Flash-loan attacks

No matter how complicated a flash loan attack is, it happens by using smart contracts to execute a large number of transactions in one block.

Parrot DeFi flash loan attack defending system restricts the direct access from third party smart contracts unless they go through the white list approval process including stringent security checks.

No smart contracts can interact with our vaults unless we specifically whitelist them.

Even if we are aware that it goes against software development standards, we believe that the trade-off to prevent an attack is worth it, especially at the beginning of the project.