1 of 61

UMA Protocol

Welcome to UMA

A decentralized truth machine

An optimistic oracle (OO) that can record any verifiable truth or data onto a blockchain 🔮

UMA is an optimistic oracle and dispute arbitration system that securely allows for arbitrary types of data to be brought onchain. UMA’s oracle system provides verified onchain data for projects including:

Crosschain bridge
Prediction markets
Insurance protocols
Custom derivatives

UMA's optimistic oracle (OO) is designed to be modular and extensible with focus on building real-world use cases. Two main versions of the optimistic oracle (OO) are currently live: OOv2 and OOv3. Choosing the right one depends on your use case.

Core Concepts

Learn the fundamentals of UMA's optimistic oracle.

Correct Oracle for Your Use Case

UMA offers OOv2 and OOv3. Based on your idea and product, let's learn which one fits your use case best:

OOv2

OOv3

We understand that your product needs can be complex and would require a larger discussion on which optimistic oracle version to use. Feel free to reach out to us and get help.

Developer Quickstart

Having decided the correct optimistic oracle for your use case, let's now dive deeper into how you can ship apps powered by verifiable onchain truth using UMA's optimistic oracle.

OOv2 prioritizes protocols that need third-parties to propose answers to data requests.

Here are some app guides to help you build on UMA OOv2:

OOv3 prioritizes protocols that simply needs asserted data to be verified.

Here are some app guides to help you build on UMA OOv3:

Community

The UMA token secures UMA’s optimistic oracle through decentralized governance and economic guarantees against corruption. Token holders vote on upgrades, price requests, and disputes, earning rewards for honest participation.

UMA Improvement Proposals (UMIPs) are design documents used to propose changes to the UMA ecosystem. They are an important part of UMA's governance processes.

The UMA DAO accepts proposals for onchain actions that require tokenholders approval. An example would be a request for funding from the UMA treasury.

Resources and Support

We request all community members and developers to and gain instant help on any issues they face while voting or submitting proposals to UMA.

You can .

The security of our protocol is extremely crucial. If you notice any bugs in the protocol, . You can also find details of our .

What's New!

Keep up with the latest updates to UMA’s Optimistic Oracle. This changelog covers new features, improvements, and important changes for developers and integrators.

May 8, 2025

Showing Polymarket Clarifications in the Voter dApp

We’ve updated the voter dApp to show Polymarket clarifications right within the dApp to ensure that all UMA voters have access to the same critical information before voting on disputes.

Developers

Optimistic Oracle v2

This section showcases different design patterns for building contracts that integrate with the UMA Optimistic Oracle (OO). These include:

A simple deposit box to showcase the basic OO request lifecycle.
An event based prediction market. In this example, settlement requests are submitted at the time of contract deployment, and the OO proposer network is used as a decentralized keeper service that identifies when settlement events happen and propose the outcomes.
An , where an integrating contract handles proposals and state management, and only uses the OO when proposal verification is needed or a dispute is filed.

Using Blacklisting Tokens as Currency

Using a token that allows backlisting (e.g. USDC) as your currency opens up a griefing vector that integrators should be aware of.

The and functions allow the caller to set any address as the proposer and disputer that will receive payouts if their proposal/dispute is correct upon settlement. If a bad actor calls both and and specifies a blacklisted address for repayment, the function will revert and cause the request to be frozen unless the address is unblacklisted. This costs the malicious user 2 bonds and does not result in any gain, but freezing the request could cause issues for the integrator.

To avoid this, integrations that use tokens with blacklisting functionality should ensure that their admins can call a function that ignores the frozen request and creates a new OOV2 request. In this way they can prevent a frozen request from having any negative consequences to their protocol.

ManagedOptimisticOracleV2

The ManagedOptimisticOracleV2 contract is modified version of the OptimisticOracleV2 intended to be deployed for a single integration. It allows the integration to designate a request manager address that can set a default proposer whitelist and easily manage an existing request's bond size, liveness and proposer whitelist before the request has been proposed.

Proposing via the Oracle Dapp

Viewing, proposing and disputing ManagedOptimisticOracleV2 requests on the Oracle Dapp is the same as other OptimisticOracleV2 requests except for the following differences:

If your connected address is not on the request's proposer whitelist, the propose button on the request's sidebar will be disabled.

The request's proposer whitelist is displayed under the "More Information" heading at the bottom of the request sidebar.

Proposing Programmatically

Proposing and disputing ManagedOptimisticOracleV2 requests is largely the same as OptimisticOracleV2 requests with the following differences:

Adding the ManagedOptimisticOracleV2 Addresses

Programmatic proposers and disputers will be used to listening for OptimisticOracleV2 events and sending proposing and disputing transactions to these addresses. To add support to new ManagedOptimisticOracleV2 deployments, programmatic proposers and disputers will have to add these new deployment addresses to their bot configs.

Note: the first ManagedOptimisticOracleV2 deployment is managed by Polymarket and can be found .

Default Proposer Whitelist

Risk Labs manages the default proposer whitelist for Polymarket's ManagedOptimisticOracleV2 contract. The current whitelist can be viewed and is subject to updates and changes in guidelines. Polymarket, as the request manager for the contract, may also change an unproposed request’s proposer whitelist at any time.

Current Proposer Whitelist Criteria

Proposer addresses must meet the two below criteria over the last 6 months:

5 or more Polymarket proposals on OptimisticOracleV2 or ManagedOptimisticOracleV2

Optimistic Oracle v3

This section showcases different design patterns for building contracts that integrate with the UMA Optimistic Oracle v3. These include:

A showcasing the simplest possible OOv3 integration contract.
Building example contracts:

ASSERT_TRUTH Deprecation

As of December 8th, 2025. is the intended default identifier to be used with OOV3. The original identifier will be deprecated as of December 15, 2025. These identifiers have teh same specifications and the change is only to break support for deprecated projects.

Please note: after these changes do not use the following OOV3 functions:

the assertTruthWithDefaults function will always revert as it hardcodes in the ASSERT_TRUTH identifier
the defaultIdentifier public constant variable will return the deprecated ASSERT_TRUTH identifier

Using Blacklisting Tokens as Currency

Using a token that allows backlisting (e.g. USDC) as your assertTruth currency opens up a griefing vector that integrators should be aware of.

The assertTruth and disputeAssertion functions allow the caller to set any address as the asserter and disputer that will receive payouts if their assertion/dispute is correct upon settlement. If a bad actor calls these functions and specifies a blacklisted address for repayment, the settle function will revert and cause the request to be frozen unless the address is unblacklisted. This costs malicious users their bonds and does not result in any gain, but freezing the assertion could cause issues for the integrator.

Integrations that use tokens with blacklisting functionality should ensure that they have a way to manage frozen assertions (e.g. an admin function that can ignore a frozen assertion) without negatively affecting their integration.

oSnap

Support for oSnap will be deprecated on December 15th, 2025. After this date, oSnap will not be able to execute transactions from your DAO’s Safe treasury.

oSnap integrations should take the following steps to prepare:

Ensure their Safe signers are prepared to sign and execute any necessary DAO transactions
Disable oSnap on all DAO treasuries by following these steps: https://docs.uma.xyz/developers/osnap/disabling-osnap

Disabling oSnap

Steps to remove oSnap from your DAO Snapshot space and Safe treasury

Requirements:

The below steps propose a Safe transaction to disable oSnap. Transactions can only be proposed to a Safe by that Safe's Signers or Proposers. You can view these roles on your Safe's settings page.
Executing the proposed Safe transaction requires your minimum number of Signers to sign the transaction and one Signer to execute the transaction.

Steps:

oSnap Proposal Verification

oSnap Proposal Verification with UMA's Optimistic Oracle

Verifying Proposals

After transactions have been requested for execution, the challenge period begins. The challenge period length is set by the oSnap Safe module advanced settings. Invalid requests must be disputed within the challenge period. oSnap requests can be reviewed in the 's Verify tab.

After selecting a request, a sidebar will show additional request details including the bond amount, when the challenge period ends, a dispute button (when a wallet is connected), a link to the corresponding Snapshot proposal, the oSnap rules that the request should be reviewed against (including minimum quorum and voting period for the Snapshot proposal), and links to relevant block explorer pages.

Setting Custom Bond and Liveness Parameters

Overview of Setting Customer Bond and Liveness Parameter in UMA's Optimistic Oracle

Every request to UMA's Optimistic Oracle includes bond and liveness settings that specify the size of the bond that proposers (and disputers) are required to post, the token used for bonding, and the liveness window, which is the challenge period during which a proposal can be challenged.

The minimum bond is the same as final fee for Optimistic Oracle V2 (OOV2) or can be queried by calling getMinimumBond(token) for Optimistic Oracle V3 (OOV3). The default liveness window is two hours. For many cases, you may want to customize these values. The primary reason to increase the bond size or challenge window is to increase your security for complex requests or requests that could move large amounts of money.

How to think about proposer and disputer bonds

In most cases, you will want to set a bond higher than the minimum. The reason for this is that the bond provides a financial incentive for disputers to dispute invalid proposals. Disputers receive half of the proposer bond in the case of a successful dispute in the OOV3. For the OOV2, it's half of the excess above the final fee.

The part of the bond that doesn't go to the disputer in a successful dispute goes to the UMA Store contract. The reason the disputer does not get the full amount is to prevent a malicious proposer from making a bad proposal and then front-running an honest disputer to dispute themselves if they get caught.

Example bond payouts (OOV3)

As an example, imagine an application that requires a 10,000 USDC bond to assert a claim via OOV3.

To make an assertion, a proposer must post a 10,000 USDC bond, which they will get back after the liveness window if the assertion is not disputed. To make a dispute, a disputer must also post a 10,000 USDC bond.

If the disputer wins, they receive 15,000 USDC (10,000 USDC disputer bond + 5,000 USDC from the excess proposer bond) and the Store receives 5,000 USDC.

If the proposer wins, they receive 15,000 USDC (10,000 USDC proposer bond + 5,000 USDC from the disputer bond) and the Store receives 5,000 USDC (half of the disputer bond).

Higher or lower bonds?

