★ Sudden admin-rescue/ACL change without discussion
Jupiter's assessment for RD-F-123 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
The June 2025 DAO governance pause and ASR structure change were made unilaterally by the Jupiter Foundation without a DAO vote. Community participants explicitly noted the decision was 'made behind closed doors, instead of through a DAO vote' (discuss.jup.ag). However, this is a governance-process centralization event, NOT a smart-contract ACL change. No covert on-chain program upgrade authority change is documented. Jupiter's protocol programs have a 12-hour timelock on admin actions (Drift hack post-mortem reference). The $140M CWG allocation (March 2025) followed proper DAO vote + prior forum discussion. YELLOW: governance process concern below the threshold of covert on-chain ACL change (the insider-implant signal class).
Sources #
- URLDAO pause and the new ASR structure — Jupiter Research forumdiscuss.jup.ag — community concern about behind-closed-doors decisionretrieved 2026-04-29
- hacksdatabase/hacks/drift-protocol-rekt.md line 86Drift hack DB — Jupiter timelock comparator (positive signal)retrieved 2026-04-29
- Solana DEX Jupiter Pauses DAO Votes, Citing Breakdown in TrustCoinDesk governance pauseretrieved 2026-04-29
- Solana exchange Jupiter pauses DAO voting amid breakdown in trustDL News governance pause articleretrieved 2026-04-29
- Jupiter CWG governance vote — Unchained CryptoUnchained $140M CWG vote — formal DAO process confirmedretrieved 2026-04-29
Methodology #
Determine whether any admin-rescue function or ACL change was committed to the repo or executed on-chain without corresponding public discussion in issues, PRs, or governance forum.
See the full factor methodology and distribution across all protocols →