Rebasing tokens are stateful assets that autonomously change a holder's balance, while AMMs are stateless price functions that treat token quantities as immutable. This creates a persistent accounting divergence where the AMM's internal ledger no longer matches the actual token supply in its vault.
future-of-dexs-amms-orderbooks-and-aggregators
Blog
Why Rebasing Tokens and AMMs Are a Security Mismatch
Elastic supply tokens like OHM and stETH break the fundamental constant product invariant of AMMs like Uniswap V2, creating a structural arbitrage vulnerability that drains LP value. This analysis deconstructs the security flaw and why wrapper solutions are a fragile patch.
introduction
THE FUNDAMENTAL MISMATCH
Introduction
Rebasing tokens break the core accounting assumptions of constant-product AMMs, creating systemic risk for liquidity providers and traders.
Liquidity providers face asymmetric dilution. A rebase that mints tokens to holders does not credit the AMM's pool, so the LP's share of the pool is diluted. This is a direct transfer of value from LPs to token holders, a flaw protocols like OlympusDAO had to engineer around.
The mismatch is a security vulnerability. An attacker can front-run a positive rebase, buy tokens from the AMM, receive the rebase, and sell back, extracting value from the pool. This is a risk-free arbitrage at the LP's expense, similar to exploits seen with Terra's LUNA.
Evidence: The failure of early Uniswap v2 pools for rebasing tokens like Ampleforth forced the creation of specialized, non-rebasing wrapper assets (e.g., stETH), proving that vanilla AMMs are incompatible with this tokenomic primitive.
key-insights
THE LIQUIDITY FRICTION
Executive Summary
Rebasing tokens, designed to maintain a stable unit of account, create fundamental incompatibilities with constant-product AMMs, leading to systemic risks and poor UX.
01
The Problem: Dilution of LP Capital
AMMs treat token balances as static, but rebasing tokens change supply. An LP's share of the pool decreases with every positive rebase, as the protocol mints tokens to holders inside the pool. This silently erodes capital efficiency and creates a persistent negative carry for LPs.
-100%
LP Share Dilution
Constant
Negative Yield
02
The Problem: Impermanent Loss on Steroids
Standard IL is bad. Rebasing amplifies it. The rebase mechanism introduces a third variable (supply) into the constant-product formula (x*y=k). Price movements combined with supply changes create unpredictable, non-linear losses for LPs, making risk modeling nearly impossible.
Non-Linear
Loss Profile
Unhedgeable
Risk
03
The Problem: Broken Price Oracles
AMM pools are primary price feeds for DeFi. A rebasing token pool reports a synthetic price that reflects both market demand and protocol inflation/deflation. This corrupts any downstream protocol (like lending markets on Aave or Compound) that uses this price for collateral valuation, leading to under/over-collateralization.
Corrupted
Price Feed
Systemic
Risk Vector
04
The Solution: Wrapped Rebasing Tokens (e.g., stETH)
The dominant workaround. The rebasing asset is wrapped into a non-rebasing ERC-20 (e.g., stETH). The wrapper contract accrues value, increasing the exchange rate between the wrapper and the underlying asset. This externalizes the rebase from the AMM, restoring a static supply for the pool token.
- Enables ~$20B+ TVL in Curve/Uniswap pools.
- Introduces wrapper dependency and slight UX friction.
$20B+
TVL Enabled
Externalized
Rebase Logic
05
The Solution: Rebase-Aware AMM Designs
Next-generation AMMs can natively account for supply changes. By tracking a rebase index or using virtual balances that adjust post-rebase, these pools maintain fair LP ownership. This is the clean technical solution but requires new protocol development and liquidity migration.
- Preserves LP capital share.
- Eliminates oracle corruption at source.
Native
Support
Fair
LP Economics
06
The Solution: Move to Yield-Bearing Vaults
Abandon the AMM model entirely. Use vault-based liquidity where users deposit a single asset (e.g., a rebasing token) to earn yield from integrated strategies. This sidesteps the constant-product mismatch. Platforms like Pendle Finance tokenize future yield, separating it from principal to create tradable assets without the rebase-AMM conflict.
- Eliminates IL and dilution.
- Shifts paradigm from trading pairs to yield markets.
Zero
IL/Dilution
Yield-Focused
Design
thesis-statement
THE AMM MISMATCH
The Core Invariant is Broken
Rebasing tokens violate the fundamental liquidity pool invariants that AMMs like Uniswap V3 and Curve rely on for price discovery.
AMMs require constant product. Automated Market Makers operate on a strict mathematical invariant, typically x*y=k. A rebasing token's supply change directly alters the 'x' or 'y' variable, breaking the invariant and corrupting the pool's price oracle.
Liquidity providers face permanent loss. The pool's internal accounting fails because the supply change is not a trade. LPs see their share of the pool shrink without a corresponding price movement, creating a vector for value leakage and arbitrage.
