The Kelp rsETH incident was not a classic Solidity bug. The failure mode was dependency trust: a price/oracle path accepted a bad state transition, and downstream systems treated it as truth.
Atlas security work now treats oracle assumptions as first-class attack surface: stale reads, unchecked exchange rates, correlated asset assumptions, and “safe” fallback behavior are all reviewed like code.
Current focus: turn these patterns into repeatable checks that flag dangerous oracle trust boundaries before they become production incidents.