The chaos of March 2020 — when a cascade of liquidations swept through DeFi — was just the beginning. Market contagion in 2022 and stablecoin de-pegging events in 2023 piled on the pain. Now the three largest lending protocols are rolling out specific defenses to stop the next wave before it starts.
Aave v3's per-market caps and isolation mode
Aave v3 introduced per-market supply and borrow limits. Each market gets its own cap, preventing one asset from dominating the pool. An isolation mode goes further: newly listed assets can only be borrowed against a single collateral type, cutting off the risk of contagion across the protocol.
MakerDAO's dual delay shields
MakerDAO operates two security modules. The Oracle Security Module (OSM) delays incoming price updates, giving keepers time to react to a manipulated feed. The Governance Security Module (GSM) enforces a minimum delay on any executive change — no fast governance hijack can slip through. Both modules trade speed for safety, a design choice that has kept the protocol stable through multiple de-pegs.
Compound's pause and role system
Compound built in a pause button. When the risk team spots trouble — a borrowed asset nearing its limit or a price oracle acting up — they can freeze specific markets. Role-based controls mean only authorized accounts can trigger the pause or adjust risk parameters, keeping emergency actions from being abused.
The failure modes that remain
None of these measures is a silver bullet. The protocols still face oracle failures, liquidation cascades when multiple positions unwind at once, liquidity flights where lenders pull funds in a panic, stablecoin de-pegs that break the collateral math, governance attacks that vote through malicious proposals, and bridge or L2 outages that trap assets off-chain. Each new fix addresses one risk but often introduces new dependencies.
The question hanging over the next cycle is whether these controls are enough when the market cracks again — or if the next crisis will expose a gap no one thought to patch.
