Lombard (LBTC)

Contract Addresses

Ethereum mainnet, verified onchain May 26, 2026.

Contract	Address	Type / Role
LBTC token	0x8236a87084f8B84306f72007F36F2618A5634494	TransparentUpgradeableProxy → StakedLBTC impl
LBTC implementation	0x072072317469eBb6c340A47e41561c9c3b782bd9	StakedLBTC (verified)
ProxyAdmin	0xbAE061C73876952aA2C5e483b74dfA785425f879	ProxyAdmin, owner = Timelock
Lombard Timelock	0x055E84e7FE8955E2781010B866f10Ef6E1E77e59	LombardTimeLock, getMinDelay() = 86,400 s (24 h). Also holds DEFAULT_ADMIN_ROLE on LBTC
Consortium	0xdAD58DfA5c1a7a34419AFdBE1f0d610efeea95E4	Consortium (proxy) — verifies notary signatures
Bascule	0xC3ecFE771564e3f28CFB7a9b203F4d10279338eD	GMPBasculeV1 — independent deposit-attestation layer (set as Bascule() on LBTC)
AssetRouter (MINTER)	0x9eCe5fB1aB62d9075c4ec814b321e24D8EA021ac	TransparentUpgradeableProxy — holds MINTER_ROLE, returned by getAssetRouter()
BridgeV2 (MINTER)	0x451C54981C7da5d95901B770c540547cf5FE0a2D	TransparentUpgradeableProxy BridgeV2 — holds MINTER_ROLE (cross-chain bridge)
Pauser Safe (PAUSER)	0xad67Ba2795770C8e0B70E2896C0F81F9d313FD44	Gnosis Safe, 2-of-11 — holds PAUSER_ROLE
Treasury Safe	0x251a604E8E8f6906d60f8dedC5aAeb8CD38F4892	Gnosis Safe, 3/N — fee treasury; also Timelock PROPOSER + EXECUTOR
Deployer EOA	0x3f6bf1c36ccbb59eaf8415301a0cec73c344a079	EOA — deployed LBTC; also a Timelock PROPOSER + CANCELLER
Chainlink LBTC/BTC feed	0x5c29868C58b6e15e2b962943278969Ab6a7D3212	Exchange-rate feed (8 dec; reads 1.00495 BTC)
RedStone LBTC PoR/rate feed	0xb415eAA355D8440ac7eCB602D3fb67ccC1f0bc81	RedStone feed (8 dec; reads 1.00409)

Audits and Due Diligence Disclosures

Lombard is extensively audited — 10 reports from 6 firms (audits page):

Firm	Date	Scope
OpenZeppelin	Oct 24, 2025	BTC.b & BridgeV2
ABDK	Sep 22, 2025	StakeAndBake
Sherlock	Jul 25, 2025	Yield-Bearing
OpenZeppelin	Jul 25, 2025	Yield-Bearing
Veridise	Dec 17, 2024	V2
OpenZeppelin	Dec 13, 2024	V2
Halborn	Dec 9, 2024	FBTC integration
Halborn	Oct 10, 2024	BTC.b PMM
Veridise	Aug 21, 2024	V1
Halborn	Aug 5, 2024	V1

Reports are published in the evm-smart-contracts repo docs/audit/. Multiple top-tier firms (OpenZeppelin ×3, Sherlock) cover the yield-bearing implementation now in production. The onchain surface is moderately complex: an upgradeable AccessControl ERC-20 plus an AssetRouter, BridgeV2, Consortium signature-verification contract, and the Bascule attestation layer.

• Unresolved findings: TODO — individual audit PDFs not parsed line-by-line this session. One audit-surfaced issue (a redemption replay where a single BTC tx with the same ScriptPubKey could satisfy multiple payloads) was reportedly remediated; confirm final status in the relevant report.

Bug Bounty

• Platform: Immunefi (live since Sep 2024).
• Max payout: $250,000 (critical smart-contract). Scope includes LBTC token, Consortium governance, and the proxy upgrade timelock.
• Safe Harbor (SEAL): TODO — not confirmed.