If data received from the oracle could potentially move large amounts of value, you may want to set a higher bond to make it more costly for an attacker to attempt to steal funds through a false proposal. (Remember that the proposer will lose their entire bond if they are disputed and found to be incorrect.)

The tradeoff to setting a higher bond is that it may be more difficult to run a project that requires frequent proposals, since good proposers will have funds locked up for at least the length of the challenge window. Another tradeoff is that a very high bond may make it difficult for disputers to post bonds to challenge bad proposals. Remember also that disputers will lose their bond if they are incorrect, so the disputer has a capital cost and a risk of loss.

Before launching your contract, you should think about who you expect to be proposers and disputers, whether they have adequate access to capital, how much value the oracle is securing, how many requests you expect to make in a given day, and whether you should add a proposer reward (to incentivize independent proposers to take on the capital cost and risk of proposing answers to your requests).

There are no exact answers to how high or low your bond should be, although it is almost always a good idea to set a bond that is larger than the final fee so that disputers have an incentive to dispute bad proposals.

How to think about liveness

The liveness period is the challenge window where disputers can dispute a proposal, and is another knob you can turn to increase security (while accepting UX trade-offs).

A typical challenge period is two hours, which is usually plenty of time for disputers to recognize and dispute bad proposals. In some cases, you may want to increase the length of the challenge period. A classic example is an insurance contract, since insurance contracts usually have these qualities:

Large amounts of value are at stake.
Payouts are rare.
Proposals and disputes require a greater amount of thought and consideration.
Payouts are not very time sensitive, and a long delay (even a day or more) to allow proposers and disputers to think through the situation will not seriously inconvenience users.

You may want to consider a two-hour challenge window in these situations:

Requests happen frequently and proposers and disputers will need to reuse their capital regularly for bonding.
The dollar value secured by a request is lower.
The request is easy to reason about (and proposals and disputes could potentially be automated).
Users are sensitive to the settlement time.

At this time, it is generally not recommended to set a challenge window shorter than two hours.

If your users are very sensitive to settlement time, you may want to consider a smart contract architecture that allows a particular type of user to fully insure a piece of data that is acted on instantly, and then waiting to be reimbursed after the challenge window. Think of this user as a "designated waiter," who is probably compensated in some way.

A good example is the in the Across protocol. Users of the Across bridge receive their funds almost instantly, because a relayer sends them funds on the receiving chain and then submits for reimbursement from the protocol, and has to wait for several hours for their relay to be bundled with other relays, proposed, and then settled after the challenge window.

In this case, the UX for most users is excellent (nearly instant transfers) but the protocol is still secured by a long challenge window that is absorbed by a less time sensitive user type (the relayer) who is paid fees for their trouble.

Protocol Overview

How does UMA's Oracle work?

UMA's Optimistic Oracle allows contracts to quickly request and receive data information. The Optimistic Oracle acts as a generalized escalation game between contracts that initiate a price request and UMA's dispute resolution system known as the Data Verification Mechanism (DVM). Prices proposed by the Optimistic Oracle will not be sent to the DVM unless it is disputed.

If a dispute is raised, a request is sent to the DVM. All contracts built on UMA use the DVM as a backstop to resolve disputes. Disputes sent to the DVM will be resolved within a few days - after UMA tokenholders vote on what the correct outcome should have been.

Optimistic Oracle

The first part of UMA's oracle system is the Optimistic Oracle. This is a layer that is designed to optimistically verify pieces of data quickly. It is secured by the UMA DVM, because disputes can be escalated from the Optimistic Oracle layer to the DVM for dispute arbitration. The main lifecycle of the OO looks like this, and is detailed in the Asserter and Disputer rows within the diagram above.

Example Projects

Integrations use the Optimistic Oracle for various use cases.

For a complete list of all current integrations see:

Integrations

Description

Community

Governance

The UMA token is primarily a governance token used to contribute to UMA protocol decisions, such as voting on UMA Improvement Proposals (UMIPs), price requests, and disputes made to UMA's Data Verification Mechanism (DVM).

Governing the UMA ecosystem

The UMA token is an integral part of the UMA ecosystem as it guarantees the economic security of UMA smart contracts and its oracle system. The objective of the UMA token is to enable the optimistic oracle to remain secure utilizing a fully decentralized and permissionless method.

UMA's DVM is designed with an economic guarantee around the cost it would take to corrupt the oracle and the profit someone would receive. The DVM ensures the price to obtain 51% of UMA tokens is greater than the profit from corrupting the DVM, as measured by the collateral stored in UMA's financial contracts. This is achieved through an inflationary reward (currently 0.05% of total network token supply), distributed pro-rata by stake to voters who participate and vote correctly. As long as there is an honest majority, voters will vote correctly.

As the total value of collateral locked in UMA grows, the UMA token is required to increase in value to ensure the security of the DVM. To ensure this inequality holds, the DVM may charge fees to financial contracts which the DVM would use to buy UMA tokens.

Voting

The UMA voting process requires tokenholders to commit and reveal their votes in two separate stages. Each stage is open for 24 hours, so each voting period is 48 hours.

UMA Tokenholders can discuss their votes in the #voting channel of the before voting
UMA tokenholders can use the to vote on protocol decisions

Examples of governance proposals include:

Approving new and
Price requests and disputes
Upgrading the core DVM protocol and / or modify DVM parameters
Registering and de-registering contract templates

The UMIP Process

UMA Improvement Proposals (UMIPs) are design documents used to propose changes to the UMA ecosystem. UMIPs are intended to be the primary mechanism for proposing new features, collecting community input on an issue, and for documenting the design decisions that have gone into the UMA protocol.

UMIPs are a convenient way to track the progress of an implementation. Examples of common UMIPS include adding a new price identifier or collateral currency to be supported by the DVM. UMIPs are presented to UMA tokenholders for voting through the voting dapp to determine whether they will be accepted or rejected.

UMIPs need to provide a concise technical specification of the feature and a rationale for the feature. They are modeled after EIPs and ZEIPs. See here for an EIP template and ZEIP template.

DAO Proposals

The UMA DAO accepts proposals for on-chain actions that require tokenholders approval. An example would be a request for funding from the UMA treasury. The steps to complete a proposal:

Step 1: Post to Discourse

The first step is making a post in the UMA discourse under non-technical UMIPs. The post should outline the key components of a proposal and give the community a chance to submit feedback and recommend changes.

An example submission is Polymarket's Liquidity Mining Program.

Step 2: Snapshot Vote

When the proposal appears ready, a Snapshot vote can be created by the proposer with a 5 day close. Should it receive majority support at the end of 5 days, it will then pass to snapshot for an indicative vote prior to being put to an on-chain vote.

Proposals that require movement of treasury funds require a 4,000 UMA bond to be posted which is returned if the proposal is successful in an on-chain vote of tokenholders.

RiskLabs, the foundation which established UMA, has indicated its willingness to handle the on-chain proposal and cover the bond payment for proposals which attract majority support on a snapshot poll of tokenholders.

Here is the snapshot for .

Step 3: On-chain Vote

After a Snapshot vote has successfully passed, an on-chain vote is held to transfer the funds. If the vote is successful, the funds are transferred to the recipient wallet address.

Using UMA

Voting Walkthrough

How to stake tokens, vote, and claim rewards

This tutorial describes how to vote using the . For context, each voting period is 48hrs. Voting takes 3 steps:

Commit Vote: the first 24hrs of a voting period allows you to encrypt and commit your vote
Reveal vote: the second 24hrs of a voting period allows you to decrypt and reveal your vote. Votes are tallied by a DVM smart contract at the end of the reveal period.

Voter Guide

Voting best practices and warnings

Read through the vote Description under the Details tab. Carefully review how the vote should resolve and if provided, the timing of when the request can resolve and any listed sources.
Review the Timestamp under the Details tab. This is the point in time at which the vote should be evaluated.
The vote Discussion tabs lists comments from the UMA Discord with arguments, resources, and suggested votes that may be helpful. However, some commenters may try to influence the vote for their own profit. Always independently verify any claims before relying on them.

Voting Gas Rebates

Risk Labs currently provides gas rebates for voters who have staked 1000 or more UMA to encourage more community members to participate in securing the Optimistic Oracle.

Rebates cover the gas cost for commit and reveal transactions and are denominated in ETH.
Voters must have at least 1000 UMA staked at the start of the commit period for that voting period's commit and reveal transactions to be rebated.
Commited votes must be revealed to be rebated.
If a voter commits more than once on a dispute, only the first commit will be rebated.
If a delegate address is used to vote, the rebate will be sent to the delegate address.
Rebates are calculated for one calendar month and are sent out within the first half of the following month. Announcements are made in the UMA Discord at the time each rebate is sent out.

Discord Summaries

LLM generated Discord discussion summaries warnings and information

The Voterdapp contains a "Discussion Summary" tab with an LLM summary of Discord comments on the vote. The summary removes duplicate arguments across all comments to give voters an overview of all arguments which is useful for long or spammed comment threads. The summary does not fact check comments, add additional arguments, or give voting recommendations.

Voters should always verify all arguments included in the summaries with their own research. The raw comments are also provided in the "Discord Comments" tab so voters can review them against the summary in case of LLM error.

Proposing Oracle Data

This tutorial describes how to propose answers to data requests. The data could be anything from token prices, to who won a basketball game, to whether an optimistic governance action is valid.

Step 1: Go to the Optimistic Oracle dApp, if you are answering requests on a live network like Ethereum, Optimism, or Polygon, or go to the Testnet dApp if you are answering requests (probably your own) on Goerli.

Step 2: Locate requests under the Requests tab for outstanding requests.

Step 3: Click on the request you are interested in proposing data for.

Step 4: Click the 'Connect wallet' button in the top right corner and go through the steps to connect your wallet. Confirm you are on the same network as the data request.

Step 5: Before proposing, confirm the details of the request and ancillary data to ensure you are proposing accurate data. You may also want to check the instructions in the for the identifier.

Step 6: Once you are sure of the proposed value and connected to your wallet, input the value and click the 'Submit Proposal' button.

Step 7: Confirm the transaction details through your wallet provider. After confirming, the proposal will be sent!

