defirisk.co
rubric v1.7.0

UUPS _authorizeUpgrade correctly permissioned

Sky Lending (formerly MakerDAO)'s assessment for RD-F-021 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

USDS implementation _authorizeUpgrade(address) restricted by auth modifier (wards[msg.sender] == 1). Only governance-authorized ward holders can trigger upgrades. No open or unprotected _authorizeUpgrade found.

Sources #

  • Etherscan
    https://etherscan.io/address/0x1923DfeE706A8E78157416C29cBCCFDe7cdF4102retrieved 2026-04-27
  • URL
    https://github.com/sky-ecosystem/usds/blob/master/src/Usds.solretrieved 2026-04-27

Methodology #

Determine whether the UUPS implementation defines `_authorizeUpgrade(address)` restricted to owner/admin/timelock (not open to arbitrary callers).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol sky-lending factor RD-F-021 score green collected_at 2026-04-28 00:43:18