Historical Track Record

• LBTC proxy deployed: May 17, 2024 (block tx 0xf5cccb…3ea8b); public mainnet launch ~August 2024 (V1 audits). ~21–24 months in production.
• Protocol TVL (DefiLlama, May 26, 2026): ~$1.0B, of which ~$973M is staked BTC backing. Lombard is the largest BTC LST by share of category. TVL peaked materially higher (~$1.5–2B range) in 2025.
• Market data (CoinGecko, May 26, 2026): price ~$76,915; LBTC/BTC ≈ 1.0066; market cap ~$789M; circulating supply ~10,252 LBTC (all chains).
• Onchain supply (Ethereum): totalSupply() = 871,725,021,524 (8 decimals) → 8,717.25 LBTC on Ethereum. (LBTC is multichain — also on Base, BSC, Avalanche, Solana, Sui, Starknet.)
• Peg history: LBTC/BTC has traded both above and below parity. CoinGecko all-time range is ATH 1.1277 BTC / ATL 0.9439 BTC — i.e. a worst-case ~6% discount to BTC has occurred. Currently ~0.66% premium (consistent with accrued yield).
• Incidents: No exploits or protocol-level depeg events found for LBTC. Standing risk factors (not realized): Babylon slashing (a new, relatively untested mechanism), and off-chain custody/consortium collusion. TODO — no LlamaRisk or Steakhouse report on LBTC located this session; recheck.

Funds Management

Accessibility

• Mint: Permissionless. User sends native BTC to a Lombard deposit address → ~6 BTC confirmations → Consortium notary set co-signs and Bascule independently attests the deposit → LBTC mints to the destination wallet. Not atomic (gated by BTC confirmations + off-chain notarization). Ethereum mints carry a small LBTC mint fee (gas); other chains have none. Minimum deposit ~0.0002 BTC.
• Redeem: redeemForBtc(...) burns LBTC onchain immediately; BTC is returned after a ~9-day window (Babylon's ~7-day unbonding plus Lombard's daily rebalancing). Asynchronous, not atomic.
• Onchain redeem parameters (verified): isRedeemsEnabled() = true, getRedeemFee() = 10000 (0.0001 LBTC network-security fee), getRedeemForBtcMinAmount() = 3300 (0.000033 LBTC).
• Pausing: paused() = false, mintBurnPaused() = false. A PAUSER_ROLE Safe can pause transfers and mint/burn (see Centralization).

Token Mint Authority

Mint mechanism: Role-gated MINTER_ROLE (OpenZeppelin AccessControl). Minting is performed by protocol contracts after dual authorization — the Consortium notary signatures and the Bascule attestation. There is no open mint() callable by arbitrary users.

Mint requires backing: Yes in protocol design — LBTC is minted only against a BTC deposit that has been notarized by the Consortium and independently recorded by Bascule. However, backing is off-chain BTC custody; the onchain mint check verifies signatures/attestations, not an onchain BTC balance. A compromise of the notary quorum + Bascule would be required to mint unbacked tokens.

Per-address mint authority (verified onchain May 26, 2026 via RoleGranted events + hasRole; no RoleRevoked events ever emitted):

Address	Can Mint	Can Burn	Role / Mechanism	Notes
0x9eCe5fB1aB62d9075c4ec814b321e24D8EA021ac	✓	✓	MINTER_ROLE	AssetRouter (proxy) — main mint/redeem router, getAssetRouter()
0x451C54981C7da5d95901B770c540547cf5FE0a2D	✓	✓	MINTER_ROLE	BridgeV2 (proxy) — cross-chain bridge mints LBTC on arrival
0xcd1B5b2e6c1ff8b606cf4B5731e2F3361474C01b	—	—	CLAIMER_ROLE	EOA — claims/processes yield (not a minter)
0xad67Ba2795770C8e0B70E2896C0F81F9d313FD44	—	—	PAUSER_ROLE	Gnosis Safe 2-of-11 — can pause transfers & mint/burn
0x055E84e7FE8955E2781010B866f10Ef6E1E77e59	—	—	DEFAULT_ADMIN_ROLE	Lombard Timelock (24 h) — can grant/revoke all roles

MINTER_ROLE is therefore held only by two protocol contracts (AssetRouter, BridgeV2), both behind the Consortium + Bascule authorization gate. New minters can only be added by DEFAULT_ADMIN_ROLE = the 24-h Timelock.