Disputing Oracle Data

Go to the , if you are disputing proposals on a live network like Ethereum, Optimism, or Polygon, or go to the if you are disputing test data on Görli. Disputes will be resolved by the if you are on a live network, or by a mock oracle if you are on Görli (see Resolving Disputes).
Locate proposals under the Proposals tab for outstanding proposals that are within the challenge window and can be disputed.
Click on the proposal you want to dispute.

Resolving Disputes

If the dispute is on a live network, it will be resolved by the DVM on Ethereum, and the results returned within 48-72 hours (depending on when the dispute was raised during the DVM voting cycle).

If you are testing the dispute flow on Görli, you will need to manually resolve the dispute through the Mock Oracle. This contract stands in for the DVM on Görli and allows you to manually return your own values for testing purposes.

Go to the Mock Oracle contract on Görli Etherscan.
Click 'Write Contract.'
Click 'Connect to Web3' to connect your wallet.
Click 'OK' on the pop-up that warns you that writing to contracts on Etherscan is a beta test feature.
Connect through your wallet interface, and switch networks to Görli if necessary.
Click pushPrice to see the parameters you will need to enter.
Enter the original request's identifier, time, and ancillaryData, and enter the value you want to return for price.
Click 'Write' and submit the transaction.
Depending on how the contract you are testing was written, you may need to call settleAndGetPrice from your contract to the Optimistic Oracle contract to get the value returned from the mock oracle, or you may be able to call settle on the Optimistic Oracle and have your contract automatically receive and handle the return value with a priceSettled callback function.

Verification Guide

Verification System

Human research and logic to secure valid Oracle requests

Prerequisites

Before getting into the specifics of how to verify proposals from the Optimistic Oracle, please make sure to go through the following resources to understand how UMA works:

Resources

Approved Price Identifiers

This table includes identifiers that could be useful for new contracts and are likely to be encountered by proposers, disputers, and voters. It does not include identifiers that have been deprecated, identifiers that have fallen out of use, or specific token pairs.

If you need an identifier that is not included in this list, you can for approval. If a price request is made with an identifier that is not on this table, please refer to the canonical on GitHub. The absence of an identifier from this table does not necessarily mean the identifier is not approved, it just means it is not recommended for new contracts.

If you want to use an approved identifier that is not on this list, let us know and we can add the identifier back to this table for easier voter/disputer reference.

Subgraphs

This section explains the UMA subgraph and how to interact with it. The UMA subgraph indexes data from UMA contracts over time. It organizes data about tokenholders, contracts, DVM requests, voting, and more. The subgraph updates for each UMA contract interaction. The subgraph runs on protocol’s hosted service and can be openly queried.

UMA has a GraphQL API Endpoint hosted by called a subgraph for indexing and organizing data from the smart contracts. The schema of GraphQL elements available is defined in .

Ethereum Mainnet

Unsupported Contracts

Risk Labs/UMA protocol no longer actively supports or improves:

These contracts are open-source code, and anyone is free to use, improve, or fork the code. However note that for these contracts to be safe, it requires a robust system of well capitalized off-chain watchers (liquidator & disputer bots) to continually check that positions are appropriately collateralized, or that positions are not being liquidated unfairly. Anyone using this code in production must ensure that there are well-capitalized liquidators and disputers running at all times; failure to do so could result in a loss of all locked funds. Risk Labs does not and will not run liquidators for these contracts, nor does it give any security assurances about any EMP or Perp contracts. As always, UMA protocol and Risk Labs will continue to support proposed addition or request of price identifiers for general use including within EMP/Perp contracts.

Additional Resources

Additional tutorials and resources about UMA that are not featured on this docs site

Internal Learning Sessions

Glossary

Optimistic Oracle

The "Optimistic Oracle" (OO) allows contracts to quickly request and receive price information. Unlike mechanically restrictive price feed oracles, an optimistic oracle can serve any arbitrary data on-chain.

DVM

The “Data Verification Mechanism” (DVM) is the name of the oracle service provided by UMA. The DVM does not provide an on-chain price feed. Instead, it is only used to resolve disputes of liquidations and to settle synthetic token contracts upon expiration.

Parameters of a Long Short Pair (LSP) smart contract:

Financial Product Library (FPL)

The financial product libraries are used to transform the value returned by the price identifier into a final settlement value. Financial product libraries can be applied to create different types of financial contracts and payout functions.

Refer to for a list of deployed financial product libraries for each network. If your desired financial product library is not already deployed, refer for instructions on deploying and verifying your own financial product library contract.

collateralPerPair

The collateralPerPair parameter determines the amount of collateral required to mint each pair of long and short tokens.

Example: If a contract uses WETH as collateral and the collateralPerPair parameter is set to 0.25 on deployment, each long and short token that is minted would require 0.25 WETH as collateral.

expiryPercentLong

ExpiryPercentLong is used to determine the redemption rate between long and short tokens. ExpiryPercentLong is a number between 0 and 1, where 0 assigns all collateral to the short tokens and 1 assigns all collateral to the long tokens.

UMA Product Types:

Range Tokens

Range tokens enable a DAO to use its native token as collateral to borrow funds. At maturity, if the debt is not paid, the range token holder is instead compensated with an amount of the collateral (the native token) using the settlement price of the native token to determine the number of tokens. This is similar to a tokenized convertible debt structure.

Success Tokens

Success tokens offer an alternative way for DAOs to diversify their treasury and sell tokens to investors in an incentive-aligned way. Success tokens are two financial products wrapped into one token: a set amount of a project token which is combined with a covered call option on that token backed by a set amount of the same token.

KPI Options

Key Performance Indicator (KPI) Options are synthetic tokens that will pay out more rewards if a project’s KPI reaches predetermined targets before a given expiry date. Every KPI Option holder has an incentive to improve that KPI because their option will be worth more. This is intended to align individual token holder interests with the collective interests of the protocol.

Polymarket

How to verify Polymarket Proposals

What is the YES_OR_NO_QUERY?

The YES_OR_NO_QUERY (UMIP can be read here) is a price identifier intended for plaintext binary questions. Requesters encode their questions in ancillary data. For a full overview of how ancillary data is formatted, refer here.

The YES_OR_NO_QUERY is most typically used by Polymarket today to resolve the outcome of information markets. This can come in the form of asking for the outcome of sports games, a crypto or nft price at a specific point in time or world events among many other things.

Note that this price identifier is often in the form of YES or NO, but could also be in the form of THIS or THAT - ie “did the Lakers or Clippers win the game last night” can work even though it is not really a YES or NO question. The example used in the rest of this document will illustrate how this can be done.

Components of Ancillary Data

From the UMIP:

When converted from bytes to UTF-8, the ancillary data should be a dictionary object containing q (question), p1, p2, p3 and p4 keys and values. p4 is optional and will only apply in certain situations.

Example:

q: title: French Open Final: Djokovic vs. Ruud, description: This market will resolve to "Djokovic" if Novak Djokovic wins the final, or to "Ruud" if Casper Ruud wins the final. res_data: p1: 0, p2: 1, p3: 0.5. Where p1 corresponds to Ruud, p2 to Djokovic, p3 to unknown/50-50,initializer:91430cad2d3975766499717fa0d66a78d814e5c5

The UMIP goes on to note default values for p1, p2, p3 and p4.

p1 is usually used for “NO” values and defaults to `0` if not explicitly assigned
p2 is used for “YES” values and defaults to `1` if not explicitly assigned
p3 is for “UNKNOWN” or “CANNOT BE DETERMINED” and defaults to `0.5` if not explicitly assigned.
p4 is for situations where the question is expected to eventually be able to be evaluated, but cannot be at this time. An example would be if the outcome to a sports game was asked for, but the game has not yet happened or finished. This will be referred to as the “magic number” and defaults to the minimum int256 value or before e18 scaling: -57896044618658097711785492504343953926634992332820282019728.792003956564819968

Important Note: Polymarket currently uses OptimisticOracleV2. Therefore, the early request should only be used if a proposed value is proposed earlier than the expected event resolution time noted in ancillary data.

For additional context on when the magic number or p3 are expected to be returned, from the UMIP:

p4 is intended to be used for situations where it is not a given that the price request (or contract settlement) should even occur yet. An example of this would be the UMA event-based expiry LSP. A request to settle an event-based expiry LSP can be submitted at any time but if the question can not be resolved yet it should be ignored.

The default p4 value is the minimum int256 value and is used as a "magic number" to indicate that an event-based expiry request is invalid and the contract should continue as normal. For example, if the question is related to a basketball game on January 6th and a settlement request comes in on January 5th, the question can not be resolved yet, and voters should return the p4 value with the magic number to reject the settlement request. This value also moves the decimal place 18 spaces to the left, due to the default behavior of the UMA voting interface to scale input values to 18 decimals. After scaling by the interface, the value will be -57896044618658097711785492504343953926634992332820282019728792003956564819968

Notice that a p3 value would never be returned earlier than the final price request time noted in the ancillary data or the requesting contract's expiration timestamp and a p4 value would never be returned after that point. Consider an unresolvable question like, "Was the weather nice on January 6th, 2022?" If the question was asked on January 7th, 2022, you would return the p3 value. If the same question was asked on January 5th, 2022, you would return the p4 value.

Scaling values

Also noted in the UMIP is the fact that return values are not scaled when referred to in the UMIP or present in ancillary data.

This simply means that if the ancillary data contains “p2:1”, this should really be returned on-chain as 1e18 (not 1 wei). So 1000000000000000000 instead of 1.

All price identifier values are treated this way in the UMA system. The UMA voter dapp and Optimistic Oracle proposer interface both perform this scaling automatically for UMA voters or proposers.

Understanding Question Data

When verifying a proposal, it is important to assess the question data and arrive at their own conclusion for what the return value should be. Here is the example above in the oracle UI:

Key data in the proposal is the identifier, timestamp, and the ancillaryData.

The YES_OR_NO_QUERY identifier tells us which “pricing methodology” we should be referring to. This is best understood by reading the corresponding UMIP. For all price identifiers, the UMIP can be looked up by price identifier name.

The proposed time tells us the timestamp a value was proposed and therefore should be evaluated.

