defirisk.co
rubric v1.7.0

Sudden admin-rescue/ACL change without discussion

EigenLayer's assessment for RD-F-123 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

EigenLayer has a formal ELIP process (15 ELIPs through ELIP-015 as of 2026-04-28) with public forum discussion required before Protocol Council approval. The Protocol Council charter explicitly states that 'modifications to multisig governance architecture (i.e. transferring ownership / admin access)' require an ELIP. No specific undiscussed admin-rescue or ACL change event was affirmatively identified in the last 180 days. Three structural concerns prevent green: (1) Operations Multisig (3-of-6, Eigen Labs) can execute 'routine upgrades' through the 10-day timelock without a full ELIP — the charter boundary between routine and ELIP-required is not precisely enumerated in public documentation; (2) a community forum post ('Improved MultiSig Process and Documentation') explicitly calls for better history documentation of past multisig actions, implying the current record is incomplete; (3) the October 2024 investor wallet hack was an EXTERNAL email-based social-engineering attack (invest

Sources #

Methodology #

Determine whether any admin-rescue function or ACL change was committed to the repo or executed on-chain without corresponding public discussion in issues, PRs, or governance forum.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol eigenlayer factor RD-F-123 score yellow collected_at 2026-04-28 13:58:44