Admin key custody type

Chainlink CCIP's assessment for RD-F-025 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Admin key custody type is multisig + RBAC timelock. ManyChainMultiSig (MCMS) at 0xE53289F32c8E690b7173aA33affE9B6B0CB0012F proposes changes; RBACTimelock at 0x9A709B7B69EA42D5eeb1ceBC48674C69E1569eC6 enforces 2-day minimum delay. No EOA admin. Bypasser MCMS exists for break-glass scenarios.

Sources #

Etherscan
Chainlink MCMS — EtherscanManyChainMultiSig verified contract at 0xE53289F32c8E690b7173aA33affE9B6B0CB0012Fretrieved 2026-05-16
Docs
Onchain Architecture - Upgradability (EVM) | Chainlink DocumentationCCIP upgradability page — all changes route through MCMS + RBACTimelockretrieved 2026-05-16

Methodology #

Read the effective admin/owner/upgrader role on deployed contracts and classify as: EOA / multisig / multisig+timelock / full DAO+timelock / immutable.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol chainlink-ccip factor RD-F-025 score green collected_at 2026-05-16 01:55:09