★ Rescue/emergencyWithdraw without timelock

Compound V3 (Comet)'s assessment for RD-F-041 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Comet.sol exposes approveThis(address manager, address asset, uint amount) and withdrawReserves(address to, uint amount), both callable only by governor (= Timelock in production). approveThis grants approval over any ERC-20 held in Comet; withdrawReserves moves base token reserves. Both require full governance process (GovernorBravo vote + 48h timelock). No single EOA or multisig direct bypass path. Drain capability is real but timelocked through governance (risk captured under RD-F-039).

Sources #

Docs
https://docs.compound.finance/governance/retrieved 2026-04-28
Audit
https://www.openzeppelin.com/news/compound-iii-auditretrieved 2026-04-28
GitHub
https://github.com/compound-finance/comet/blob/main/contracts/CometMainInterface.solretrieved 2026-04-28

Methodology #

Determine whether a `rescue(…)` or `emergencyWithdraw(…)` function exists callable by admin without a timelock delay on execution.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol compound-v3 factor RD-F-041 score yellow collected_at 2026-04-28 00:20:50