Changelog
What's new - API updates, risk framework changes, and new protocol integrations.
July 2026
Exit Overhang
- Launched Exit Overhang, a premium holder-concentration surface on the Decisioning plan at
philidor.io/dashboard/overhang- action bands (Clear, Watch, Limit, Exit Review), concentration trend, and coverage-honest gating that withholds a verdict where backfill is incomplete - Concentration-move alerts now flow into the dashboard risk inbox
Holder Intelligence
- Public holder data on vault detail -
GET /v1/vault/{network}/{address}/holdersand/holders/history, segmented external versus protocol-owned - Entity labels on holder data - depositors identified via curated label datasets, ENS, and licensed attribution sources
Platform
- The dashboard moved to
philidor.io/dashboard- risk.philidor.io redirects - Web apps now deploy on Cloudflare Workers with zero-downtime cutover
- Retired the standalone news app - The Wire lives in the dashboard, and the public feed is documented at
GET /v1/signals - Rewrote the docs offering - plans presented as Data, Decisioning, and Embedded, new API reference pages for events and SSE, baskets and webhooks, signals, security events, RWA, risk graph, and research, plus a History vector methodology page
Performance
- Events API overhaul - public events list latency cut from 5.1s to 0.41s, and enriched-asset reads that previously failed now return in about 2 seconds
- Dashboard loads moved to purpose-built endpoints for alerts summary, server-side portfolio grade, and report export
- The analytics vault screener is server-rendered and virtualized
Access
- Risk Graph decisioning endpoints now require a Growth or Enterprise key - the decision verification endpoint remains public
- Productized the incident-exposure signal in the Risk Graph, measuring graph-mediated exposure to historical incidents per portfolio
June 2026
Chains and Protocols
- Added Plume (98866) and Monad (143) chain support across the indexer, API, and all frontends, bringing coverage to 9 chains
- Added the Nest RWA protocol module on Plume and Ethereum, plus a Nest RWA (Plume) conservative basket with a published methodology page
- Added an Aave V4 (hub-and-spoke) protocol adapter with canonical on-chain APY/TVL reads, version filters, and seeded V4 audit history
Risk Graph
- Launched the Risk Graph, an institutional decisioning surface - content-addressed portfolio snapshots, look-through to underlying markets, scenario shocks, and borrower-health breach preview
- Signed risk decisions over content-addressed inputs (EIP-191), with a public verification endpoint at
GET /v1/graph/decision/{id}/verify- first production decision signed June 11 - Integrated the Risk Graph into the dashboard as a native surface with a Markets tab and automatic portfolio loading
Scoring
- Published-tier stability - tier changes now dwell before publishing (6 hours to promote, 24 hours to demote, with hard demote floors), so short-lived score jitter no longer flips published tiers;
published_risk_tieris served everywhere tier is read - History vector integrity - rating changes are excluded from their own history penalty, and the lifetime-Critical penalty applies only to loss-evidenced incidents
- Recalibrated the asset-quality anchor so conservative market parameters no longer flip the Prime tier ceiling on allocator-rotated vaults
API
- Vault score and tier history at
GET /v1/vault/{network}/{address}/score-history - Base-asset enrichment data at
GET /v1/assets/enriched minTvlnow binds strictly for API clients, withminScoreaccepted as an alias and case-insensitiveriskTierfiltering- Events feed de-duplication - repeated occurrences of the same underlying event group under a single row with an occurrence count, across REST and the SSE stream, and display surfaces are floored to incident-grade severity
- Activated webhook dispatch for vault score changes on basket webhook subscriptions
- RWA rows carry
canonical_product_idandaum_scope, and attestations are signature-enforced - Rebuilt single-vault event routing - worst-case cold reads dropped from the tens of seconds to about one second
Dashboard
- Renamed the product Philidor Risk and made the dashboard fully mobile-friendly
- Added The Wire, a curated risk-signal feed with per-portfolio exposure, as a dashboard News tab
- Notification subscriptions gained per-subscription scope and event-type filters, including deposit-cap alerts and recoveries
- Idle wallet assets now appear in portfolio scans alongside deployed positions
Research
- Launched research.philidor.io with the flagship paper The Recursion Map, covering single points of failure in on-chain credit, backed by snapshot-stamped look-through evidence and reproducibility packs
May 2026
Risk Framework v4.4
- Added a 4th scoring vector - vault history (recent events / instability) with lifetime-Critical penalty and time decay