The Additional Text Data above represents the ancillary data and contains the plaintext version of the binary question that a proposer should be evaluating. It is important to read the full text data as it could also contain pricing specifications or data sources that should be used.

In the example, I can see that the question is asking if Novak Djokovic or Casper Ruud wins the French Open Final. It does not specify a data source so I can use a wide array of publicly available information to determine what I think the correct answer should be. Referring to ESPN scores:

I see that Djokovic won and I should continue to read the ancillary data to determine which return value should be used in this scenario.

Ancillary data question:

This market will resolve to "Djokovic" if Novak Djokovic wins the final, or to "Ruud" if Casper Ruud wins the final.

Resolution key:

res_data: p1: 0, p2: 1, p3: 0.5. Where p1 corresponds to Ruud, p2 to Djokovic, p3 to unknown/50-50

Since Djokovic won and p2 corresponds to 1, the proposed value should be p2:1.

Voters/proposers should typically evaluate all price requests independent of the party that has requested the data. But as a validation tool, the requestor can sometimes provide information that will help us verify the values that we are about to propose. As an example, this question was from .

This is one simple example of evaluating a YES_OR_NO_QUERY, but almost all questions follow the same format.

FAQs

General questions about UMA OO

General Questions

What is UMA?

UMA is a decentralized protocol designed to verify real-world information onchain in a trustless and secure manner. It consists of an optimistic oracle (OO) and a data verification mechanism (DVM) to help apps trustlessly verify real-world data using economic guarantees and community resolution.

Why does UMA matter?

Decentralized applications need trustworthy data to function. However, blockchains and smart contracts are inherently disconnected from real-world data. UMA bridges this gap by providing a scalable, secure, and cost-effective way to verify offchain (and onchain) information without relying on a centralized oracle.

How does UMA compare to Chainlink?

Chainlink streams data onchain at regular intervals. UMA is a request-based, dispute-driven system that verifies data only when needed, offering cost savings and support for broader data types.

What makes UMA different from other oracles?

Most oracles can only process purely objective data (e.g. price feeds). UMA is uniquely built to process and verify objective and intersubjective data (e.g. sports scores, election outcomes, cultural events, etc.).

UMA’s OO enables smart contracts to verify intersubjective claims such as “Did the Eagles win the Super Bowl?”, “Did Donald Trump say ‘Tesla’ in the debate last night?” or “Did xyz proposal pass?" All these claims are verified using a decentralized dispute resolution system backed by economic guarantees.

Additionally, rather than pushing data onchain by default, UMA uses an optimistic system where proposed data is assumed correct unless challenged. This design allows for fast verification through the OO, while still enabling secure dispute resolution through the DVM. If a dispute is raised, a decentralized network of UMA token stakers vote on the correct answer using offchain information. This layered structure is fast when there’s consensus and robust when there’s conflict, making UMA more flexible, cost-effective, and secure than traditional oracles.

Can UMA verify data about real-world events?

Yes. UMA can verify outcomes of real-world events like elections, sports results, weather outcomes, or legal rulings inasmuch as there's public, credible evidence that voters can independently verify.

Is UMA only for DeFi?

No. UMA can be used anywhere trustless verification is needed. While its roots are in DeFi, UMA supports use cases across prediction markets, DAO governance, crosschain interop, insurance, gaming, and much more.

How UMA Works

What is the optimistic oracle?

UMA’s is a decentralized verification protocol that lets anyone propose data onchain. If no one disputes the data within a predefined liveness period, it's considered verified. If disputed, the claim goes to a community vote via the DVM.

What is the DVM?

The is UMA’s dispute resolution system. It uses a commit-reveal voting process where UMA tokenholders vote on the correct answer to a disputed data request. Honest voters earn rewards; incorrect or absent voters are penalized.

How long does it take to verify data with UMA’s system?

If undisputed, data is verified after the liveness period, which is configurable and should be set based on your use case. Currently, integrations set their liveness period between 2 hours to 2 days. If undisputed, the data is verified after the liveness period. In the rare case of a dispute, the DVM vote resolves the case within 2-4 days.

What is the economic model behind UMA?

UMA relies on the principle of economic guarantees. Economic incentives are in place for every participant, from proposers, disputers, and voters—to ensure that everyone behaves honestly. This economic model ensures that corrupting the protocol (e.g., by submitting false data or voting dishonestly) is more expensive than the potential profit from doing so.

Can I trust UMA without understanding how it works?

Yes, UMA is designed to be trustless. The economic game theory ensures that data is highly likely to be accurate, even if you don’t personally verify each step.

oSnap and DAO Tooling

What is oSnap?

is UMA’s governance automation tool. It connects Snapshot votes with onchain execution, letting DAOs run offchain votes and trustlessly execute them onchain with UMA’s OO securing the results. Notable users include Across, Developer DAO, Nexus Mutual, and many more.

Does oSnap ensure the integrity of governance execution?

Yes. By anchoring Snapshot votes to UMA’s decentralized verification process, oSnap ensures that governance outcomes cannot be tampered with between voting and execution.

How does oSnap ensure secure governance execution?

oSnap posts a bond-backed proposal to the OO after a Snapshot vote concludes. If no one disputes the validity of the vote outcome, the proposal is executed onchain automatically. If disputed, the DVM resolves it through tokenholder voting.

UMA Participants (Proposers, Disputers, and Voters)

Proposing Data

What kinds of data can be proposed?

Any peice of information that can be verified with public evidence or consensus: asset prices, sporting event outcomes, governance results, hack confirmations, crosschain transfers, and more.

How do I propose data?

Use the to submit data to the OO. Under the “Propose” tab, you can view the full list of live queries and choose which one you want to propose an answer to. You’ll need to post a bond and specify details for the request. If undisputed during the liveness window, the data is finalized and published onchain.

What are the incentives for honest behavior as a proposer?

When a proposer is correct, they receive a posted financial reward. However, when a proposer is incorrect, they lose their bond. This encourages honest participation. Dishonest participation can result in financial losses.

What are the risks of participating as a proposer?

If you propose incorrectly or too early, you risk losing your bond.

Can I automate participation as a proposer?

Yes. Bots can be written to monitor for proposals based on predefined logic. UMA encourages automation for higher participation, but does not provide these services.

Disputing Data

How do I dispute incorrect data?

Submit a dispute through the within the liveness period. Under the “Verify” tab, you can view the full list of live proposals currently in their challenge period and choose which one you want to dispute. You'll need to post a bond and the request will escalate to the DVM for resolution.

What are the incentives for honest behavior as a disputer?

When a disputer is correct, they receive half of the proposer’s bond. However, when a disputer is incorrect, they lose their bond. This encourages honest participation. Dishonest participation can result in financial losses.

What are the risks of participating as a disputer?

If you dispute incorrectly, you risk losing your bond.

Can I automate participation as a disputer?

Yes. Bots can be written to monitor for proposals and auto-dispute based on predefined logic. UMA encourages automation for higher participation, but does not provide these services.

Voting

How do I vote on disputes?

To vote on disputes and earn rewards, you must stake $UMA in the . From there, you can commit and reveal your votes. You cal also view upcoming votes, your $UMA rewards, and voting history.

What is the minimum UMA token amount needed to vote?

There is no minimum. Your influence is proportional to the amount of tokens staked, but participation is open and inclusive.

You need to stake a minimum of 1000 $UMA to receive voting gas rebates.

How does DVM voting work?

DVM voting uses a commit-reveal system:

Commit: Submit a hashed vote (24 hour window).
Reveal: Later, reveal your vote to show your answer (24 hour window).

How do voting rewards work?

Rewards are paid in $UMA tokens. When you stake $UMA in the , you start earning rewards automatically. Your staked tokens receive a share of UMA emissions, displayed as an APY in the dApp (~17%).

Disputes come through the dApp in voting rounds, in which you are responsible for participating. If you vote incorrectly or miss a vote, you lose 0.1% of your staked $UMA per incorrect vote. If you vote accurately, you earn extra rewards in proportion to your staked $UMA. These rewards are collected from inaccurate and absent voters, and are redistributed to accurate voters at the end of each voting round.

Note: You must successfully commit and reveal your vote on time in order for your vote to count.

For more info: read our full .

How is the correct answer decided in UMA’s voting system

In UMA’s DVM, the correct vote is determined by majority consensus. During the voting process, $UMA token stakers participate in a shielded commit-reveal scheme to cast their votes on disputed assertions. After the reveal period, token-weighted votes are tallied, and if any single voting option reaches the consensus threshold (currently 65% of staked UMA), it is considered the correct outcome. This reflects the collective judgment of informed participants, incentivized to vote accurately through rewards and penalties.

Note that UMA uses the Schelling Point principle: the assumption that rational, well-informed voters will independently converge on the same answer. There’s no single source of truth, just the consensus of honest participants acting in their own best interest.

How much can I earn for voting correctly?

Voter APYs typically range between 16% and 21%, depending on emissions and participation. If you restake your rewards, you can capitalize on compound interest. Additionally, $UMA penalties from inaccurate and absent voters are redistributed as extra rewards to accurate voters at the end of each round.

What happens if I vote incorrectly?

Your staked $UMA tokens are slashed whenever you vote incorrectly. You lose approximately 0.1% of your staked amount of $UMA per vote.

What happens if I miss a vote?

Your staked $UMA tokens are slashed whenever you miss a vote. You lose approximately 0.1% of your staked amount of $UMA per vote

What is P4?

P4 is the voting option for when a proposal is submitted too early.

Many proposals get disputed for being too early. For example, someone may submit the Eagles as the winner of the Super Bowl five minutes before the game ends. Even if the Eagles end up winning, they weren’t the winners at the time the proposal was submitted, therefore, the proposal is too early. In these situations, you should vote P4.

Always make sure to check the proposal timestamp and take it into consideration when voting.

Learn more about P4 .

Voting gas is expensive. Do I get a refund?

Yes! As long as you are staking a minimum of 1000 $UMA, you will receive an ETH gas rebate at the end of each month paid in full, gwei for gwei. See more details .

Are there community discussions when voting on disputes?

Yes! You can find live discussions in the and in the in the #evidence-rationale channel.

What are the incentives for honest behavior as a voter?

