance proposal for the new market is published and subsequently passes on-chain.","source":""},{"date":"2025-06-26","event":"At 00:18 UTC, crcrvUSD Market 0x6e90 is deployed. At 01:53 UTC (approximately 95 minutes later), attacker executes donation attack using a $4,000 flash loan, draining approximately $9.6 million in reUSD. At 02:53 UTC, protocol pauses the affected market.","source":""},{"date":"2025-06-26","event":"reUSD depegs to approximately $0.98; protocol TVL drops from ~$135M to ~$85M. Resupply confirms breach via X and promises a post-mortem.","source":""},{"date":"2025-06-27","event":"Attacker routes stolen funds through Tornado Cash. Controversy erupts over team's three-sentence public response. OneKey founder Yishi Wang publicly criticizes the governance response and discloses $2M+ personal losses.","source":""},{"date":"2025-06-27","event":"Curve founder Michael Egorov allegedly threatens legal action against Yishi Wang over public criticism. Community backlash intensifies.","source":""},{"date":"2025-06-30","event":"Resupply publishes formal recovery plan: $2.86M treasury repayment already made; proposes 6M reUSD insurance pool burn; 1.13M reUSD to be repaid via future revenue; 2.5M RSUP tokens offered as retention incentive.","source":""},{"date":"2025-08-01","event":"Resupply announces full repayment of all $10 million in bad debt from the June 2025 exploit, using treasury funds, insurance pool, and Convex/Yearn sub-DAO support.","source":""},{"date":"2025-08-12","event":"PeckShield confirms attacker transferred 2,280 ETH (approximately $9.8M) through Tornado Cash, completing money laundering of stolen proceeds.","source":""}]},"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 7b70a5c6-c0f3-4f5c-9223-cde16d55dcb2
How verification works. The “Row integrity” check above is computed in your browser — your machine recomputes the SHA-256 of the canonical bytes and compares against the stored hash. No avoid.net server can fake that check. The “full verify” link goes one level deeper: your browser fetches the on-chain transaction from a Solana RPC node and confirms the same hash is in the memo. If you don’t want to trust either avoid.net or the public RPC, run the CLI verifier on your own machine — python -m src.verify_decision <event_id>.