★ Sudden admin-rescue/ACL change without discussion

Morpho V1 (Morpho Blue + MetaMorpho)'s assessment for RD-F-123 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Morpho Blue core contract is immutable (non-upgradeable), eliminating logic-ACL risk. Base chain ownership transfer followed full MIP59 governance process (forum 2024-05-14, Snapshot 2024-05-17, on-chain 2024-05-22). Ethereum mainnet owner-setting process at deploy not located in a specific forum MIP, but no evidence of surprise/unannounced change.

Detail #

MIP59 confirmed: proposal posted 2024-05-14, Snapshot vote opened 2024-05-17, ownership transferred on-chain 2024-05-22 to 0xeC5e4a3cE93c284441dC6a2Dd5F0D46a202F00a3. Current Ethereum owner 0xcBa28b38103307Ec8dA98377ffF9816C164f9AFa is labeled 'Morpho: Morpho DAO' on Etherscan, consistent with governance-controlled state. No evidence of a sudden unannounced admin-rescue or ACL change in the last 180 days. YELLOW reflects incomplete documentation of the initial Ethereum owner-assignment process, not an active adverse signal.

Sources #

Etherscan
Morpho Blue Ethereum — EtherscanMorpho Blue Ethereum contract owner() = Morpho DAO multisig labeled on Etherscanretrieved 2026-04-27
Governance
https://forum.morpho.org/t/mip59-morpho-dao-as-owner-of-morpho-blue-on-base/599retrieved 2026-04-27

Methodology #

Determine whether any admin-rescue function or ACL change was committed to the repo or executed on-chain without corresponding public discussion in issues, PRs, or governance forum.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol morpho-v1 factor RD-F-123 score yellow collected_at 2026-04-30 21:19:13