Protocols like OlympusDAO and Lido expose the flaw. stETH/ETH pools on Curve and Uniswap require constant rebalancing and external oracle feeds because the native rebasing mechanism is incompatible with the core AMM design.
Evidence: The stETH/ETH pool depeg in June 2022 demonstrated this. The rebasing yield accrued, but the AMM's internal price, derived from a broken invariant, failed to reflect the true accrual, exacerbating the depeg dynamic.
SECURITY MISMATCH
The Arbitrage Math: Quantifying LP Loss
Comparing the economic security of standard AMMs vs. their interaction with rebasing tokens, highlighting the guaranteed loss vector for LPs.
| Attack Vector / Metric | Standard ERC-20 AMM (e.g., Uniswap V2) | Rebasing Token in AMM (e.g., stETH/ETH pool) | Mitigated Design (e.g., Oracle-based Pool) |
|---|---|---|---|
Impermanent Loss (IL) Driver | Price divergence between assets | Price divergence + Supply change of rebasing token | Price divergence only |
LP Loss from Rebase | 0% | Guaranteed >0% on positive rebase | 0% (rebases handled off-AMM) |
Arbitrage Profit Source | Exploiting price delta vs. external market | Exploiting price delta + capturing accrued rebase value | Exploiting price delta only |
Attack Frequency | Opportunistic (market inefficiency) | Systematic & Predictable (every rebase event) | Opportunistic (market inefficiency) |
LP Hedge Required? | |||
Example Protocol Exposure | General market risk | Lido's stETH, Aave's aTokens, Compound's cTokens | Not applicable |
Required Arbitrage Capital | Variable, high for large pools | Minimal, can be atomic flash loan | Variable, high for large pools |
Solution Archetype | Baseline | Problem | Oracle feeds (Chainlink), Non-rebasing wrappers (wstETH), Rate-provider AMMs (Balancer) |
deep-dive
THE ARCHITECTURAL MISMATCH
Wrapper Contracts: A Fragile and Centralized Patch
Wrapper contracts for rebasing tokens introduce systemic fragility and centralization into AMMs, creating a fundamental security mismatch.
Wrapper contracts are a centralized oracle. They require a trusted entity to correctly report the underlying token's rebasing supply, creating a single point of failure and censorship. This reintroduces the custodial risk that decentralized finance aims to eliminate.
Rebasing logic breaks AMM invariants. Automated Market Makers like Uniswap V2/V3 and Curve assume a constant token supply within a pool. A rebase that changes a token's balance without a corresponding trade violates the x * y = k invariant, allowing arbitrageurs to drain value from LPs.
The patch creates systemic risk. Wrappers like stETH or aTokens offload complexity to a fragile, application-layer solution. A bug in the wrapper's rebase logic or oracle feed compromises every integrated protocol, as seen in past exploits involving price feeds.
Evidence: The $24M Rari Fuse exploit was directly enabled by a flawed rebasing token integration, where the attacker manipulated the exchange rate between a wrapped and underlying asset to drain pools.
case-study
WHY REBASING TOKENS AND AMMS ARE A SECURITY MISMATCH
Case Studies in Mismatch
Rebasing tokens, designed to stabilize price, fundamentally break the constant-product invariant that AMMs rely on for security and liquidity.
01
The Oracle Problem: Rebasing Breaks On-Chain Price Feeds
AMMs like Uniswap V2/V3 derive price from the pool's reserve ratio. A rebase changes reserves without a trade, creating a phantom price movement. This creates arbitrage against the pool and breaks the primary oracle for the entire DeFi stack (e.g., lending protocols like Aave, Compound).
- Attack Vector: Oracle manipulation via forced rebase timing.
- Result: Inaccurate collateral valuation and potential protocol insolvency.
100%
Oracle Error
$1B+
DeFi TVL at Risk
02
Liquidity Provider (LP) Nightmare: Non-Compositional Tokens
LP tokens represent a share of a pool. When the underlying rebasing token changes quantity, the LP token's claim on the pool's value becomes ambiguous. This breaks composability with yield aggregators (Yearn, Convex) and lending markets.
- Core Issue: LP token is no longer a pure claim on two fixed assets.
- Consequence: LPs face unpredictable impermanent loss and cannot safely use their position as collateral elsewhere.
~0%
Safe Composability
Unquantifiable
LP Risk
03
The Ampleforth Experiment: A $50M Lesson in AMM Incompatibility
Ampleforth (AMPL) is the canonical rebasing token. Its 2019-2020 cycles caused massive liquidity fragmentation across DEXs. Pools would swing between 100% AMPL or 0% AMPL post-rebase, destroying liquidity depth and creating extreme slippage.
- Empirical Proof: AMMs cannot natively handle supply-volatile assets.
- Industry Response: Led to wrapper solutions (e.g., stETH, sOHM) that convert rebasing tokens into yield-bearing, non-rebasing versions.
