Upgrade multisig signer configuration (M/N)

Concrete's assessment for RD-F-026 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

3-of-5 Safe multisig controls factory upgrade authority. Signers: 0x607E77a952ddbe942b49D2e18592CEBeb4ebC0C6, 0x266Bf5eDB37C45CEcab12907f7F8983de674Fd7A, 0x0252556e0fA9722F389C2bda58D8754D7145bFAC, 0x4767c164333E0745B658e077c4046bbc9DbF9472, 0xd5F9ce3BBCb6877488335d1CA0c2180e842bb2b8.

Sources #

URL
Safe Transaction Service — Concrete factory owner Safe (threshold + owners)Safe Transaction Service API response: threshold=3, owners=[5 addresses listed], nonce=26retrieved 2026-05-17

Methodology #

Read `threshold` and `getOwners()` on the multisig controlling upgrade / sensitive ops. Store as `required` (M) and `total` (N); render as "M/N". For EOA admins record `required=1, total=1` (display "1/1"). Null when admin is immutable or full DAO with no fixed signer set.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol concrete factor RD-F-026 score yellow collected_at 2026-05-17 14:36:59