★ Single admin EOA

Orca's assessment for RD-F-027 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Upgrade authority is Squads v4 PDA GwH3Hiv5mACLX3ufTw1pFsrhSPon5tdw252DBs4Rx4PV with is_on_curve=false (off-curve = PDA, not an EOA). System Program ownership is correct for Squads v4 vault PDAs by design (anti-drift #12). 3-of-10 multisig signature required for any upgrade; 24h timelock enforced on-chain.

Sources #

Tx
Squads v4 pipeline trace transaction confirming vault-multisig relationship4PyKvttqohcw8KVVwdNoFGSAjFNjvyNAtK7xasSzamW5nZei3RT3jrgtuYqVqXHD5rJ27hoJ61mboH6HVJ6sTjefretrieved 2026-05-16
Docs
Squads v4 source — vault PDA System Program ownership by designhttps://github.com/Squads-Protocol/v4retrieved 2026-05-16
Internal
Orca data cache — is_on_curve discriminator confirms PDA not EOAcache sources.solana_multisigs[0]: is_on_curve=false, owner_program=11111111111111111111111111111111, verified_type=squads_v4_vaultretrieved 2026-05-16

Methodology #

Determine whether the effective upgrade/owner/rescue role is held by a single EOA (not a multisig) with no timelock on sensitive operations.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol orca factor RD-F-027 score green collected_at 2026-05-16 02:39:16