Incorrect voters are slashed, losing 0.1% of their staked $UMA per incorrect vote. Correct voters receive the slashed $UMA as a reward (in addition to their emissions APY). Therefore voters are incentivized to vote with the majority. Since votes are committed in secret, voters cannot copy other voters, and instead vote for the best answer where other voters will congregate.

What prevents a consensus of stakers corrupting an oracle result?

Simply put, economic incentives. All voters have staked $UMA with a one week lock up. If they corrupt an oracle result, the value of their staked $UMA will fall drastically before the can unstake and sell. This aligns voters with the long-term success of UMA and the integrity of the Optimistic Oracle.

What are the risks of voting?

If you vote incorrectly or miss voting rounds, you lose approximately 0.1% of your staked amount of $UMA per vote.

Can I automate participation as a voter?

Yes. Bots can be written to cast votes based on predefined logic. UMA encourages automation for higher participation, but does not provide these services.

Technical Questions

What is intersubjective data

Intersubjective data is information that may not be purely objective, but is still publicly verifiable and widely agreed upon by informed observers. It’s the sweet spot between “hard facts” and “personal opinion.” Things like election outcomes, sports results, or whether a protocol got hacked fall into this category.

What is a liveness period, and how is it determined?

The liveness period, also known as the “challenge period”, is a window of time after a data proposal during which someone can raise a dispute. This duration is configurable and often depends on the use case’s sensitivity or urgency.

The most common liveness period ranges from 2 hours to 2 days. Many prediction markets, like Polymarket, use this configuration. Across Protocol also uses a 2-hour liveness period because it best suits its crosschain interop use case.

What chains does UMA support?

UMA is currently deployed and fully supported (including Oracle UI, DVM support, and oSnap functionality) on the following mainnets:

Ethereum Mainnet
Polygon Mainnet

Recent Optimistic Oracle Upgrades

What does UMIP-183 do, and why is it useful?

introduced the MULTIPLE_VALUES price identifier, allowing a single data request to return up to seven values. This is a major win for prediction markets, sports betting apps, and any protocol resolving multiple outcomes at once.

By batching outcomes into one transaction, protocols can:

Drastically reduce gas costs.

What is UMIP-185, and how does it improve performance?

allows proposers to submit hashed or offchain-referenced data instead of full ancillary strings. This reduces the size of onchain transactions, which:

Lowers gas fees.
Speeds up proposal submissions.

What is the “slow proposer penalty,” and why was it added?

To discourage latency in oracle activity, UMA introduced a penalty for proposers who wait until the end of the liveness window to submit data. This incentivizes faster responses and ensures that applications relying on the oracle don’t get bottlenecked by late proposals.

Faster proposers = faster oracle = better UX for users.

How do these improvements affect the developer experience?

All of these upgrades are designed to make UMA’s oracle more composable, efficient, and scalable. Whether you're resolving crosschain messages, prediction markets, or governance proposals, these tools help reduce cost and complexity while preserving trustlessness.

Security

How secure is UMA’s economic model?

UMA’s security comes from game theory, not just code. The protocol is designed so that honest behavior is always the most profitable strategy and dishonest actions are economically irrational.

At the core of this is UMA’s use of the Schelling Point principle: rational voters, acting independently, are incentivized to report the truth because they know others will too. Those who vote correctly earn rewards. Those who vote incorrectly or don’t vote at all are penalized via slashing.

For an attacker to corrupt UMA’s oracle, they’d need to acquire 51% of all UMA tokens, then convince a majority of that voting power to agree on a false outcome. Not only would this be prohibitively expensive, but it would also damage the value of the token they control.

This structure creates a powerful economic feedback loop:

How secure is the DVM?

To corrupt the DVM, an attacker would need to acquire 51% of all UMA tokens and convince a majority of voting power to support a dishonest resolution. This would be extremely costly, and would cost far more than the potential upside of submitting incorrect data.

What security audits has UMA undergone?

At UMA, we take security seriously. The protocol has undergone multiple audits by reputable firms. Notably, OpenZeppelin conducted a comprehensive audit of UMA's Across V2 contracts, providing insights and recommendations to enhance security. Additionally, UMA maintains a bug bounty program to encourage responsible disclosure of vulnerabilities. Detailed information about UMA's security audits and bug bounty program can be found in the.

How does UMA handle potential oracle manipulations or attacks?

UMA employs a combination of economic incentives and community consensus to mitigate the risk of oracle manipulation:

Participants proposing data are required to post bonds, which they forfeit if their data is successfully disputed. On the other hand, they earn rewards for proposing accurate data.
Disputers must also post bonds, which they forfeit if their dispute is deemed inaccurate by the DVM. On the other hand, they earn rewards for disputing inaccurate proposals.

Compatibility and Limitations

Are there any limitations on the types of data UMA can verify?

UMA's oracle is designed to verify any data that is publicly available and independently verifiable. In particular, the OO and DVM are best built to process objective and intersubjective data. This includes a wide range of data types, such as asset prices, event outcomes, and real-world occurrences.

However, the OO is not suitable for data that is purely subjective or lacks a clear, verifiable source. For instance, personal opinions or unverifiable claims fall outside the scope of what UMA can accurately verify.

Is UMA compatible with other oracle systems?

Yes, UMA is designed to be complementary to other oracle systems. It can function alongside traditional oracles, providing an additional layer of verification or serving as a fallback mechanism.

Operational Edge Cases

What happens if a vote in the DVM is inconclusive or tied?

In the rare event of an inconclusive or tied vote within the DVM, the dispute is rolled over into the next voting round.

A rolled vote happens when a dispute doesn’t get resolved in the current voting round and gets pushed to the next one. This only happens if the vote doesn’t meet two quorum thresholds: GAT and SPAT.

GAT (God Awful Threshold) is a fixed minimum amount of UMA that must vote for the result to count. In DVM 2.0, that number is 5 million UMA.

How does UMA handle network congestion or high gas periods?

UMA is built to handle network congestion by operating across multiple L2s like Arbitrum and Optimism, reducing gas fees. On top of that, upgrades like UMIP-185 improve efficiency by letting proposers use hashes or pointers instead of submitting full data onchain, cutting gas costs further. UMA also offers gas rebates for voters, so participation stays affordable even in high-fee environments.

Building and Integrating with UMA

What developer resources are available to get started?

Visit for integration guides, tutorials, contract templates, and walkthroughs. is also active for dev support.

How do I integrate UMA’s optimistic oracle into my project?

You can use UMA's OOV3 smart contracts to submit and verify data. Integration info and quick-start guides are available on UMA's .

Are there different versions of the optimistic oracle?

Yes. UMA’s OO is constantly being improved to evolve and serve in-demand use cases over time. Currently, there are two versions of the OO available:

OOV2: Implements the use of data requests. Integrations must submit data requests that can then be answered by third-party proposers. Rules must be included in the request to establish the specific parameters for proposers and disputers to follow.
OOV3

Which version of UMA’s optimistic oracle should I use?

The primary use cases for OOV2 include prediction markets, sports betting applications, and insurance protocols.

The primary use cases for OOV3 include crosschain infrastructure, content moderation, transaction verification, governance, and insurance protocols.

How customizable is the UMA oracle’s logic for unique applications?

Very. UMA was built with flexibility in mind. You can customize nearly every parameter of a request to fit your specific use case, including:

Question format: You decide what you're asking and how it's phrased.
Liveness period: Set how long others have to challenge your data.

Can I test UMA locally or on testnet?

Yes. UMA offers contracts on major Ethereum testnets. Developers can simulate oracle requests, disputes, bonding, and DVM voting in staging environments. Here is the full list of supported testnet chains:

Ethereum Sepolia
Arbitrum Sepolia

What are common use cases for UMA?

Prediction markets (e.g. Polymarket)
Crosschain bridges (e.g. Across Protocol)
DAO governance (e.g. oSnap with Nexus Mutual, Developer DAO)

Why would I use UMA instead of a traditional price feed oracle?

Price feed oracles can only handle one type of data: prices. UMA is built to handle any publicly verifiable information.

That’s why UMA is the go-to oracle for onchain applications such as prediction markets, crosschain interop protocols, IP ownership layers, and many more—because each of these rely on access to verified intersubjective data. Price feed oracles simply can’t provide that. UMA can.

Additionally, most traditional price feed oracles constantly push data onchain, even when it isn’t needed. This wastes gas and introduces attack vectors. UMA’s OO only verifies data when requested, making it more gas-efficient and censorship-resistant. It also supports any type of data, not just prices, allowing for use cases like governance execution, crosschain messages, and real-world event verification.

There’s also a major cost advantage. Setting up and maintaining a price feed on traditional oracles is expensive. It often requires upfront coordination, whitelisting, and ongoing fees. UMA is fully permissionless and free to use

How does Polymarket use UMA?

Polymarket leverages UMA's OOV2 to resolve the outcomes of its prediction markets in a decentralized and trustless manner. When Polymarket creates a prediction market, a data query is sent to the OO. Anyone can then propose the outcome to UMA's OO, which assumes the proposed result is correct unless challenged within a 48-hour predefined dispute window.

If a dispute arises, it is escalated to UMA's DVM, where $UMA token holders vote to determine the accurate outcome. This system allows Polymarket to handle a wide range of markets, including those based on natural language and intersubjective data, which traditional oracles cannot process.

How does Across use UMA?

Across is a that uses a unique variation of UMA’s OOV3 to verify crosschain Intents, which are statements of a user’s bridging transaction, before relayers are repaid. This gives Across security guarantees without needing to validate every transaction in real-time.

Governance

How is UMA governed?

UMA is governed by its community of $UMA tokenholders.

Major protocol upgrades, parameter changes, and funding decisions are proposed, discussed, and voted on by the UMA community, primarily through offchain Snapshot votes and confirmed onchain when needed.

Proposal discussions are hosted on .

How can I participate in UMA governance?

To participate, hold $UMA, stake it to vote, and take part in governance proposals through the and . Important proposals are discussed in the UMA Discord and forum before voting begins.

What kinds of decisions are made through governance?

Governance decisions include protocol upgrades, parameter changes (such as inflation rates or bond sizes), budget allocations, grants, and strategic initiatives for UMA’s growth and development.

