defirisk.co
rubric v1.7.0

Sudden admin-rescue/ACL change without discussion

Rocket Pool's assessment for RD-F-123 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

The deployer EOA held the RocketStorage guardian role during bootstrap (2021-11-09 to Aug-Oct 2025). This was a publicly known and documented centralization concern. Its resolution was the subject of multi-year public governance: RPIP-14 (2022, temporary reassignment), RPIP-33 (2023, on-chain pDAO design), Houston upgrade (May 2024, Security Council creation). The guardian was permanently disabled in Aug-Oct 2025 per the official governance roadmap update: 'we permanently disabled the protocol DAO guardian, completing the transition to full decentralised governance.' No evidence of any undisclosed admin-rescue or ACL change absent governance discussion in the last 180 days. All current pDAO protocol changes route through the on-chain optimistic fraud-proof system with mandatory RPIP forum discussion.

Sources #

  • URL
    Rocket Pool — Houston UpgradeRocket Pool Houston upgrade announcement — describes pDAO governance transition and Security Councilretrieved 2026-05-04
  • Docs
    RPIP-33: On-Chain pDAORPIP-33: Implementation of an On-Chain pDAO — defines Houston governance system eliminating long-term guardian dependence; Security Council as replacement; guardian as initial sole Security Council memberretrieved 2026-05-04
  • Governance
    Protocol Development - Roadmap Update (Aug, Sept, Oct)Protocol Development Roadmap Update (Aug, Sept, Oct 2025) — confirms guardian permanently disabled; quotes 'we permanently disabled the protocol DAO guardian, completing the transition to full decentralised governance'retrieved 2026-05-04
  • Docs
    RPIP-14: Temporary pDAO Guardian ReassignmentRPIP-14: Temporary pDAO Guardian Reassignment — proposed 8/14 oDAO multisig transfer (2022); public governance discussion on guardian centralizationretrieved 2026-05-04

Methodology #

Determine whether any admin-rescue function or ACL change was committed to the repo or executed on-chain without corresponding public discussion in issues, PRs, or governance forum.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol rocket-pool factor RD-F-123 score green collected_at 2026-05-04 15:40:28