defirisk.co
rubric v1.7.0

Role separation: upgrade ≠ fee ≠ oracle

Spiko's assessment for RD-F-035 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Permission Manager defines distinct roles for upgrade (super-admin), minting (daily-operator), and oracle (oracle-operator). Role separation is administrative. Super-admin can reassign any role, making separation soft rather than cryptographic.

Sources #

  • Docs
    Spiko smart contracts architecture blogtech.spiko.io: seven distinct permission groups listed; super-admin, daily-operator, oracle-operator, exceptional-operator, burner, allowlister, allowlistedretrieved 2026-05-16

Methodology #

Determine whether the upgrade role, fee-collection role, and oracle-config role are assigned to distinct addresses.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol spiko factor RD-F-035 score yellow collected_at 2026-05-15 22:52:13