Rate limits / supply caps: No global onchain supply cap observed on the Ethereum token (totalSupply floats with deposits). TODO — confirm whether AssetRouter/BridgeV2 enforce per-epoch mint caps.

Backing check at mint time: Dual off-chain attestation (Consortium 12-of-16 notary signatures + Bascule deposit record). Not an atomic onchain collateral transfer.

Collateralization

• LBTC is 1:1 backed by native BTC held off the Bitcoin chain by the Lombard Security Consortium (institutional members using threshold cryptography / CubeSigner HSM key management). Collateral quality is the highest available (native BTC), but custody is off-chain — there is no trustless onchain BTC vault.
• The staked BTC is delegated into Babylon, which introduces slashing risk (validator misbehavior could cause partial BTC loss) — a new and relatively untested mechanism.
• Risk curation for downstream lending (LLTV, caps, liquidation) is set by each integrating market (e.g. Morpho market creators / Yearn-curated vaults), not by Lombard.

Provability

• Proof of Reserve: Lombard publishes a PoR oracle built with RedStone and Chainlink, plus an onchain address registry (on Base) of all Lombard BTC deposit addresses. The Ethereum RedStone feed 0xb415…0bc81 and Chainlink LBTC/BTC feed 0x5c29…3212 read ~1.004 BTC per LBTC, matching the onchain getRate().
• Caveat: these feeds report an exchange rate, not a directly-verifiable BTC reserve quantity. Reconciling circulating LBTC against custodied BTC requires trusting the consortium's reported deposit-address set and the oracle. This is attestation/oracle-based provability, not trustless onchain verification. TODO — locate and document the canonical reserve-quantity PoR feed and the Base address registry contract.
• The LBTC/BTC rate is updated by a privileged oracle/operator role rather than derived algorithmically from onchain reserves.

Liquidity Risk

Exit paths:

1. Protocol redemption — burn LBTC, receive native BTC after ~9 days (Babylon unbonding). Deepest exit, but slow.
2. Secondary onchain markets — swap LBTC → WBTC/BTC.

Onchain liquidity (DefiLlama yields, Ethereum, May 26, 2026):

Venue	Pool	TVL
Lombard (staking)	LBTC	$745.7M
Spark (SparkLend)	LBTC (collateral)	$216.0M
Aave v3	LBTC (collateral)	$148.5M
Veda	LBTCV	$81.5M
Morpho Blue	LBTC (collateral, all markets)	~$58.7M
Uniswap v3	WBTC-LBTC	$7.0M + $1.2M
Curve	LBTC-WBTC	$0.8M

LBTC is deeply integrated as lending collateral (Aave, Spark, Morpho) but direct swap depth is modest (~$8–9M across Uniswap v3 + Curve). CEX/aggregator spot volume is low (~$0.74M/24h per CoinGecko). A large holder exiting via DEX would face meaningful slippage; the size-insensitive exit is the 9-day redemption.

Morpho usage (the issue's context): ~$58.7M LBTC supplied as collateral on Ethereum Morpho markets:

Market	LLTV	Collateral	Borrow	Util
LBTC/PYUSD	86.0%	$49.74M	$32.59M	89%
LBTC/USDC	86.0%	$5.30M	$2.65M	91%
LBTC/WBTC	94.5%	$2.91M	$2.59M	100%
LBTC/EURCV	86.0%	$0.64M	$0.24M	93%
LBTC/cbBTC	94.5%	$0.15M	$0.14M	96%

For Morpho liquidations, what matters is the LBTC/BTC oracle behaving correctly and DEX depth to unwind seized collateral. The historical ~6% discount (ATL 0.944 BTC) and high LLTVs (86–94.5%) mean an LBTC depeg is the primary liquidation-risk vector for these markets.

