Admin/upgrade transaction in mempool
Spiko's assessment for RD-F-102 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
UUPS proxied contracts on Ethereum, Arbitrum, Polygon, Base, Etherlink. Super-admin Safe 0xEBB418e1f8E8F26BdF7816A2cD25bE87c040E425 (confirmed 2-of-5) can directly submit upgradeToAndCall via execTransaction with no timelock gate. T-09 suppression rule (matching queued governance proposal) CANNOT fire because no governance queue exists. Two prior upgrades confirmed (USTBL Ethereum 2024-04-19 tx 0x728d46f; EUTBL Arbitrum 2024-10-25) — both post-audit, both executed without prior governance proposal. No current upgrade tx in mempool identified; but posture is elevated because any future upgrade fires unsuppressed.
Sources #
- EtherscanSpiko super-admin Safe — EthereumSuper-admin Gnosis Safe 0xEBB418e1f8E8F26BdF7816A2cD25bE87c040E425 — active, last tx ~9 days agoretrieved 2026-05-16
- USTBL token on Ethereum — ERC1967ProxyUSTBL ERC1967Proxy 0xe4880249745eAc5F1eD9d8F7DF844792D560e750 — UUPS upgradeable; upgraded 2024-04-19 tx 0x728d46f23e31b485d1a803dc6cc7b98196f2e59fab0d81d7e21a729435acb69bretrieved 2026-05-16
- T-09 RD-F-102 suppression ruleT-09 §4.6 suppression rule: tx originates from timelock fed by queued governance proposal → not suspicious. Spiko has no governance queue; suppression cannot engage.retrieved 2026-05-16
- Spiko profile — upgrade history and timelock absence00-profile.md §11: EUTBL Arbitrum upgraded 2024-10-25; governance.timelock_address null confirmedretrieved 2026-05-16
Methodology #
Detect an admin-role or upgrade transaction appearing in the mempool before confirmation.
See the full factor methodology and distribution across all protocols →