defirisk.co
rubric v1.7.0

Admin/upgrade transaction in mempool

Cap (cUSD / stcUSD)'s assessment for RD-F-102 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

T-09 phase-2 signal. Applicable: cUSD (0xcCcc...cccC), stcUSD (0x8888...8888), Lender (0x1562...1FC), AccessControl (0x7731...683) are all UUPS proxies. Dev multisig is proposer; deployer EOA 0xc1ab5a9593 is executor on TimelockController — making unilateral executor action without multisig co-sign possible (flagged in profile §11). Most recent GitHub commit 2026-05-08 indicates active development; upgrade transactions may be ongoing. Mempool listener not live.

Sources #

  • Internal
    Cap protocol profile — UUPS proxies and executor role.research/protocols/cap/00-profile.md §3 (UUPS proxy deployments) and §11 (deployer EOA as Timelock executor)retrieved 2026-05-17
  • Internal
    Cap data cache — GitHub last commit.research/protocols/cap/00-data-cache.json sources.github.last_commit_date = 2026-05-08retrieved 2026-05-17

Methodology #

Detect an admin-role or upgrade transaction appearing in the mempool before confirmation.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol cap factor RD-F-102 score gray collected_at 2026-05-17 10:56:24