How does UMA handle proposals to change protocol parameters?

Changes to UMA’s core protocol, such as inflation rates, contract upgrades, or bond sizes, are governed directly by $UMA tokenholders. Proposals are typically discussed in the community forum and Discord, then voted on through the , which uses the same secure commit-reveal process as oracle dispute resolution.

While Snapshot can be used for informal temperature checks, it is not where binding decisions happen. Final decisions are made through onchain voting via the DVM, ensuring that changes are trustlessly approved by the UMA community.

What is the difference between dispute resolutions and governance votes on the Voter Dapp?

Unlike dispute resolutions, voters who vote against the consensus on governance votes are not slashed. If a voter does not submit a vote on a governance vote, they are still slashed. This allows voters to vote their personal opinions without the economic disincentive of slashing.

What is the difference between protocol governance and oSnap execution?

Protocol governance refers to changing the UMA protocol itself (e.g. inflation rate, contract upgrades, etc.). oSnap is a tool built with the OO and used to execute DAO votes trustlessly. oSnap can be used by any DAO; the UMA DAO and many other notable DAOs currently uses oSnap.

What is the role of the DVM in UMA governance?

The DVM is the venue where all binding governance votes take place. It’s the same secure, commit-reveal voting system used to resolve oracle disputes, except instead of resolving data proposals, it’s used to approve or reject protocol upgrades, parameter changes, and funding decisions.

In UMA, the DVM is more than a dispute resolution system. It’s the foundation of onchain governance. Every major decision made by the DAO goes through the DVM, giving $UMA tokenholders full control over the protocol’s future.

Tokenomics

What is the $UMA token used for?

$UMA is the core utility and governance token of the protocol. It’s used to stake, vote, and secure the oracle. Tokenholders help verify data, resolve disputes, and steer the protocol’s direction by participating in governance. In short: UMA aligns incentives around truth.

The value of the $UMA token is directly tied to its role in maintaining honest oracle outcomes and decentralized governance.

What is the total supply and inflation schedule of the UMA token?

The supply of $UMA isn’t fixed. It’s dynamic and governed by the DAO. The protocol uses controlled inflation to incentivize participation and long-term security. The current inflation rate is set at 0.05% of the total token supply, distributed to active, correct voters in the DVM.

Learn more about the $UMA token supply .

How are new UMA tokens distributed?

Token emissions are controlled by governance. UMA emissions are used to provide staking rewards to stakers who vote on disputes to secure the protocol.

Where can I track UMA's token metrics?

The current supply of $UMA and emission rates are defined onchain and can be found .

Community and Ecosystem

How can I contribute to UMA beyond voting?

There are tons of ways to get involved! You can build integrations, write code, create content, improve the docs, join governance discussions, or just hang out in the and vibe with the community. Whether you're technical or not, there's space for you to contribute.

Are there developer grants available?

Yes. UMA offers grants to developers and teams building tools, integrations, or initiatives that advance the ecosystem. To apply, you’ll start by posting a proposal in the category of UMA’s governance forum. From there, the community will review and provide feedback.

If the proposal gains traction, it can proceed to a Snapshot vote, and if successful, be submitted onchain with help from Risk Labs or directly by the proposer. All grant proposals are evaluated based on their technical feasibility, ecosystem impact, and funding requirements. If you have any questions about our grant program, please reach out to us in our .

Yes. UMA offers grants to support developers and teams building tools, integrations, or infrastructure that strengthens the ecosystem.

To apply, start by posting your idea in the category in the UMA governance forum. The community will review and provide feedback. If your proposal gains traction, it can move to a Snapshot vote, and if approved, it’ll execute onchain with help from Risk Labs or directly by the proposer.

What community resources exist?

Here’s where you can plug into UMA’s community and stay up to date:

– Join conversations, ask questions, or just vibe.
– Home of governance discussions and funding proposals.

Sandboxed Oracle Environment

Only required for testing the dispute flow

Whenever the assertion is disputed on a production network this triggers DVM request to be resolved by UMA voters. This might be impractical to fully simulate this in a testing environment, hence, developers can use mocked oracle contract to resolve requests as they had been returned by DVM.

Interacting with Optimistic Oracle requires having whitelisted price identifier and bonding currency. In production networks these are approved by UMA token holders as part of governance voting. When testing, it might be easier for developers to use their own set of UMA ecosystem contracts where they have full control over such whitelisting process. Follow the written tutorial below or check out the video tutorial on Youtube.

Deploying sandboxed Oracle environment

A set of sandboxed UMA ecosystem contracts can be deployed using forge script from .

After cloning the repository make sure you have the latest Foundry version by running foundryup command (see more installation details on ). From the root of the repository install dependencies with:

All script parameters are controlled through environment variables that should be exported before running the script:

ETH_RPC_URL: URL of the RPC node to use for broadcasting deployment transactions on the desired test network.
MNEMONIC: Mnemonic of the account to use for deployment (derived account with 0 index will be used by default).
ETHERSCAN_API_KEY: API key for Etherscan, used for verifying deployed contracts.

Once all required environment variables are setup, deploy and verify the set of sandboxed UMA ecosystem contracts with:

At the top of the script output the addresses of the deployed contracts should be logged:

Finder: Used to locate other UMA ecosystem contract addresses. Deployment script will have added new Store, AddressWhitelist, IdentifierWhitelist, MockOracleAncillary and OptimisticOracleV3 implementations.
Store: Stores final fees of bonding currencies. The script will have set the final fee of default currency to half of provided minimum bond amount since Optimistic Oracle V3 calculates minimum bond twice the value of this final fee.

Resolving dispute requests

Whenever the assertion is disputed, Optimistic Oracle V3 calls requestPrice method on the Oracle that triggers DVM vote on mainnet. In the sandboxed environment this would resolve to MockOracleAncillary contract instead.

The disputed request is uniquely identified by its identifier, timestamp and ancillary data that should be referenced by the testing developer pushing resolved price to the mocked oracle. The MockOracleAncillary contract will emit PriceRequestAdded event with following parameters:

address indexed requester: Address of the calling contract (Optimistic Oracle V3 in the sandboxed setup).
bytes32 indexed identifier: Identifier referencing the rules on how the request should be resolved. By default Optimistic Oracle V3 uses ASSERT_TRUTH identifier unless the integrating contract provided other value.
uint256 time

Note that production voting contract on mainnet emits this differently and above PriceRequestAdded is provided only as a convenience for developers when interacting with the MockOracleAncillary contract in their testing environment.

MockOracleAncillary contract provides two alternative methods for testing developers to resolve request:

pushPrice(bytes32 identifier, uint256 time, bytes memory ancillaryData, int256 price) where request is referenced by its individual parameters.
pushPriceByRequestId(bytes32 requestId, int256 price) where request is referenced by the hashed value of its identifying parameters.

While testing developer can pass any int256 price value, Optimistic Oracle V3 can only interpret value of 1e18 to represent truthful assertion. Any other value would settle assertion as being false. Also note that MockOracleAncillary contract will only accept the first pushed price to resolve a given request.

Example dispute flow

As an illustration to the section above this example walks through resolving disputed assertion with cast tool from Foundry. This also requires jq being installed for parsing returned values.

Just for the sake of simplicity set MINIMUM_BOND environment variable to 0 when running forge script command as discussed in the . This would allow to skip minting and approving assertion/dispute bonds. Take a note of deployed contracts log and export Optimistic Oracle V3 address to OOV3_ADDRESS and MockOracleAncillary address to MOCK_ORACLE_ADDRESS environment variables.

Also to keep this simple perform all steps from the same address:

Start with generating test assertion and grab the resulting assertionId emitted by Optimistic Oracle V3 (corresponds to topic index 1 in the AssertionMade event):

Dispute the above assertion and grab the resulting requestId emitted by MockOracleAncillary (corresponds to topic index 3 in the PriceRequestAdded event):

Now resolve the disputed assertion as truthful by pushing 1e18 as price to MockOracleAncillary contract:

This allows us to settle the assertion at Optimistic Oracle V3:

Finally, you can verify that Optimistic Oracle V3 has correctly settled the assertion (this should return true):

Further sandbox configuration

The deployment script documented in the covers most common use cases and should be sufficient to test example contracts from the . Though, when developing your own integrating contracts it might be required to further configure the sandboxed oracle environment.

Whitelisting of bonding currencies

In case the integrating contract requires handling assertion bonds in multiple currencies all of them should be approved at the AddressWhitelist contract. On production this should go through UMA governance while in the sandboxed environment the deployer owns this contract and can call addToWhitelist method directly. Assuming the address of AddressWhitelist contract is exported to ADDRESS_WHITELIST and required bonding currency is exported to BONDING_CURRENCY environment variables, this can be done by:

In order to test the scenario on how the integrating contracts would behave if UMA governance removed support for a particular bonding currency, you can test this by calling removeFromWhitelist method on the AddressWhitelist contract:

Note that Optimistic Oracle V3 is caching whitelisted bonding currencies. Hence, before testing impact on the integrating contracts somebody should sync the contract cache (anyone has authority to do this):

Changing the final fee

In case the UMA governance was to change the configured final fee for a particular bonding currency this would also change the minimum assertion bond required by Optimistic Oracle V3. In order to test such impact on integrating contracts in the testing environment, the deployer would need to call setFinalFee on the Store contract (exported as STORE_ADDRESS). E.g. to set final fee to 1000e18, you would call:

Again, before testing impact on integrating contracts someone would need to sync new final fee at the Optimistic Oracle V3:

Whitelisting of identifiers

If the integrating contract plans to make assertions with multiple identifiers, the developer would need to add them to IdentifierWhitelist contract (exported as IDENTIFIER_ADDRESS) in the sandboxed environment, e.g. adding CUSTOM_IDENTIFIER:

In order to test the scenario on how the integrating contracts would behave if UMA governance removed support for a particular identifier, you can test this by calling removeSupportedIdentifier method on the IdentifierWhitelist contract:

Note that Optimistic Oracle V3 is caching whitelisted identifiers. Hence, before testing impact on the integrating contracts somebody should sync the contract cache (anyone has authority to do this):

Data Asserter

Using the Optimistic Oracle V3 to assert arbitrary off-chain data on-chain.

