auto-fix: address review feedback on 2026-01-01-futardio-launch-vaultguard.md

- Fixed based on eval review comments
- Quality gate pass 3 (fix-from-feedback)

Pentagon-Agent: Rio <HEADLESS>

domains/internet-finance/audit-firm-risk-score-tiering-enables-differentiated-defi-insurance-pricing-but-creates-audit-capture-risk-when-insurers-depend-on-a-fixed-set-of-partner-auditors.md

@@ -1,33 +1,44 @@
 ---
 type: claim
-domain: internet-finance
+claim_id: defi_insurance_audit_tiering
-description: "Using security audit firm partnerships to assign risk scores that feed into premium tiers improves DeFi insurance pricing accuracy over flat-rate models, but concentrates systemic risk around the credibility and independence of a small auditor set."
+description: "Audit-based risk tiering improves DeFi insurance pricing over flat-rate models, but concentrates systemic risk around auditor independence and creates correlation risk if partner auditors share blind spots."
-confidence: speculative
-source: "Rio; VaultGuard Finance launch description on Futardio, 2026-01-01"
 created: 2026-03-11
+confidence: speculative
+domain: internet-finance
+source:
+  - inbox/archive/2026-01-01-futardio-launch-vaultguard.md
 depends_on: []
-challenged_by: []
+contradicts: []
-secondary_domains: [mechanisms]
 ---
 
-# audit-firm risk score tiering enables differentiated DeFi insurance pricing but creates audit capture risk when insurers depend on a fixed set of partner auditors
+# Audit-firm risk score tiering enables differentiated DeFi insurance pricing but creates audit capture risk when insurers depend on a fixed set of partner auditors
 
 Flat-rate DeFi insurance pools treat all covered protocols as equivalent risk, which reprices against adverse selection: high-risk protocols are overrepresented because their users value coverage more, while low-risk protocols are underrepresented because their users find premiums relatively expensive. Tiered pricing based on objective risk scoring addresses this.
 
 VaultGuard Finance's design uses partnerships with security audit firms to produce protocol risk scores that feed into tiered coverage products with different premium rates. The rationale: audits are an existing industry standard for smart contract security, and using audit firm assessments as pricing inputs aligns insurance premiums with an external, expert-grounded risk estimate.
 
-However, this design embeds a structural dependency: the insurer's pricing accuracy is only as good as its auditor partners. Three failure modes emerge:
+## Mechanism
 
-1. **Audit capture**: Protocol teams pay auditors, creating incentives for auditors to produce favorable scores to maintain client relationships — especially if VaultGuard partners exclusively with a small set of preferred audit firms.
+1. **Risk scoring**: Partner audit firms assess protocols and produce risk scores (e.g., 1-10 scale)
-2. **Score staleness**: Smart contracts can be upgraded or modified post-audit; a favorable audit score at launch does not guarantee ongoing safety.
+2. **Tiered premiums**: Coverage premiums vary by score (low-risk protocols pay 1-2% APR, high-risk pay 5-8%)
-3. **Correlation risk**: If all insured protocols were audited by the same firms and those firms share a blind spot (e.g., a class of vulnerability they systematically miss), the insurance pool faces correlated losses rather than independent ones.
+3. **Pool segmentation**: Separate pools or tranches for different risk tiers reduce adverse selection within each tier
+4. **Pricing accuracy**: Audit-based tiers are more granular than flat-rate models, better matching actual protocol risk
 
-The tiering approach is sound in principle and represents an improvement over undifferentiated pooling, but the systemic risk it introduces depends heavily on auditor incentive structure and coverage breadth. No live data exists at extraction time.
+## Challenges
 
----
+**Audit capture**: Protocol teams pay auditors, creating incentives for auditors to produce favorable scores to maintain client relationships—especially if VaultGuard partners exclusively with a small set of preferred audit firms. If the insurer depends on 3-5 partner auditors, those auditors become gatekeepers whose reputational incentives may not align with the insurer's loss prevention.
 
