Kelp says LayerZero approved the exact setup blamed for its $292M bridge hack.

Kelp DAO has published a memo directly contradicting LayerZero's postmortem of the $292 million rsETH bridge exploit, claiming LayerZero personnel reviewed and raised no objection to the 1-of-1 verifier configuration across 2.5 years and eight integration discussions. The memo includes Telegram screenshots showing a LayerZero team member acknowledging the default DVN setup without flagging any security concern — though CoinDesk could not independently authenticate them.

LayerZero's April 19 postmortem had placed responsibility on Kelp, saying the single-DVN setup "directly contradicts" its recommended multi-DVN model. That defence is complicated by data showing 47% of active LayerZero OApp contracts used the same 1-of-1 configuration — a setup LayerZero has since banned. A security researcher who submitted a bug bounty report describing the identical attack vector says LayerZero…