This section covers the Data Asserter contract, which is available in the Optimistic Oracle V3 quick-start repo. This tutorial shows an example of how to build an arbitrary data asserter contract, using the UMA Optimistic Oracle V3 (OOV3) contract. This enables you to assert to the correctness of some off-chain process and store the output on-chain. This tutorial acts as a starting point to show how the OOV3 can be flexibility used in a sample integration.

Data Asserter

This smart contract allows data providers to assert the correctness of a data point, within any arbitrary data set, and bring the result on-chain. This contract is designed to be maximally open ended, enabling any kind of data to be asserted. For example, and for illustrative purposes of this tutorial, we will assert weather data on-chain. Note, though, that this kind of assertion flow and the associated OOV3 integration could build a wide range of assertions with arbitrary complexity. For example you could use the same structure to bring on-chain complex data associated with Beacon chain validator set to build a Liquid staking derivative, enable complex off-chain computation with on-chain outputs or anything that has a defined deterministic input output relationship.

Anyone can assert a data point against the Data Asserter contract, with a known dataId and datapoint. Independent 3rd parties can then verify the correctness of this data against the dataId.

For our example we will be asserting the output of a very simple numerical computation: 69+420. This is meant to show the basic idea without overcomplicating the off-chain part. Note, though, that the dataId prop used here could represent any kind of unique data identifier (a row in a database table, a validator address or a complex structure used to associate any kind of data to a given value.

Development environment

This project uses as the Ethereum testing framework. You will also need to install Foundry, refer to if you don’t have it already.

You will also need git for cloning the repository, as well as bash shell and jq tool in order to parse transaction outputs when interacting with deployed contracts.

Clone the UMA and install the dependencies:

Contract implementation

The contract discussed in this tutorial can be found at dev-quickstart-oov3/src/DataAsserter.sol () within the repo.

Contract creation and initialization

To initialize the state variables of the contract, the constructor takes two parameters:

_defaultCurrency parameter in the constructor identifies the token used for bonds of data assertions. This token should be approved as whitelisted UMA collateral. Please check for production networks or call getWhitelist() on the contract for any of the test networks. Note that the deployed Optimistic Oracle V3 instance already has its defaultCurrency added to the whitelist, so it can also be used by the Data Asserter contract. Alternatively, you can approve a new token address with addToWhitelist method in the Address Whitelist contract if working in a sandboxed UMA environment.
_optimisticOracleV3

Asserting data

assertDataFor method allows any data provider to assert some value of data for the associated dataId. The caller sets the asserter as the address that will receive bonds at resolution of the data assertion (this could be their address as well).

Internally, this function pulls the associated assertion bond (global for all assertions within the DataAssertion contract) from the caller, makes an assertion call to the Optimistic Oracle V3 and stores the assertion within the contracts internal assertionsData mapping. Lastly, an event is emitted.

For the context of this example we will be considering the dataId simply as the URL that would be called to fetch the weather data from wttr.in and the data value as the result from this call. Both are bytes32 encoded.

The call to the Optimistic Oracle V3 looks as follows:

Lets break this down step by step:

First, the value for the claim filed is constructed to be a human readable string as the concatenation of a number of different data points. This is meant to be parsable by the validation network and enable both Humans and software verifiers alike to assess the correctness of the claim. Note that within the Optimistic Oracle V3 the claim field (this prop in this function call) is not stored on-chain; it is simply emitted and is used by off-chain actors to verify the correctness of the claim.
Next, the asserter field is passed in from this function call. This is who will receive the bonds back at resolution of the assertion, assuming the asserter was correct.

Resolving and subsequently fetching data assertions

Once data has been asserted, the act of verifying it is passed over to the Optimistic Oracle V3 and the associated network of data verifiers. Due to the presence of a bond (reward for catching invalid assertions), we can be confident that in real world someone would verify this assertion (if the bond is high enough, and the liveness is long enough we have high guarantees of this).

If the assertion passes the assertionLiveness without dispute then it can be settled. The data assertion contract showcases the OOV3's concept of assertionResolvedCallback which enables the OOV3 to settle downstream contracts that are dependent on the resolution of an assertion. Once an assertion is settleable (it has: a) passed liveness and b) not been disputed) anyone can call on the OOV3. This function acts to settle the assertion within the OO and call into the callback recipient, set during the assertDataFor function call.

Looking within the Data Asserter contract, we can see what happens when the assertionResolvedCallback is hit from the OOV3 on settlement:

This function effectively:

enforce the inbound caller is the OOV3. Else, revert
If the assertion was resolved as truthful (it would not be if it was disputed and the dispute proved to be correct) then:
- set the data assertion status to true,

Once settled, we can now call the getData function with the assertionId.This will return the data value and the accompanying resolution status (was it resolved truthfully, or not).

Disputing data assertions

If we want to dispute an asserted data point one must simply call the method on the OOV3. In here, you provide the associated assertionId (the same field that was returned when calling assertDataand the disputer address (the address that will receive the bonds back at the resolution of the dispute).

Tests and deployment

All the unit tests covering the functionality described above are available . To execute all of them, run:

Deployment

Before deploying and interacting with the contracts export the required environment variables. Note that there are a number of ways to interact with these contracts. The simplest setup is to fork Goerli testnet into a local development environment, using Anvil, and run the steps against the fork. To create an Anvil fork run the following:

Replacing xxx with your infura key. This will create a local fork of the Goerli testnet, running on 127.0.0.1:8545. It will also expose a test mnemonic that you can use which has pre-loaded Eth within the fork.

(Note: to set environment variables, as those listed below, use the export syntax in your shell. for example export ETH_RPC_URL=XXX

ETHERSCAN_API_KEY: your secret API key used for contract verification on Etherscan if deploying on a public network (not required if you want to do this against a local testnet).
ETH_RPC_URL: your RPC node used to interact with the selected network. For this tutorial it will be easiest to do this against the Goerli fork by setting ETH_RPC_URL=http://127.0.0.1:8545
MNEMONIC

Use cast command from Foundry to locate the address of Optimistic Oracle V3 and its default bonding token:

You should be able to see both of these values set in your env with echo $OOV3_ADDRESS and echo $DEFAULT_CURRENCY_ADDRESS

To deploy the Data Asserter contract, run forge create command.

(Note if you hit an error like Error accessing local wallet. Did you set a private key, mnemonic or keystore? then you might be hitting a foundry related issue that should be resolved by updating your foundry installation with foundryup.

Finally, we can verify the deployed (if deployed to a public network) contract with forge verify-contract:

Interacting with deployed contract

The following section provides instructions on how to interact with the deployed contract from the foundry cast tool, though one can also use it for guidance for interacting through another interface (e.g. Remix or Etherscan).

Initial setup

Export derivation index for the asserting user that will be needed when signing transactions:

Make sure the user address above have sufficient funding for the gas to execute the transactions.

Next, set up the bytes32 encoding for the dataId and data, as discussed in the section. The dataId field will be the simplest command that can be re-produced by independent verifiers. We use bc (arbitrary-precision arithmetic language and calculator) that should be available on most operating systems:

The data field will be the asserted output of the above bc command:

Note that at any point you can look at your env by running printenv within your console to see the things we've set up to this point.

Asserting the data point

Next, we will call the Data Asserter contract and assert the data point and data ID that we set within our environment. Note that on the Goerli testnet the default bond for the default currency is set to 0. This is done to somewhat simplify the interactions: you don't need to mint yourself any USDC and you don't need to approve the Data Asserter to pull it from your account. Clearly, this is different to how this would be structured in reality but for demonstration purposes it keeps thing easier.

What we are doing here is calling the assertDataFor(bytes32,bytes32,address)with the props DATA_ID, DATA and DATA_ASSERTER, that we set earlier. We are taking the output of the transaction and storing the transactionHash within the ASSERTION_TX variable.

We can fetch the associated assertionId from the DataAssertionResolved event that should be the last event in the assertion transaction. The emitted event has the structure:

We can fetch indexed props from cast by using the receipt function in conjunction with jq. To fetch the 3rd indexed prop (assertionId) from the last event, we would run:

Next, we can view the data asserted object using the --abi-decode call. This will return the props in the assertionData mapping, relating to this structure:

The last prop in the output (resolved) should be false at this moment.

Settling the assertion

Now, let's move forward 2 hours to go pass the challenge window of the assertion:

Now, we can submit the settlement transaction to the OOV3 as we've passed liveness:

If we call the assertionData mapping again, we'll see that the assertion has settled. The last prop in the output (resolved) should be true:

We can now call the getData method directly and store output in IS_RESOLVED and RESOLVED_DATA variables:

IS_RESOLVED should now be true:

The decoded value of RESOLVED_DATA should be 489 as originally asserted:

Conclusion

This tutorial has shown you how to use the Data Asserter sample tutorial, along with the Optimistic Oracle V3. This is meant to act as a starting point for further contracts to be built on. Next steps should be looking at the other OOV3 tutorials or trying to build your own integration! If you have questions please message us on Discord or create a Github issue and we'll happily help you with your integration.

Insurance Claim Arbitration

Using the Optimistic Oracle to allow for verification of insurance claims

This section covers the insurance claims arbitration contract, which is available in the developer's quick-start repo. This tutorial shows an example of how insurance claims can be resolved and settled through the Optimistic Oracle V2 contract.

You will find out how to test and deploy this smart contract and how it integrates with the Optimistic Oracle.

Insurance Arbitrator Contract

This smart contract allows insurers to issue insurance policies by depositing the insured amount, designating the insured beneficiary, and describing the insured event.

Anyone can submit a claim that the insured event has occurred at any time. Insurance Arbitrators resolve the claim through the Optimistic Oracle by passing a question with a description of the insured event in ancillary data using the YES_OR_NO_QUERY price identifier specified in .

If the claim is confirmed and settled through the Optimistic Oracle, this contract automatically pays out insurance coverage to the beneficiary. If the claim is rejected, the policy continues to be active and ready for subsequent claim attempts.