- Added live peg-stability monitoring for stablecoin-class assets, with cooldown and automatic recovery on re-peg
- Exposed score provenance (caps, flags, inputs) in the vault risk API response
- Overhauled the event severity rubric - plain-English Critical/Warning descriptions and an explicit loss-of-funds rule
- Extended the incident detection window to 365 days
Baskets
- Launched curated baskets - USDC Prime + Core and USDT/USDT0 stablecoin baskets, plus an RWA T-bill conservative basket
- New public
GET /v1/basketsAPI with webhook subscriptions (signed dispatch, dead-letter queue, circuit breaker) - Published per-basket methodology docs generated from the scoring source of truth
RWA API
- Launched
GET /v1/rwauniverse and detail endpoints with reviewer, custodian, auditor, and jurisdiction facets - Institutional readiness: provenance/attestation signatures, credit-fund dimensions, issuer cross-checks, and daily metadata refresh
Stable Chain (988)
- Added Stable chain support across the indexer, API, and all frontend surfaces (Morpho adapter, portfolio scanning, Multicall3)
Dashboard
- Launched
dashboard.philidor.io(nowphilidor.io/dashboard) for portfolio monitoring, alerts, and notifications (email, team chat, Telegram) with multi-org support - Surfaced vault depositability (
deposit_status/withdraw_status) across the REST API, MCP server, and agent guides
April 2026
Events API
- Launched the public events feed:
GET /v1/events(list) andGET /v1/events/{id}(detail) - Added a real-time event stream over Server-Sent Events at
/v1/events/stream - Added on-chain event detection workers (Aave V3, Morpho Blue bad-debt / liquidations, Curve) plus scheduled DeFiLlama and Rekt.news ingestion
Risk Framework v4.3
- Methodology calibration: single canonical scoring with the Prime threshold set to 8.0
- Bridged oracle liveness into risk scoring; removed permanently-stale Pyth L1 feeds
- Added Morpho V2 support - per-function timelock details and adapter types
March 2026
Risk Framework v4.2
- Calibrated the asset-categorization scoring for tier stability (correlation penalty made informational, deposit-asset exposure modeling)
- Expanded asset registry coverage past 200 assets (institutional-grade Base assets, WBTC, Optimism)
- Added oracle deviation alerting - automatically opens incidents when feeds breach deviation thresholds
API v1.1
- Institutional-grade hardening: hashed API-key storage, maker-checker authorization, and request-ID validation
- Added the API Access & Tiers model (Free / Growth / Enterprise)
- Adjusted the public rate limit to 30 requests/minute
MCP Server
- Default API URL now points to production
February 2026
Risk Framework v4.1
- Replaced flat token tier map with category-specific asset methodology
- Added evidence-backed dimensions with freshness windows and staleness penalties
- Added hard-fail flags with cooldown/hysteresis semantics
- Added review-status caps and unresolved-address conservative fallback
- Added portfolio-level concentration, correlation, and wrong-way adjustments
- Added explainability outputs (caps, flags, confidence, provenance)
- Added bitemporal registry and maker-checker governance controls
- Added score-run provenance and fail-safe operational modes
Risk Framework v2.2
- Added Avalanche chain support
- Expanded oracle provider coverage (API3, Lido exchange rates)
- Refined incident decay caps with 4-tier time window
- Added dependency safety factors for multi-protocol vaults
- Strategy taxonomy expanded to 14 types
API v1
- Launched centralized REST API at
api.philidor.io - 18 public endpoints covering vaults, protocols, curators, portfolio, and more
- OpenAPI spec with Swagger UI at
/v1/docs - Redis-backed rate limiting and response caching
- Self-hosted on VPS with systemd + Caddy
MCP Server
- Launched MCP server at
mcp.philidor.io - 10 tools for vault search, risk analysis, and comparison
- 3 resources: methodology, supported chains, supported protocols
- 3 prompts: vault due diligence, portfolio assessment, yield comparison
- Streamable HTTP transport
Documentation Site
- Launched
docs.philidor.iowith Fumadocs - 30+ pages covering API reference, MCP server, risk framework, guides, and data reference
llms.txtandllms-full.txtfor AI agent consumption- Dark theme matching Philidor brand
January 2026
Risk Framework v2.1
- Added Compound V3 (Comet) support
- Added Euler and Fluid protocol adapters
- Improved oracle freshness monitoring (15-second polling)
December 2025
Risk Framework v2.0
- Three-vector scoring model (Asset, Platform, Governance)
- Deterministic scoring with no manual overrides
- Hard disqualification rules for unaudited protocols
- Continuous 30-minute recomputation cycle
On-Chain Indexer
- Finality-safe block reading across 6 chains
- Reorg detection and automatic rollback
- Reconciliation with sync gap detection