Hot-wallet signer flag
Superstate's assessment for RD-F-030 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
The upgrade EOAs (0xad309BB6... USTB, 0x8abC89D9... USCC) transact daily for bulk-mint operations: 0xad309BB6 has 1,263 transactions (most recent 6-7 hours before assessment), primarily USTB Mint calls; 0x8abC89D9 has 579 transactions (most recent ~10 hours before assessment), primarily USCC Mint calls. This high-frequency automated activity pattern is consistent with a hot wallet or automated key that is persistently online, increasing exposure to compromise relative to an air-gapped cold key.
Sources #
- EtherscanUSCC Admin EOA Transaction History0x8abC89D9b56dFD90dA18e8E18CFaC9111100bDd1: 579 total txs, most recent mint call ~10hrs before assessmentretrieved 2026-05-16
- USTB Admin EOA Transaction History0xad309BB6f13074128b4F23EF9EA2fe8552AfCA83: 1263 total txs, most recent mint call 6-7hrs before assessmentretrieved 2026-05-16
Methodology #
Determine whether ≥1 multisig signer address exhibits on-chain behavior consistent with a hot wallet (web-wallet signing pattern, no hardware signing indicators).
See the full factor methodology and distribution across all protocols →