Admin/upgrade transaction in mempool

Aave v3's assessment for RD-F-102 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Guardian freeze executed April 18 within ~75 minutes of the rsETH exploit being identified. At April 27 (9 days post-event): rsETH markets frozen across all 11 deployments; WETH Ethereum Core V3 unfrozen (supply only; LTV=0); WETH frozen on Prime, Arbitrum, Base, Mantle, Linea. No new emergency admin transactions in mempool as of April 27. Further admin actions (governed unfreeze AIPs) anticipated but will route through governance timelock. Was RED at T-10 (April 21). Delta: emergency-red → governance-yellow.

Sources #

URL
Etherscan: Granular Guardian 0x4457cA11E90f416Cc1D3a8E1cA41C0cdEcC251d4Granular Guardian multisigretrieved 2026-04-27
URL
BanklessTimes: Aave keeps WETH frozen on Prime and key L2 networks after KelpDAO exploitAave WETH markets frozen reportretrieved 2026-04-27
Governance
rsETH Incident Report — root cause: LayerZero 1/1 DVN misconfiguration on Kelp sidersETH Incident Reportretrieved 2026-04-27

Methodology #

Detect an admin-role or upgrade transaction appearing in the mempool before confirmation.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol aave-v3 factor RD-F-102 score yellow collected_at 2026-04-27 23:28:46