Upgrade multisig signer configuration (M/N)

Compound V3 (Comet)'s assessment for RD-F-026 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

At least 5 distinct privileged addresses on Ethereum mainnet: Timelock (upgrade+execute), Community MultiSig (pause+proposal cancel), GovernorBravo 0x309a862 (active, queues proposals), GovernorBravo 0xc0Da02 (legacy status unclear), Timelock.admin EOA 0x8B8592 (direct queue/execute rights per Timelock.sol). Plus L2 local timelocks per chain.

Sources #

URL
https://www.defiscan.info/protocols/compound-v3/ethereumretrieved 2026-04-28
GitHub
https://github.com/compound-finance/compound-protocol/blob/master/contracts/Timelock.solretrieved 2026-04-28
Etherscan
https://etherscan.io/address/0x6d903f6003cca6255D85CcA4D3B5E5146dC33925retrieved 2026-04-28

Methodology #

Read `threshold` and `getOwners()` on the multisig controlling upgrade / sensitive ops. Store as `required` (M) and `total` (N); render as "M/N". For EOA admins record `required=1, total=1` (display "1/1"). Null when admin is immutable or full DAO with no fixed signer set.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol compound-v3 factor RD-F-026 score yellow collected_at 2026-04-28 00:20:50