Proposal to add agEUR/EURe on Ethereum to the Gauge Controller

Summary

This is a proposal to add agEUR-EURe (with A=500) on Ethereum to the Gauge Controller to enable users to assign gauge weight and mint CRV.

References/Useful links

About Angle
• Website
• Documentation
• Github Page
• Communities: Discord, Twitter • Analytics
• Audits

About Monerium

• Website
• Documentation
• GitHub Page
• Communities: Twitter, Telegram (Monerium DEV)

Projects Description

About Angle

Angle is a decentralized stablecoin protocol designed to be both over-collateralized and capital-efficient. The protocol has launched agEUR, a Euro stablecoin, which has become the biggest decentralized Euro stablecoin. The TVL in the Angle Protocol is $53m with 36m agEUR in circulation.

There are different mechanisms (also called modules) by which agEUR can be issued all having in common that agEUR must be released on the market in an over-collateralized way.

• In the Core module of the protocol, agEUR can be minted from USDC, DAI and FRAX at oracle value. The protocol insures itself against the $/€ change risk by issuing perpetual futures and by relying on the deposits of another type of agent incentivized by the strategies built by the protocol and by transaction fees. agEUR issued from this means represent the biggest share of the agEUR in circulation, and they are currently over-collateralized at 200%
• The protocol also has a borrowing module where agEUR can be borrowed against different assets (ETH, wBTC, wstETH) like on Maker. This module is deployed on different chains
• The protocol is also engaged in algorithmic market operations (also called direct deposit modules). It has for instance minted agEUR natively on Aave and on Euler. In these cases, agEUR enter in circulation when they are borrowed in an over-collateralized way on the corresponding protocol. Protocol also mints agEUR on the agEUR-EUROC Curve pool when this pool has more EUROC than agEUR (like what FRAX is doing)

agEUR has kept a super tight peg since its launch. It is involved in several other gauges on Curve as well (agEUR-EURs-EURt, agEUR-ibEUR, agEUR-EUROC-cEUR, agEUR-EUROC) which have historically yielded a pretty important volume.

About Monerium

The Monerium EURe is an overcollateralized, authorized, and regulated euro token. The EURe pioneers electronic money on blockchains. Monerium is the first company authorized to issue electronic money (e-money) as a token on blockchains. E-money is a form of digital cash and is redeemable on demand. Previously, fintechs such as PayPal, Revolut, and Wise have operated online and mobile services based on e-money licenses. The EURe is the first euro e-money token and can be held in any wallet or smart contract. The EURe is linked to SEPA and Monerium operates a gateway for direct transfers of euros between bank accounts and blockchain wallets, including user IBANs for blockchain wallets and smart contracts. Euros sent to the user IBAN are automatically minted as EURe; conversely EURe can be sent back to a bank account using the payee IBAN. The EURe is an accepted form of cash and The European Central Bank accounts for e-money issued by major financial institutions as “overnight deposits” and is therefore fungible (interchangeable at par) with bank deposits and physical cash. The EURe is compatible with MiCA. The EURe is currently available on Ethereum and Polygon. More chains will be supported in the near future.

Motivation

Angle is an over-collateralized Euro stablecoin, meaning that to get 1 agEUR you usually need more than one in collateral. This creates a notable barrier for people who want to on-ramp to agEUR and the conversion from 1 EUR in cash to 1 agEUR is not obvious.

EURe as a centralized stablecoin does not face such issues. Moving 1 EUR from a bank account to a crypto wallet as EURe can be done as fast as in 30seconds.

An agEUR/EURe pool would get the volume of people on-ramping and off-ramping to/from agEUR using EURe technology. At the same time, agEUR has a deep liquidity with many other USD stablecoins, and as such it would help arbitrageurs maintain the peg of EURe with respect to other non-Euro assets on-chain.

EURe is a pretty new asset in DeFi with less integrations that what is currently supported with agEUR. A deep agEUR-EURe Curve pool would help provide all EURe (and hence all EUR holders) the opportunities which have already been developed around agEUR (Aave, Euler, …)

This pool, if big enough, could also be plugged to Angle AMO technology like what is done on the agEUR-EUROC pool. In this case, this pool would become a de facto price stability module of agEUR, and fees would be accruing to veCRV holders each time someone enters or exits the protocol.

Specifications

1. Governance: Provide current information on the protocol’s governance structure. Provide links to any admin and/or multisig addresses, and describe the powers afforded to these addresses. If there are plans to change the governance system in the future, please explain.

Angle: Angle governance is explained in details in this page of our docs. The Angle protocol is controlled by veANGLE holders which have the power to vote on Angle Improvement proposals. Votes are implemented on-chain by a 4/6 multisig composed of the following signers: Pablo Veyrat, Guillaume Nervo, Picodes (all 3 from Angle Core Team) @SebVentures (from Maker), Julien Bouteloup and 0xMaki. Monerium: Monerium is a centralised and regulated e-money issuer.

2. Oracles: Does the protocol rely on external oracles? If so, provide details about the oracles and their implementation in the protocol.

Angle: The protocol uses Chainlink oracles (and in some cases Uniswap TWAPs in parallel to these feeds to make sure oracle are non manipulable) Monerium: EURe are issued on a 1:1 basis with the safeguarded customers’ EUR, with a 2% capital contribution from Monerium’s reserves. Therefore Monerium doesn’t rely on external oracles for the peg. EURe is legally recognised as EUR.

