Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

apegurus/cream-finance

Name: cream-finance
Author: apegurus

skills/case-studies/cream-finance/SKILL.md

Case study of the 2021 Cream Finance exploit: flash loan + oracle manipulation draining ~$130M

data-ai

Updated May 13, 2026

$ install --global

skillsauth

npx skillsauth add apegurus/solidity-argus cream-finance

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 13, 2026, 3:19 AM161.0s1 file scanned

SKILL.md

name:: cream-finance
description:: Detects usage of Yearn vault tokens which can have complex pricing mechanisms vulnerable to manipulation.
category:: reference
source_url:: https://rekt.news/cream-rekt-2/
source_license:: CC0
imported_at:: 2025-02-20T00:00:00Z
- regex:: yUSD|yETH
severity:: Medium

Cream Finance (2021)

Overview

In October 2021, Cream Finance was exploited for approximately $130 million. The attacker used a complex flash loan attack to manipulate the price of Yearn's yUSD vault tokens, which were used as collateral on Cream. By inflating the value of yUSD, the attacker was able to borrow almost all other assets available on the platform.

Root Cause

The vulnerability lay in how Cream Finance calculated the price of Yearn vault tokens (yUSD). The price was derived from the total assets in the Yearn vault divided by the total supply of vault shares. The attacker used flash loans to deposit a massive amount of assets into the Yearn vault, which temporarily inflated the "price per share" used by Cream's oracle.

Attack Flow

Attacker took a massive flash loan of 500M DAI and other assets from MakerDAO and Aave.
Attacker deposited the DAI into Yearn's yUSD vault to receive yUSD tokens.
Attacker then deposited the yUSD into Cream Finance as collateral.
Attacker used more flash-loaned assets to further manipulate the Yearn vault's internal state, significantly increasing the reported value of yUSD on Cream.
With the inflated collateral value, the attacker borrowed almost all liquid assets from Cream's lending pools (ETH, WBTC, stablecoins).
Attacker repaid the flash loans and kept the borrowed assets.

Impact

Loss: ~$130M
Protocol: Cream Finance
Chain: Ethereum
Date: 2021-10-27

Key Transactions

Attack tx: 0x0fe2588608f3588c4a273c63e47ae7793c920909623d9d55666e082059d3c7df

Detection Heuristics

Pattern 1: Using vault share prices (like pricePerShare) as an oracle without accounting for potential manipulation of the underlying vault's reserves.
Pattern 2: Lack of caps on how much a single asset can be used as collateral, especially for complex derivative tokens.

Remediation

Fix 1: Use more robust oracles that are resistant to instantaneous reserve manipulation (e.g., Chainlink or TWAP).
Fix 2: Implement collateral caps and borrow limits to prevent a single exploit from draining the entire protocol.
Fix 3: Add a delay or "sanity check" when the price of a collateral asset changes significantly within a short period.

References

rekt.news/cream-rekt-2/
medium.com/cream-finance/c-r-e-a-m-finance-post-mortem-october-27-2021-d5a411f3f87a

Related Skills

apegurus/vector-scan

testing

VerifiedTrustedCommunity

Specialist profile for mechanically applying the attack-vector deck and classifying vectors as skip, drop, or investigate.

SKILL.mdUpdated May 30, 2026

apegurus/periphery

tools

VerifiedTrustedCommunity

Specialist profile for libraries, helpers, base contracts, adapters, encoders, wrappers, and integration glue.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

testing

VerifiedTrustedCommunity

Specialist profile for rounding, scale, decimal, downcast, and arithmetic accounting edge cases.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

apegurus/invariant

testing

VerifiedTrustedCommunity

Specialist profile for extracting conservation laws and state couplings, then searching for violating paths.

SKILL.mdUpdated May 30, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/apegurus/solidity-argus.git

# Copy into Claude Code skills folder (global)
cp -r solidity-argus/skills/case-studies/cream-finance ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

apegurus/solidity-argus

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT

apegurus/cream-finance

skills/case-studies/cream-finance/SKILL.md

Case study of the 2021 Cream Finance exploit: flash loan + oracle manipulation draining ~$130M

data-ai

Updated May 13, 2026

$ install --global

skillsauth

npx skillsauth add apegurus/solidity-argus cream-finance

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 13, 2026, 3:19 AM161.0s1 file scanned

SKILL.md

name:: cream-finance
description:: Detects usage of Yearn vault tokens which can have complex pricing mechanisms vulnerable to manipulation.
category:: reference
source_url:: https://rekt.news/cream-rekt-2/
source_license:: CC0
imported_at:: 2025-02-20T00:00:00Z
- regex:: yUSD|yETH
severity:: Medium

Cream Finance (2021)

Overview

Root Cause

Attack Flow

Attacker took a massive flash loan of 500M DAI and other assets from MakerDAO and Aave.
Attacker deposited the DAI into Yearn's yUSD vault to receive yUSD tokens.
Attacker then deposited the yUSD into Cream Finance as collateral.
Attacker used more flash-loaned assets to further manipulate the Yearn vault's internal state, significantly increasing the reported value of yUSD on Cream.
With the inflated collateral value, the attacker borrowed almost all liquid assets from Cream's lending pools (ETH, WBTC, stablecoins).
Attacker repaid the flash loans and kept the borrowed assets.

Impact

Loss: ~$130M
Protocol: Cream Finance
Chain: Ethereum
Date: 2021-10-27

Key Transactions

Attack tx: 0x0fe2588608f3588c4a273c63e47ae7793c920909623d9d55666e082059d3c7df

Detection Heuristics

Pattern 1: Using vault share prices (like pricePerShare) as an oracle without accounting for potential manipulation of the underlying vault's reserves.
Pattern 2: Lack of caps on how much a single asset can be used as collateral, especially for complex derivative tokens.

Remediation

Fix 1: Use more robust oracles that are resistant to instantaneous reserve manipulation (e.g., Chainlink or TWAP).
Fix 2: Implement collateral caps and borrow limits to prevent a single exploit from draining the entire protocol.
Fix 3: Add a delay or "sanity check" when the price of a collateral asset changes significantly within a short period.

References

rekt.news/cream-rekt-2/
medium.com/cream-finance/c-r-e-a-m-finance-post-mortem-october-27-2021-d5a411f3f87a

Related Skills

apegurus/vector-scan

testing

VerifiedTrustedCommunity

Specialist profile for mechanically applying the attack-vector deck and classifying vectors as skip, drop, or investigate.

SKILL.mdUpdated May 30, 2026

apegurus/periphery

tools

VerifiedTrustedCommunity

Specialist profile for libraries, helpers, base contracts, adapters, encoders, wrappers, and integration glue.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

testing

VerifiedTrustedCommunity

Specialist profile for rounding, scale, decimal, downcast, and arithmetic accounting edge cases.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

apegurus/invariant

testing

VerifiedTrustedCommunity

Specialist profile for extracting conservation laws and state couplings, then searching for violating paths.

SKILL.mdUpdated May 30, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/apegurus/solidity-argus.git

# Copy into Claude Code skills folder (global)
cp -r solidity-argus/skills/case-studies/cream-finance ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

apegurus/solidity-argus

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT