YO (Yield Optimizer)

About

YO is a multi-chain yield optimization protocol that automatically rebalances user assets across the highest-performing DeFi pools on various blockchains. Built on the ERC4626 standard, it offers vaults for major assets like USD, ETH, BTC, EUR, and gold, providing set-and-forget yield optimization for both individual and institutional users.

Where Does Yield Come From?

YO earns yield by automatically moving user deposits across a variety of decentralized finance (DeFi) protocols and blockchains. It searches for the best yield opportunities that balance potential returns with risk. It invests in lending platforms (like Aave, Compound, Morpho), liquidity pools (like Uniswap, Curve, Aerodrome), liquid staking (like Lido, Jito, Rocket Pool), yield trading (Pendle), and structured products (Ethena). The yield comes from several sources: interest from lending, fees from trading, rewards from staking, and additional tokens given as incentives by certain protocols (like MORPHO, TOKE, FLUID).

The protocol's algorithm uses risk ratings from Exponential.fi to measure how risky each pool is, then calculates a risk-adjusted yield. It rebalances daily, meaning it regularly sells positions with lower yields and buys into ones with higher yields. Each vault aims to keep a target mix of investments across approved pools. Any extra tokens earned from these third-party protocols are automatically reinvested back into the vault—either swapped for more of the main asset or kept if that fits the vault's plan.

The overall yield is computed as a weighted average of the yields from all the underlying pools, taking into account any assets that are sitting idle. Currently, the protocol covers transaction (gas) fees and spreads other costs (like bridging or trading fees) across all depositors. Users earn two types of yield: 'native yield' that compounds in the asset they deposited, and optional 'reward yield' paid in YO tokens for actions such as depositing into vaults or taking part in certain DeFi activities.

Persons

Driss
Co-founder/CEO
LinkedIn
Mehdi
Co-founder/President
LinkedIn
Elie
Engineering
LinkedIn
Adam
Engineering
LinkedIn
Krasi
Engineering
LinkedIn
Thiago
Engineering
LinkedIn
Romo
Operations
LinkedIn
Oscar
Product
LinkedIn
Lauren
Content
LinkedIn
David
Research
LinkedIn
Matt
Business Development
LinkedIn
Diego
Research
LinkedIn