-Relevant Notes:
+**Score staleness**: Smart contracts can be upgraded or modified post-audit; a favorable audit score at launch does not guarantee ongoing safety. Continuous re-auditing is expensive, so scores often lag actual protocol state.
-- [[defi-insurance-first-loss-staking-aligns-underwriter-incentives-by-letting-capital-providers-select-specific-protocol-exposure-rather-than-pooling-all-risk-equally]] — first-loss staking provides a complementary market-based risk signal that can partially offset audit capture
 
-Topics:
+**Correlation risk**: If all insured protocols were audited by the same firms and those firms share a blind spot (e.g., a class of vulnerability they systematically miss), the insurance pool faces correlated losses rather than independent ones. This is especially acute for novel attack vectors (e.g., MEV exploits, oracle manipulation) that emerge after audits.
-- [[domains/internet-finance/_map]]
+
+**Adverse selection within tiers**: Even within a risk tier, sophisticated users may have private information about upcoming exploits. High-risk-tier protocols attract coverage buyers with inside knowledge, while low-risk-tier protocols attract passive buyers. This recreates adverse selection at a finer granularity.
+
+## Precedent
+
+Nexus Mutual and InsurAce both use audit-based risk assessment. However, neither has faced a major correlated loss event that would test whether their auditor partnerships create systemic vulnerability. This remains **speculative** until tested at scale.
+
+## Related Concepts
+
+- Peer-to-pool DeFi insurance
+- Protocol-specific belief-staking as first-loss underwriting (provides complementary market-based risk signal)

domains/internet-finance/defi-insurance-hybrid-claims-assessment-combines-automated-triggers-with-token-holder-juries-to-balance-settlement-speed-against-fairness.md

@@ -1,23 +1,14 @@
 ---
 type: claim
 claim_id: defi_insurance_hybrid_claims_assessment
-created: 2026-01-01
+description: "VaultGuard's hybrid claims model uses automated triggers for clear-cut exploits and jury voting for edge cases, but jury composition and trigger brittleness remain unspecified design risks."
-processed_date: 2026-01-01
+created: 2026-03-11
 confidence: speculative
-domains:
+domain: internet-finance
-  - internet-finance
-tags:
-  - defi
-  - insurance
-  - governance
-  - claims-assessment
 source:
   - inbox/archive/2026-01-01-futardio-launch-vaultguard.md
 depends_on: []
 contradicts: []
-relevant_notes:
-  - domains/internet-finance/governance-token-mixing-across-protocol-boundaries-creates-attack-surfaces-when-external-token-holders-influence-internal-protocol-decisions.md
-  - domains/internet-finance/futarchy-settlement-windows-create-oracle-attack-surfaces-when-twap-periods-are-shorter-than-the-time-needed-to-socially-coordinate-defense.md
 ---
 
 # DeFi insurance hybrid claims assessment combines automated triggers with token-holder juries to balance settlement speed against fairness
@@ -36,12 +27,13 @@ VaultGuard's proposed claims process uses on-chain conditions (e.g., TVL drops,
 
 **Trigger brittleness**: Automated conditions can be gamed (oracle manipulation, flash loan attacks on TVL metrics) or fail to capture legitimate claims that don't fit predefined patterns. The system must either accept false negatives (valid claims rejected) or route most claims to juries, negating the speed advantage.
 
-**Jury competence**: Token holders may lack technical expertise to evaluate complex smart contract exploits, leading to popularity contests rather than merit-based decisions. See [[domains/internet-finance/governance-token-mixing-across-protocol-boundaries-creates-attack-surfaces-when-external-token-holders-influence-internal-protocol-decisions.md]] for related governance risks.
+**Jury competence**: Token holders may lack technical expertise to evaluate complex smart contract exploits, leading to popularity contests rather than merit-based decisions. This is especially acute in governance-token-mixing scenarios where external token holders (not protocol experts) dominate voting.
 
