★ Single admin EOA

OpenEden's assessment for RD-F-027 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Upgrade authority held by 4-of-5 Gnosis Safe (0x8Ec4dD2DF01c188Ac5a5D870029E9cbb820d5844), not a single EOA. The bare operator EOA 0xdBC3C410A9EdE40B86482Ca0677EccdeaF5a3fDe holds an operational role (UpdateEpoch, ProcessWithdraw, offRamp) but is not the upgrade authority. Yellow because the Safe controls upgrades with no timelock delay — 4 of 5 signers can upgrade instantly.

Sources #

Etherscan
Operator EOA activity (bare EOA, not upgrade authority)Operator EOA 0xdBC3C410 activity: UpdateEpoch, ProcessWithdraw, offRamp — operational not upgraderetrieved 2026-05-16
URL
Safe API — admin Safe configurationSafe API confirmed 4-of-5 threshold; upgrade tx execTransaction from Saferetrieved 2026-05-16

Methodology #

Determine whether the effective upgrade/owner/rescue role is held by a single EOA (not a multisig) with no timelock on sensitive operations.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol openeden factor RD-F-027 score yellow collected_at 2026-05-16 10:11:45