$50M+
TVL Volatility
100%
Pool Imbalance
04
The Solution: Wrapper Vaults & Synthetic Derivatives
The fix is to intercept the rebase off-chain and convert the token into a non-rebasing, yield-bearing derivative. Lido's stETH and Olympus's sOHM/gOHM are successful models. The wrapper vault absorbs the rebase, minting a token that grows in value per unit, not quantity.
- Mechanism: Rebase is converted into a continuous appreciation of the wrapper token's exchange rate.
- Outcome: AMMs see a normal, composable ERC-20, restoring oracle integrity and LP safety.
~$30B
Wrapper TVL (stETH)
100%
AMM Compatible
future-outlook
THE MISMATCH
The Path Forward: Intent and Isolated Pools
Rebasing tokens expose a fundamental security flaw in constant-product AMMs, creating systemic risk that isolated pools and intent-based systems resolve.
Rebasing tokens break AMM invariants. Constant-product AMMs like Uniswap V2 rely on a fixed k = x * y invariant, which a token's changing total supply directly violates. This creates arbitrage opportunities that drain liquidity from the pool, a flaw exploited in the 2022 Platypus Finance hack.
Isolated pools contain the blast radius. Protocols like Balancer V2 and Uniswap V3 use isolated vaults or non-fungible positions. A compromised rebasing pool cannot drain collateral from unrelated assets, preventing a single failure from cascading through the entire protocol.
Intent-based systems abstract the complexity. Solving this requires moving beyond simple swaps. Systems like UniswapX and CowSwap use intent-based architecture, where a solver network finds the optimal path, allowing rebasing tokens to be handled off-AMM via specialized logic without polluting core liquidity.
takeaways
SECURITY MISMATCH
Key Takeaways
Rebasing tokens break the fundamental economic assumptions of constant-product AMMs, creating systemic risk and user experience failures.
01
The Problem: Impermanent Loss on Steroids
Rebasing tokens like stETH dynamically change a user's balance, but AMM liquidity pools see only the pool's total supply. This creates a permanent arbitrage vector where the pool's internal accounting becomes inaccurate after every rebase.
- Pool becomes undercollateralized relative to its true liabilities.
- Arbitrageurs drain value from passive LPs with near-zero risk.
- Classic "impermanent loss" transforms into guaranteed, calculable loss.
>0%
Guaranteed LP Loss
Per Rebase
Attack Vector
02
The Solution: Rebasing-Wrapper Middleware
Protocols like Lido's wstETH and Rocket Pool's rETH solve this by creating a non-rebasing wrapper token. The wrapper's exchange rate against the underlying asset appreciates instead of minting new tokens.
- AMM pools hold the static wrapper token, preserving constant-sum mechanics.
- Users still capture staking yield via the wrapper's price appreciation.
- This pattern has secured ~$20B+ in DeFi TVL across Curve and Balancer pools.
~$20B+
Secured TVL
Static
Pool Balance
03
The Problem: Liquidity Fragmentation & UX Hell
Without a wrapper, each rebasing token (e.g., stETH, aETH) requires its own isolated liquidity pool. This fragments liquidity and destroys composability.
- Zero interoperability with the broader DeFi ecosystem (e.g., cannot use stETH as collateral in MakerDAO).
- Users face constant balance confusion and tax accounting nightmares.
- Forces protocols like Curve to implement complex, one-off gauge systems for incentives.
Isolated
Liquidity Pools
Broken
Composability
04
The Solution: Index & Yield-Bearing Vaults
Yield-bearing indices (e.g., Index Coop's dsETH) and vault strategies abstract the rebasing complexity. They aggregate multiple LSTs into a single, composable token.
- Diversifies underlying risk across multiple protocols (Lido, Rocket Pool, Frax).
- Provides a single, clean balance for users and AMMs.
- Enables novel DeFi primitives like yield-bearing collateral in lending markets.
Diversified
Risk
Composable
Primitive
05
The Problem: Oracle Manipulation & MEV
Rebase events are predictable, scheduled price discontinuities. This creates a free option for MEV bots to front-run or sandwich the rebase adjustment in AMM pools.
- Oracles like Chainlink must handle the supply change, creating temporary price spikes.
- Bots extract value from LPs and protocol rewards auctions.
- Increases systemic fragility during high network congestion.
Predictable
MEV Vector
Oracle Risk
Spike
06
The Architectural Imperative: Separate State & Yield
The core lesson is that monetary policy and state must be separated. A token cannot be both a medium of exchange/AMM reserve and a yield-bearing instrument without a translation layer.
- Successful patterns (wrappers, vaults) all insert a middleware layer to absorb the rebase.
- This is why EigenLayer uses a native restaking token, not a rebasing ETH.
- Future designs must bake this separation into first principles.
First-Principle
Design Rule
Middleware
Required Layer
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall