Deprecated contract paused but pause reversible by live admin

Dolomite's assessment for RD-F-167 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

The 2024 exploit targeted the deprecated 2019 Loopring Trade Delegate contract (0xe2466deb9536a69bf8131ecd0c267ee41dd1cda0). Post-mortem confirms this is NOT controlled by the current admin. Current admin (GnosisSafe) has no pause authority over the old deprecated contract. F167 pattern (admin retains reversible pause over deprecated surface) does not apply here.

Sources #

URL
Dolomite Legacy Vulnerability Post-Mortemmedium.com/dolomite-official/legacy-smart-contract-vulnerability-post-mortem — deprecated 2019 contract not current admin controlledretrieved 2026-05-16

Methodology #

Determine whether a deprecated-and-paused contract's pause state is revertible by a currently-live admin role.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol dolomite factor RD-F-167 score green collected_at 2026-05-16 11:12:56