Audits

Audit / Date	Findings	Verdict
Offbeat Security15-01-2025	Critical0 High0 Medium0 Low5 Info1	The audit identified only low-severity and informational issues, all of which were either fixed or acknowledged, indicating the vault implementation has no critical security flaws but operates under significant trust assumptions regarding vault operators.
Hunter Security21-01-2025	Critical0 High0 Medium0 Low5 Info6	The audit found no high or medium severity vulnerabilities, indicating a relatively secure codebase with only low-risk and informational issues, most of which were resolved or acknowledged by the team.
Spearbit29-05-2025	Critical0 High0 Medium0 Low9 Info6	The audit revealed no critical or high-severity vulnerabilities, with all findings being low-risk or informational, indicating a generally secure core implementation with manageable edge cases acknowledged by the protocol team.
Aether Labs23-10-2025	Critical0 High0 Medium0 Low0 Info0	This limited-scope review found only minor code quality suggestions in the secondary vault contract, with no security vulnerabilities reported, indicating a clean security posture for the examined component.
Paladin Blockchain Security21-11-2025	Critical0 High7 Medium10 Low19 Info11	The audit revealed significant operator privileges and fee calculation issues, though many high/medium findings were duplicates from previous audits; overall security posture depends on responsible governance given the centralization risks identified.
Aetheryc01-12-2025	Critical0 High0 Medium1 Low1 Info1	The audit found no critical or high-risk issues, with the single medium and low vulnerabilities already resolved before publication, indicating a relatively secure codebase with basic oracle validation improvements addressed.
Zellic17-02-2026 - 23-02-2026	Critical0 High0 Medium0 Low5 Info1	The audit found no critical or high-severity vulnerabilities, with all identified issues rated low or informational and promptly addressed by the YO Foundation team. The protocol demonstrates solid security posture with minor design trade-offs deemed acceptable for production deployment.
Accretion13-04-2026	Critical0 High0 Medium2 Low8 Info5	The audit found no critical or high-severity vulnerabilities, with only medium and low issues, half of which were fixed and half accepted as design choices, indicating generally sound security practices with minor improvements needed.
Aether Labs20-08-2025	Critical0 High0 Medium1 Low0 Info1	The audit revealed no critical or high-risk vulnerabilities, with the single medium-severity front-running issue already resolved, indicating the YO Protocol's core security posture is solid with only minor non-critical suggestions remaining.
Offbeat Security15-01-2025	Critical0 High0 Medium0 Low5 Info1	The audit found only low and informational severity issues with no critical or high vulnerabilities, indicating a relatively secure implementation though some edge cases around fee calculations and MEV resistance require ongoing attention.
Hunter Security21-01-2025	Critical0 High0 Medium0 Low5 Info6	The audit found no high or medium severity vulnerabilities, only low-risk and informational issues, indicating the protocol's core security is solid but requires minor refinements for compliance and edge cases.
Spearbit29-05-2025	Critical0 High0 Medium0 Low9 Info6	The audit found only low-risk and informational issues with several already addressed, indicating the YO Protocol core contracts have no critical security flaws in the reviewed scope.
Paladin21-11-2025	Critical0 High0 Medium7 Low10 Info19	The audit revealed no critical or high-severity vulnerabilities, with moderate findings primarily related to governance privileges and edge-case handling that were acknowledged or resolved by the team before deployment.
Zellic17-02-2026 - 23-02-2026	Critical0 High0 Medium0 Low5 Info1	Zellic's audit found no critical or high-severity vulnerabilities, with all identified issues being low-impact or informational in nature, indicating a generally secure implementation of the YO protocol's Solana components.
Accretion13-04-2026	Critical0 High0 Medium2 Low8 Info5	The audit found no critical or high-severity vulnerabilities, with the identified medium and low issues either fixed or acknowledged as acceptable design choices, indicating the protocol's core security architecture is sound for deployment.
Paladin Blockchain Security21-11-2025	Critical0 High0 Medium0 Low10 Info19	The audit revealed no critical or high severity issues, with all findings being governance, low, or informational severity, and the team acknowledged all recommendations. The protocol's security posture appears acceptable given the absence of severe vulnerabilities and the team's responsiveness to audit feedback.
Offbeat Security15-01-2025	Critical0 High0 Medium0 Low5 Info1	The audit found only low-severity issues with several already fixed, indicating the YoProtocol vault implementation has no critical security flaws but requires careful attention to fee calculations and operator trust assumptions.
Aether Labs23-10-2025	Critical0 High0 Medium0 Low0 Info1	The audit found no security vulnerabilities in the YO Protocol's YoSecondaryVault contract, with only minor informational suggestions that were already resolved by the team.
Aether Labs20-08-2025	Critical0 High0 Medium1 Low0 Info1	The audit found one medium-severity vulnerability that was resolved, with remaining issues being informational suggestions for minor improvements, indicating generally secure code with appropriate attention to security considerations.
Aetheryc01-12-2025	Critical0 High0 Medium1 Low1 Info1	The audit found no critical or high-risk vulnerabilities, with only one medium and one low severity issue that were both resolved, indicating the protocol's core contracts are relatively secure within the reviewed scope.
Hunter Security21-01-2025	Critical0 High0 Medium0 Low5 Info6	The audit found no high or medium severity issues, with only low-risk and informational findings, most of which were resolved or acknowledged by the team. While the absence of critical vulnerabilities is positive, users should note the acknowledged low-risk issues related to EIP4626 compliance and withdrawal mechanics.
Spearbit29-05-2025	Critical0 High0 Medium0 Low9 Info6	The audit found no critical or high severity issues, identifying only low-risk and informational findings, with several already fixed and others acknowledged by the YO team as acceptable given existing operational safeguards like private RPC usage.

Backers

YO Labs raised a $10 million Series A round in December 2025 led by Foundation Capital, with participation from Coinbase Ventures, Scribble Ventures, and Launchpad Capital. This brings total funding to $24 million, including a previous seed round led by Paradigm. The protocol is also backed/supported by Haun, Hackvc, Solana, Polygon, and Circle as shown on the official website.

Legal

Legal form

Company (not explicitly specified; "YO Apps" operates services, "YO Network Ltd." mentioned for airdrops)

Registration jurisdiction

Panama (YO Apps headquarters per Privacy Policy); Delaware, USA (YO Network Ltd. jurisdiction per Airdrop Terms)

Status and notes

Services operated by YO Apps, headquartered in Panama (Terms governed by Panama law, Privacy Policy states Panama headquarters). Token airdrops organized by YO Network Ltd., governed by Delaware law. No imprint or explicit legal entity form disclosed. Terms last updated Jan 29, 2026; Privacy Policy Feb 24, 2026.