Risks & Considerations
This section is a high-level overview that is not intended to be comprehensive. Capital Providers should review the full Terms of Service, the Legal FAQ for Capital Providers and obtain independent legal advice before deploying capital.
Neither document constitutes legal, financial, tax, or regulatory advice.
Octant is designed with capital preservation and security in mind, but there are always risks in DeFi. Key risk categories include:
Smart contract risk
Octant builds on audited Yearn v3-style vaults and ERC-4626 standards, and the core contracts have undergone additional security reviews, but no audit can guarantee safety. Bugs, unforeseen interactions, or compromised admin keys could result in loss of funds.
As in standard DeFi practice, smart contract risk is ultimately borne by users interacting with the protocol. For more detail, see the Legal FAQ section Smart Contract Risk and Are there audit requirements or minimum security standards for Octant Vaults?
Third-party protocol risk
All yield is generated by external DeFi protocols, which may face risks such as:
- Protocol insolvency or failure
- Governance attacks
- Oracle or price-feed manipulation
- Liquidity crises or unexpected parameter changes
- Security exploits
Losses at the strategy level can affect the assets in your Funding Vault. Recourse in such cases is typically limited to whatever mechanisms the third-party protocol itself offers (e.g. governance processes, insurance funds, safety modules, if any). Octant is not responsible for third-party protocol failures. For more detail, see the Legal FAQ section What recourse exists if the integrated DeFi protocols fail?
Market & strategy risk
- Strategies involving LP positions can incur impermanent loss.
- Yield-bearing tokens (e.g. LSTs or other appreciating assets) can depeg or underperform expectations.
- Interest rates and yields can change significantly over time, so realised funding may be lower than expected or more volatile than planned.
Accounting & buffer behaviour
For Yield Donating and Yield Skimming strategies:
- Profits are converted into donation shares; losses first burn donation shares (your "donation buffer").
- Only when losses exceed this buffer does the price per share drop and principal losses are shared proportionally by depositors.
This design helps shield principal but does not eliminate loss risk. In adverse scenarios, your vault shares may still lose value.
Liquidity & lockup risk
- Standard vaults allow withdrawals subject to liquidity and strategy limits. If a strategy needs time to unwind positions, withdrawals can be delayed or only partially fulfilled.
- Locked vaults and rage-quit mechanisms introduce cooldown periods before funds can be withdrawn.
- Multi-strategy Funding Vaults rely on a withdrawal queue and idle buffers; in extreme conditions, exiting positions may be slower or more expensive.
Governance & operational risk
- Misconfigured roles (e.g. management, keepers, emergency admin) or compromised keys can affect vault behavior.
- Some deployments rely on keepers and operators to regularly call on-chain functions (for example, to harvest and report yield); if they fail to act, accounting and funding flows may lag behind the actual performance of the underlying strategies.
- Internal governance decisions (e.g. changing strategies, moving to riskier venues, adjusting allocation splits, dissolving the Capital Provider entity without proper key handover) can increase your exposure or disrupt operations.
For more on responsibility allocation, dissolution scenarios, and delegation of operational tasks, see the Legal FAQ sections Capital Provider Responsibilities, What happens if the Capital Provider dissolves or disbands?, What happens if Octant protocol discontinues operations?, and Can a Capital Provider outsource Vault management or strategy work to contractors?.
Jurisdictional & regulatory risk
- The availability and legality of using DeFi and Octant-connected protocols depend on your jurisdiction, regulatory status, and organizational structure.
- Depending on how you operate, you may need to consider licensing (e.g. if you handle third-party assets, provide investment services, or delegate strategy decisions to service providers), securities/tokens classification, tax treatment, and KYC/AML obligations.
- Octant does not provide investment, legal, or tax advice. You are solely responsible for complying with applicable laws and bear all associated risks.
For guidance on typical issues (non-custodial design, VASP/payment status, licensing considerations, token classification, tax, KYC/AML, and handling third-party assets), see the Legal FAQ sections Core Legal & Structural Questions, Token Classification & Securities Law, Jurisdiction & Tax Structuring, and Compliance & AML/KYC.