3. Audits: Provide links to audit reports and any relevant details about security practices.

Angle: Angle Protocol was audited 4 different times. Audit reports can be found here. The protocol was also reviewed by independent contributors like DeFiSafety, or Curve funded contributors. Monerium: As stipulated by the e-money license, all business processes, application development, and safeguarding operations are audited periodically. Additionally, e-money institutions, are subject to quarterly financial reporting. The development process follows well known security practices, such as OWASP and all smart contracts have been tested for bugs and vulnerabilities using industry standard static analysis tools.

4. Centralization vectors: Is there any component of the protocol that has centralization vectors? E.g. if only 1 dev manages the project, that is a centralized vector. If price oracles need to be updated by a bot, that is a centralized vector. If liquidations are done by the protocol, that is also a centralization vector.

Angle: The protocol runs on decentralized systems, it relies on competitive liqudiations, and vote-based governance. There’s no single person or dev with admin controls over the protocol. And as disclosed in question 1., the treasury and some part of the protocol are secured by a multisig of doxxed team members.

Monerium: Monerium is a centralised issuer of regulated money.

5. Market History: Has the asset observed severe volatility? In the case of stablecoins, has it depegged? In the case of an unpegged asset, have there been extreme price change events in the past? Provide specific information about the Curve pool: how long has it been active, TVL, historical volume?

Angle: agEUR has remained stable since its launch, despite adverse market conditions. agEUR has held Curve pools for several months, for most of which it has provided a considerable share of volume on Ethereum and Polygon. During the week of the UST crash, it even helped EURs keep its peg while there was some lag in the redemption process. Same happened with ibEUR. It kept its stability as well during last week market turmoil.

Monerium: EURe is legally recognised as EUR and is redeemable on demand by law. Since Monerium is only allowed to safeguard customer funds, they’re readily available for redemption, maintaining the peg.

Angle is definitely a fren protocol, and has the nod and support from the CryptoRisks team! Monerium needs more scrutiny, I think: primarily because it is a custodial solution.

I think for Monerium we’re going to need something similar to an audit or a proof of reserves. How can one ascertain that they’re a responsible custodian?

I can’t speak for them, but as far as I know they’re the only stablecoin provider with a e-money license in Europe. Does not imply anything regarding proof of reserves, but at least that’s a sign that they have an efficient compliance

Hey bout3fiddy, do you have an example from another stablecoin provider, maybe from Circle or Tether on what kind of document you would be looking for?

Something like this:

Hey everyone , Gísli here from Monerium. Couple of points to address the questions raised:

• We’re regulated in the whole European Union + European Economic Area as an E-Money Institution, a licensing framework which has been proven over 2 decades.

• As such we’re the only company to my knowledge which is future compliant with MiCA.

• As an EMI we cannot lend out reserves, merely safeguard customer funds. In addition we provide 2% of our own capital as a buffer. So we’re over-collateralized, fiat backed issuer of E-Money tokens.

• The reserves are ring-fenced from the operation and EURe holders have a priority claim to the reserves (the claim has a higher priority than salary obligations)

• We hold custodial bank accounts with the same banks as e.g. Coinbase.

• We’re audited by EY and regulated by the Central Bank of Iceland

In our minds, e-money and EURe is the safest form of digital cash

We live and breath crypto and we stand and fall with the success of DeFi. Therefore, we’re also initiating the following steps:

• Regular attestations of the reserves from an auditor
• Conversation with the Chainlink team to implement their new proof-of-reserves protocol
• Ideation of signed payloads from banking partners, which can be verified by anyone.

Let me know if you have further questions

(meant to respond to you but responded to knows instead):

Audited by EY has little meaning unfortunately. EY has a track record of basically committing fraud.

E.G. EY did the audit for Wirecard.

To our knowledge, we are the only provider with an e-money license in Europe and we think it is the best framework for representing digital cash worldwide. The e-money license has the potential to become the worldwide standard (just as the GSM standard originated out of Europe).

The e-money directive also stipulates how customer funds should be safeguarded. Please see Article 7 of the the e-money directive on Safeguarding requirements. That article also points to DIRECTIVE 2007/64/EC , which covers among other things:

• Initial capital (Article 6);
• Own funds (Article 7);
• Calculation of own funds (Article 8); and
• Safeguarding requirements (Article 9).

I think your regulatory/ legal / backing setup is rock solid. However, as soon as you are getting involved in DeFi you take on the responsibility to provide secure contracts. For that, there is an unspoken rule to having your contracts audited, which apparently hasn’t been done yet. Not that it is an ultimate requirement for a gauge, but this is what the DAO and LPs expect in QA. Almost always some issues are being found in those audits, not necessarily critical ones (exploits) but things like logic flaws or gas efficiency improvements.

Speaking of contract security, the EURe contract/supply is controlled by two different EOAs.

1. The owner of the EURe contract that has the ability to upgrade the controller.

2. The SystemAccount that is able to mint EURe.

Nr. 2 might be necessary to automate the minting of EURe as soon as people deposit via SEPA I guess? But you should consider implementing a daily cap on EURe mints per SystemAccount (changeable via msig) > Big mints cleared manually via msig. This would probably eat a bit into scalability but the cost of a breached SystemAccount by far outweighs the cost/efforts of manual mints.

Regarding Nr. 1, the owner of the EURe contract should definitely be a multisig. This is the standard across the space and its unacceptable to have an EOA here.

Furthermore, the source code of the controller is not verified on etherscan.

Maybe these issues don’t seem to be apparent at first sight because you know you can freeze EURe at any time, patch it, make a pre-exploit snapshot, re-issue EURe and call it a day. However, this is problematic in DeFi because e.g. an LP could be rugged out of his agEUR by the nature of infinite EURe mints and subsequent selling into the pool.

@gislik any update on the state of EURe’s deployed contracts? are they being audited? how come the controller’s source code still isnt verified?