 **Appeal costs**: If appeals are expensive (high gas, time delays), the system favors defendants (protocols) over claimants (users), undermining the fairness goal.
 
+**Oracle attack surface**: Automated triggers depend on oracle accuracy. If oracles can be manipulated (TWAP attacks, flash loan exploits), attackers can either suppress legitimate claims (by preventing trigger conditions) or trigger false payouts (by artificially inflating TVL drops). This creates a second-order attack surface beyond the smart contract risk the insurance is meant to cover.
+
 ## Related Concepts
 
-- [[domains/internet-finance/peer-to-pool-defi-insurance-converts-stablecoin-liquidity-into-coverage-capacity-by-distributing-smart-contract-risk-across-pooled-underwriters.md]]
+- Peer-to-pool DeFi insurance
-- [[domains/internet-finance/protocol-specific-belief-staking-as-first-loss-underwriting-lets-defi-insurance-participants-express-conviction-about-protocol-security-through-capital-commitment.md]]
+- Protocol-specific belief-staking as first-loss underwriting
-- [[domains/internet-finance/futarchy-settlement-windows-create-oracle-attack-surfaces-when-twap-periods-are-shorter-than-the-time-needed-to-socially-coordinate-defense.md]]

domains/internet-finance/peer-to-pool-defi-insurance-converts-stablecoin-liquidity-into-coverage-capacity-by-distributing-smart-contract-risk-across-pooled-underwriters.md

@@ -1,22 +1,14 @@
 ---
 type: claim
 claim_id: defi_insurance_peer_to_pool
-created: 2026-01-01
+description: "Nexus Mutual and similar protocols prove peer-to-pool insurance pools work operationally, but tail risk concentration and adverse selection remain structural vulnerabilities."
-processed_date: 2026-01-01
+created: 2026-03-11
-confidence: established
+confidence: likely
-domains:
+domain: internet-finance
-  - internet-finance
-tags:
-  - defi
-  - insurance
-  - liquidity-provision
-  - risk-pooling
 source:
   - inbox/archive/2026-01-01-futardio-launch-vaultguard.md
 depends_on: []
 contradicts: []
-relevant_notes:
-  - domains/internet-finance/protocol-specific-belief-staking-as-first-loss-underwriting-lets-defi-insurance-participants-express-conviction-about-protocol-security-through-capital-commitment.md
 ---
 
 # Peer-to-pool DeFi insurance converts stablecoin liquidity into coverage capacity by distributing smart contract risk across pooled underwriters
@@ -46,5 +38,5 @@ Nexus Mutual has operated this model since 2019 with over $200M in coverage writ
 
 ## Related Concepts
 
-- [[domains/internet-finance/protocol-specific-belief-staking-as-first-loss-underwriting-lets-defi-insurance-participants-express-conviction-about-protocol-security-through-capital-commitment.md]]
+- Protocol-specific belief-staking as first-loss underwriting
-- [[domains/internet-finance/defi-insurance-hybrid-claims-assessment-combines-automated-triggers-with-token-holder-juries-to-balance-settlement-speed-against-fairness.md]]
+- DeFi insurance hybrid claims assessment

domains/internet-finance/protocol-specific-belief-staking-as-first-loss-underwriting-lets-defi-insurance-participants-express-conviction-about-protocol-security-through-capital-commitment.md

@@ -1,24 +1,14 @@
 ---
 type: claim
 claim_id: defi_insurance_belief_staking
-created: 2026-01-01
+description: "VaultGuard's belief-staking mechanism attempts to use first-loss capital as a credibility signal, but faces a critical adverse selection flaw: stakers can exit exactly when risk increases, breaking the first-loss protection when needed most."
-processed_date: 2026-01-01
+created: 2026-03-11
 confidence: speculative
-domains:
+domain: internet-finance
-  - internet-finance
-tags:
-  - defi
-  - insurance
-  - staking
-  - skin-in-the-game
-  - first-loss-capital
 source:
   - inbox/archive/2026-01-01-futardio-launch-vaultguard.md
 depends_on: []
 contradicts: []
-relevant_notes:
-  - domains/internet-finance/peer-to-pool-defi-insurance-converts-stablecoin-liquidity-into-coverage-capacity-by-distributing-smart-contract-risk-across-pooled-underwriters.md
-  - domains/coordination-mechanisms/numerai-burns-cryptocurrency-stakes-to-enforce-prediction-quality-without-requiring-trusted-intermediaries-to-verify-model-uniqueness.md
 ---
 
 # Protocol-specific belief-staking as first-loss underwriting lets DeFi insurance participants express conviction about protocol security through capital commitment
@@ -45,6 +35,8 @@ Without clarity on lockup design, the viability of belief-staking as first-loss
 
 **Adverse selection (critical flaw)**: If stakers can exit freely, they withdraw when they have private information about elevated risk, leaving the vault under-collateralized exactly when claims are most likely. Standard DeFi staking allows exit, which breaks first-loss protection when needed. This is a fundamental tension, not just an implementation detail. Even with lockups, stakers may refuse to renew positions when risk increases, creating a slow-motion bank run.
 
+**Exploiter-as-staker scenario**: The worst case is not probabilistic adverse selection but deterministic: an entity can build an exploit, stake capital in the target protocol to earn yield, then execute the exploit before withdrawing. If lockups are short or absent, this creates a profitable attack vector where the exploiter collects yield while planning the attack. This is not a market-based risk signal—it's a subsidy to attackers.
+
 **Insider information asymmetry**: Protocol insiders (developers, large users) have better risk information than external stakers. If insiders dominate belief-staking, their withdrawal signals impending exploits, creating a death spiral. If outsiders dominate, they're systematically disadvantaged.
 
 **Correlation with general pool**: If a protocol is exploited, both the belief-staking vault and general pool are likely to face claims simultaneously (e.g., Aave exploit triggers claims from Aave-specific coverage and multi-protocol coverage). This reduces the diversification benefit.
@@ -53,12 +45,12 @@ Without clarity on lockup design, the viability of belief-staking as first-loss
 
 **Sybil attacks**: If staking is permissionless, attackers can stake in protocols they plan to exploit, earning yield until the attack and then executing before losses materialize (if lockups are short or absent).
 
-## Precedent
+## Precedent and Disanalogy
 
-Similar to [[domains/coordination-mechanisms/numerai-burns-cryptocurrency-stakes-to-enforce-prediction-quality-without-requiring-trusted-intermediaries-to-verify-model-uniqueness.md]], this uses capital commitment as a credibility mechanism. However, Numerai burns stakes (irreversible), while belief-staking allows exit (reversible), weakening the signal.
+Similar to expert staking in Living Capital (which uses Numerai-style bounded burns for performance accountability), this uses capital commitment as a credibility mechanism. However, there is a critical disanalogy: Numerai stakes are evaluated against *known ground truth* (model predictions vs. market outcomes). Protocol security staking has no ground truth until an exploit happens, meaning the information content of staking decisions is fundamentally lower. The signal is weaker because the outcome is binary and rare, not continuous and frequent.
 
 ## Related Concepts
 
-- [[domains/internet-finance/peer-to-pool-defi-insurance-converts-stablecoin-liquidity-into-coverage-capacity-by-distributing-smart-contract-risk-across-pooled-underwriters.md]]
+- Peer-to-pool DeFi insurance
-- [[domains/internet-finance/defi-insurance-hybrid-claims-assessment-combines-automated-triggers-with-token-holder-juries-to-balance-settlement-speed-against-fairness.md]]
+- DeFi insurance hybrid claims assessment
-- [[domains/coordination-mechanisms/numerai-burns-cryptocurrency-stakes-to-enforce-prediction-quality-without-requiring-trusted-intermediaries-to-verify-model-uniqueness.md]]
+- Expert staking in Living Capital uses Numerai-style bounded burns for performance and escalating dispute bonds for fraud creating accountability without deterring participation