Development environment and tests

Clone repository and Install dependencies

Clone the UMA dev-quickstart repository and install the dependencies. To install dependencies, you will need to install the long-term support version of nodejs, currently Nodejs v16, and yarn. You can then install dependencies by running yarn with no arguments:

Compiling your contracts

We will need to run the following command to compile the contracts and make the Typescript interfaces so that they are easy to work with:

Contract implementation

The contract discussed in this tutorial can be found at dev-quickstart/contracts/InsuranceArbitrator.sol () within the repo.

Contract creation and initialization

_finder parameter in the constructor points the Insurance Arbitrator to the Finder contract that stores the addresses of the rest of the UMA contracts. The Finder address can be fetched from the relevant file, if you are on a live network, or you can provide your own Finder instance if deploying UMA in your own sandboxed testing environment.

_currency parameter in the constructor identifies the token used for settlement of insurance claims, as well as the bond currency for proposals and disputes. This token should be approved as whitelisted UMA collateral. Please check for production networks or call getWhitelist() on the contract for any of the test networks.

Alternatively, you can approve a new token address with addToWhitelist method in the Address Whitelist contract if working in a sandboxed UMA environment.

_timer is used only when running unit tests locally to simulate the advancement of time. For all the public networks (including testnets) the zero address should be used.

As part of initialization, the oo variable is set to the address of the OptimisticOracleV2 implementation as discovered through getImplementationAddress method in the contract.

Issuing insurance

issueInsurance method allows any insurer to deposit insuredAmount of currency tokens by designating an insurance beneficiary (insuredAddress) and defining the insured event (insuredEvent). Before calling this method, the insurer should have approved this contract to spend the required amount of currency tokens.

Internally, the issued policy is stored in the insurancePolicies mapping using the calculated policyId key that is generated by hashing the current block number with the provided insurance parameters in the internal _getPolicyId function.

After pulling insuredAmount from the caller in the issueInsurance method, the contract emits a PolicyIssued event including the policyId parameter that should be used when claiming insurance.

Submitting insurance claim

Anyone can submit an insurance claim on the issued policy by calling the submitClaim method with the relevant policyId parameter. This method will initiate both a data request and proposal with the Optimistic Oracle. A proposal bond is required, hence the caller should have approved this contract to spend the required amount of currency tokens for the proposal bond.

After checking that the policyId represents a valid unclaimed insurance policy, the contract gets the current timestamp and composes ancillaryData that will be required for making requests and proposals to the Optimistic Oracle:

The resulting timestamp and ancillaryData parameters are hashed in the internal _getClaimId method that is used as a key when storing the linked policyId in the insuranceClaims mapping. This information will be required when receiving a callback from the Optimistic Oracle.

The concatenated ancillaryData will have a valid question as specified in for YES_OR_NO_QUERY price identifier.

An Optimistic Oracle data request is initiated without providing any proposer reward since the proposal will be done within the submitClaim method:

Before the proposal is made, the Optimistic Oracle allows the requesting contract (this Insurance Arbitrator) to set additional parameters like bonding, liveness, and callback settings. This requires passing the same priceIdentifier, timestamp, and ancillaryData parameters to identify the request.

Total bond to be pulled from the claim initiator consists of the Optimistic Oracle proposer bond and final fee for the relevant currency token. This contract sets the proposer bond as a fixed percentage (constant oracleBondPercentage) from insuredAmount. When calling the setBond method, the Optimistic Oracle calculates and returns the total bond that would be pulled when making the proposal:

Optimistic Oracle liveness is set by calling the setCustomLiveness method. This contract uses 24 hours so that verifiers have sufficient time to check the claim, but one can adjust the optimisticOracleLivenessTime constant for testing. (You probably don't want to wait a full day to resolve your test requests!)

In contrast to earlier versions, the Optimistic Oracle V2 by default does not use callbacks and requesting contracts have to explicitly subscribe to them if intending to perform any logic when a data request has changed state. Here, in calling setCallbacks, this contract only subscribes to a callback for settlement, as implemented in the priceSettled method. (Note: Subscribing to any other callbacks that are not implemented in the requesting contract would make data requests unresolvable.)

After totalBond amount of currency token is pulled from the claim initiator and approved to be taken by Optimistic Oracle, this contract proposes 1e18 representing an answer of YES to the raised question. Requesting and proposing affirmative answers atomically allows us to reduce the number of steps taken by end users and it is most likely expected that the insured beneficiary would be initiating the claim.

Disputing insurance claim

For the sake of simplicity this contract does not implement a dispute method, but the disputer can dispute the submitted claim directly through Optimistic Oracle before the liveness passes by calling its disputePrice method:

The disputer should pass the address of this Insurance Arbitrator contract as requester and all the other parameters from the original request when the claim was initiated as emitted by the Optimistic Oracle in its RequestPrice event.

If the claim is disputed, the request is escalated to the UMA DVM and it can be settled only after UMA voters have resolved it. To learn more about the DVM, see the docs section on the DVM: .

Settling insurance claim

Similar to disputes, claim settlement should be initiated through the Optimistic Oracle contract by calling its settle method with the same parameters:

In case the liveness has expired or a dispute has been resolved by the UMA DVM, this call would initiate a priceSettled callback in the Insurance Arbitrator contract:

Based on the received callback parameters, this contract can identify the relevant claimId that is used to get the stored insurance policy:

Importantly, all callbacks should be restricted to accept calls only from the Optimistic Oracle to avoid someone spoofing a resolved answer:

Depending on the resolved answer, this contract would either pay out the insured beneficiary and delete the insurance (in case of 1e18 representing the answer YES, the insurance claim was valid) or reject the payout and re-open the policy for any subsequent claims:

Tests and deployment

All the unit tests covering the functionality described above are available . To execute all of them, run:

Before deploying the contract check the comments on available environment variables in .

In the case of the Görli testnet, the defaults would use the Finder instance that references the implementation for resolving DVM requests. This exposes a pushPrice method to be used for simulating a resolved answer in case of disputed proposals. Also, the default Görli deployment would use the already whitelisted TestnetERC20 currency that can be minted by anyone using its allocateTo method.

To deploy the Insurance Arbitrator contract on Görli, run:

Optionally you can verify the deployed contract on Etherscan:

Interacting with deployed contract

The following section provide instructions on how to interact with the deployed contract from the Hardhat console, though one can also use it for guidance for interacting through another interface (e.g. Remix or Etherscan).

Start Hardhat console with:

Initial setup

From the Hardhat console, start by adding the required getAbi dependency for interacting with UMA contracts and use the first two accounts as insurer and insured beneficiary:

Grab the deployed Insurance Arbitrator contract:

Issue insurance

Assuming TestnetERC20 was used as currency when deploying, mint the required insurance amount (e.g. 10,000 TEST tokens) and approve the Insurance Arbitrator to pull them:

Issue the insurance policy and grab the resulting policyId from the emitted PolicyIssued event:

Submit insurance claim

First calculate the expected proposer bond:

Fetch the expected final fee from the Store contract (which is discovered through the Finder):

Calculate the expected total bond and provide funding/approval for the insured claimant:

Now initiate the insurance claim and grab request details from the RequestPrice event emitted by the Optimistic Oracle:

Dispute insurance claim

Before liveness passes, the insurer can dispute the claim through the Optimistic Oracle. First, they must fund and approve with the same bonding amount:

If you are on a testnet like Göerli, in order to simulate UMA voting on a testnet, you can use the :

Now initiate the dispute and grab the vote request details from the PriceRequestAdded event emitted by the Mock Oracle:

Settle insurance claim

Before settling the claim, we can take a look at the vote request as seen by UMA voters:

The ancillaryData should start with q:"Had the following insured event occurred as of request timestamp: Bad things have happened?". It is then followed by the ooRequester key with our Insurance Arbitrator address in its value.

In order to simulate YES as the resolved answer we would pass 1e18 as the price parameter in the Mock Oracle pushPrice method:

Now we can settle the request through the Optimistic Oracle and observe the emitted ClaimAccepted from our Insurance Arbitrator contract:

The above settlement transaction should also transfer insuredAmount tokens to the insured beneficiary as well as return the proposer bond to the claim initiator.

Alternatively, if 0 value was resolved, the settlement transaction should emit the ClaimRejected event without paying out the insuredAmount and returning the bond to the disputer, along with half of the proposer's bond.

UMA Protocol

Welcome to UMA

Core Concepts

Correct Oracle for Your Use Case

Developer Quickstart

Community

Resources and Support

What's New!

May 8, 2025

Developers

Optimistic Oracle v2

Using Blacklisting Tokens as Currency

ManagedOptimisticOracleV2

Proposing via the Oracle Dapp

Proposing Programmatically

Adding the ManagedOptimisticOracleV2 Addresses

Default Proposer Whitelist

Current Proposer Whitelist Criteria

Optimistic Oracle v3

ASSERT_TRUTH Deprecation

Using Blacklisting Tokens as Currency

oSnap

Disabling oSnap

oSnap Proposal Verification

Verifying Proposals

Setting Custom Bond and Liveness Parameters

How to think about proposer and disputer bonds

Example bond payouts (OOV3)

Higher or lower bonds?

How to think about liveness

Protocol Overview

How does UMA's Oracle work?

Optimistic Oracle

Example Projects

Community

Governance

Governing the UMA ecosystem

Voting

The UMIP Process

DAO Proposals

Using UMA

Voting Walkthrough

Voter Guide

Voting Gas Rebates

Discord Summaries

Proposing Oracle Data

Disputing Oracle Data

Resolving Disputes

Verification Guide

Verification System

Prerequisites

Resources

Approved Price Identifiers

Subgraphs

Ethereum Mainnet

Unsupported Contracts

Additional Resources

Glossary

Optimistic Oracle

DVM

Parameters of a Long Short Pair (LSP) smart contract:

Financial Product Library (FPL)

collateralPerPair

expiryPercentLong

UMA Product Types:

Range Tokens

Success Tokens

KPI Options

Links

Links

Welcome to UMA

Core Concepts

Correct Oracle for Your Use Case

Developer Quickstart

Community

Resources and Support

Optimistic Oracle v2

What's New!

May 8, 2025

Using Blacklisting Tokens as Currency