Centralization & Control Risks

Governance

• Upgradeability: LBTC is a TransparentUpgradeableProxy. The ProxyAdmin (0xbAE0…f879) is owned by the Lombard Timelock (0x055E…7e59) with getMinDelay() = 24 h. Implementation upgrades and role changes are therefore subject to a 24-hour delay (positive control).
• Timelock roles (verified): PROPOSER = the Treasury Safe (3/N) and an EOA 0x3f6b…a079; EXECUTOR = the Treasury Safe; CANCELLER = both. An EOA can queue (and cancel) timelock operations — the 24-h delay and the multisig executor are the mitigating controls, but the EOA proposer is a centralization wart.
• Token roles (verified onchain): DEFAULT_ADMIN_ROLE = Timelock; PAUSER_ROLE = a 2-of-11 Gnosis Safe. The low pause threshold (2 of 11) means a small group can freeze transfers and mint/burn — a freeze would also block normal liquidation of LBTC collateral on Morpho.
• Off-chain notary set (Consortium, verified at epoch 21): 16 validators, weight threshold 12 → 12-of-16 signatures required to authorize mint/burn/bridge operations. This is distinct from the ~14 named institutional "consortium members" in the docs (Galaxy, OKX, Kraken, DCG, Amber, Wintermute, Antpool, F2Pool, Bitwise, Figment, Kiln, P2P, Cubist, Nansen).
• Defense in depth: The Bascule (GMPBasculeV1) provides an independent second attestation — a mint requires both the Consortium quorum and a matching Bascule deposit record, so compromising the notary keys alone is insufficient.

Programmability

• The token is an OZ AccessControl + AccessControlDefaultAdminRules upgradeable ERC-20 (StakedLBTC). Yield is reflected via getRate(), which is updated by a privileged role/oracle, not computed algorithmically from onchain reserves — hybrid onchain/offchain accounting.
• Mint/redeem, BTC custody, Babylon staking, and rebalancing are coordinated off-chain by the Consortium; the onchain contracts verify signatures and enforce roles. This is a meaningful off-chain operational surface.

External Dependencies

1. Babylon — Bitcoin staking + slashing (new, comparatively untested). Critical to the yield and to backing integrity.
2. Bitcoin network — custody and settlement.
3. Lombard Consortium infrastructure — 12-of-16 notary signing (CubeSigner/Cubist HSMs).
4. Bascule / Cubist — independent attestation layer.
5. Oracles — Chainlink + RedStone for LBTC/BTC rate and PoR; downstream lending markets (Morpho, Aave) depend on these for liquidation pricing.

Failure or compromise of Babylon, the consortium custody, or the rate oracle would each materially impair LBTC.

Operational Risk

• Team: Partially doxxed. Co-founder Jacob Phillips (ex-Polychain) is public; other named team members exist. Backed by a $16M seed led by Polychain Capital with Babylon, Foresight, Mirana, OKX Ventures, Binance Labs, and others.
• Documentation: Strong — architecture, security, audits, oracles, and a full smart-contract registry are published on GitBook; contracts are source-verified on Etherscan.
• Legal structure / jurisdiction: TODO — not confirmed this session.
• Incident response: Pauser multisig + 24-h upgrade timelock provide emergency tooling; no public formal IR plan reviewed.

Monitoring

Recommended monitored addresses, signals, and frequency.

1. Backing / Proof of Reserve (MANDATORY)

• Compare Ethereum LBTC.totalSupply() (and cross-chain supply) against custodied BTC via the PoR oracle/registry.
• RedStone feed 0xb415…0bc81 and Chainlink LBTC/BTC 0x5c29…3212 — alert if getRate()/feed deviates sharply or stops updating.
• Threshold: flag if reported reserve < circulating LBTC, or rate feed staleness > expected heartbeat.

2. Upgrades & Role Changes (MANDATORY)

• Monitor Upgraded on the LBTC proxy and ProxyAdmin 0xbAE0…f879.
• Monitor RoleGranted/RoleRevoked on LBTC (esp. new MINTER_ROLE holders) and CallScheduled on the Timelock 0x055E…7e59 — the 24-h delay is the window to react.
• Alert immediately on any new minter or any timelock operation scheduled by the EOA proposer 0x3f6b…a079.

3. Pause State (MANDATORY for Morpho exposure)

• LBTC.paused() and mintBurnPaused() — a transfer pause would block liquidations of LBTC Morpho collateral.
• Monitor the Pauser Safe 0xad67…FD44.

4. Consortium Notary Set

• Watch the Consortium 0xdAD5…95E4 for validator-set / epoch changes (currently epoch 21, 12-of-16). Alert on threshold reductions or membership churn.

5. Peg & Liquidity

• LBTC/BTC market price (CoinGecko / DEX). Alert: sustained discount > 2% (historical ATL ~0.944 BTC). Relevant to Morpho liquidation safety given 86–94.5% LLTVs.
• DEX swap depth (Uniswap v3 WBTC-LBTC, Curve LBTC-WBTC).

Frequency: rate/peg and pause state — hourly; upgrades/roles/timelock — event-driven (immediate); consortium set — daily.

Appendix: Contract Architecture

GOVERNANCE
  EOA deployer 0x3f6b…a079 ──(PROPOSER/CANCELLER)──┐
  Treasury Safe 0x251a…4892 (3/N) ──(PROPOSER/EXEC)─┤
                                                    ▼
                          LombardTimeLock 0x055E…7e59 (24h)
                            │ owns ProxyAdmin 0xbAE0…f879
                            │ holds DEFAULT_ADMIN_ROLE on LBTC
                            ▼
TOKEN LAYER
  LBTC proxy 0x8236…4494  ──impl──►  StakedLBTC 0x0720…2bd9
     ├─ MINTER_ROLE ─► AssetRouter 0x9eCe…21ac ─┐
     ├─ MINTER_ROLE ─► BridgeV2   0x451C…0a2D ─┤ (mint gated by ↓)
     ├─ PAUSER_ROLE ─► Safe 0xad67…FD44 (2/11)  │
     └─ Bascule()  ─► GMPBasculeV1 0xC3ec…38eD ─┤
                                                │
PROTOCOL / TRUST LAYER                          │
  Consortium 0xdAD5…95E4  (12-of-16 notaries) ──┘ dual-auth: Consortium + Bascule
                            │
UNDERLYING / EXTERNAL                            │
  Babylon Bitcoin staking (slashing)  ◄── staked BTC delegated
  Native BTC custody (institutional consortium, threshold sig, off-chain)
  Oracles: Chainlink 0x5c29…3212 + RedStone 0xb415…0bc81  (rate / PoR)

DOWNSTREAM (Yearn interest)
  Morpho markets: LBTC collateral (~$58.7M; LBTC/PYUSD 86% LLTV dominant)
  Aave v3 ($148M), SparkLend ($216M)

---

Reassessment Triggers

• Time-based: Reassess in 6 months.
• TVL-based: Reassess if staked-BTC backing changes by more than 30%.
• Peg-based: Reassess on any sustained LBTC/BTC discount > 2%.
• Incident-based: Reassess after any Babylon slashing event, consortium membership/threshold change, implementation upgrade, new MINTER_ROLE grant, or a transfer pause.

---

Open TODOs (for follow-up)

1. Audit findings: parse the OZ/Sherlock yield-bearing PDFs for unresolved/medium+ findings and confirm the redemption-replay remediation.
2. Reserve PoR specifics: identify the canonical reserve-quantity PoR feed and the Base deposit-address registry contract; document how circulating-vs-custodied reconciliation is done.
3. Named BTC custodians: confirm the specific custodian entities and the custody threshold (docs describe the model; named custody set not confirmed).
4. Legal entity / jurisdiction.
5. Mint caps: confirm whether AssetRouter/BridgeV2 enforce per-epoch mint limits.
6. Consortium count discrepancy: docs say 14–15 institutional members vs onchain 16 notary keys (threshold 12) — reconcile.
7. TVL history: verify >$500M sustained for >1 year to decide the optional −0.5 modifier.
8. Third-party reports: locate any LlamaRisk / Steakhouse coverage of LBTC.

Sources

• Lombard docs: https://docs.lombard.finance/
• Audits: https://docs.lombard.finance/learn/security/audits
• Bug bounty: https://docs.lombard.finance/learn/security/bug-bounty ; https://immunefi.com/bug-bounty/lombard-finance/scope/
• Smart contracts: https://docs.lombard.finance/learn/transparency/smart-contracts
• Oracles / PoR: https://docs.lombard.finance/learn/transparency/oracles
• DefiLlama: https://defillama.com/protocol/lombard ; https://yields.llama.fi/pools
• CoinGecko LBTC: https://www.coingecko.com/en/coins/lombard-staked-btc
• Morpho Blue API: https://blue-api.morpho.org/graphql
• Onchain verification via cast (Ethereum) + Etherscan V2 API, May 26, 2026