★ Sudden admin-rescue/ACL change without discussion
OpenEden's assessment for RD-F-123 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Two events assessed: (1) Nov-2023 full-launch migration announcement references 'independent third-party multisig' as a security measure but discloses no address, threshold, or signers; no public GitHub issue/PR or governance forum discussion of the admin-key transition is locatable. (2) Dec 2024 proxy upgrades (implementation changed Dec 20 + Dec 23, 2024 per Etherscan events) occurred after Eugene Ng termination (Oct 31, 2024); no corresponding public PR discussion, governance-forum rationale, or team announcement explaining admin-key implications was found. The EDEN governance portal (Tally, launched Jan 2026) covers EDEN token proposals, not vault admin-key management. Yellow per RWA-corporate-issuer norm (circle-usyc/spiko/superstate/midas precedent at PD-042): institutional issuers do not publicize admin-key arrangements; opacity is corporate governance norm, not demonstrated concealment.
Sources #
- URLGenesis of OpenEden GovernanceOpenEden governance launch Jan 2026 — covers EDEN token governance only, not vault admin-key managementretrieved 2026-05-16
- Openeden TBILL Vault — Etherscan upgrade events Dec 2024TBILL vault Etherscan — proxy upgrades Dec 20 and Dec 23, 2024 post-co-founder termination; no corresponding public discussion locatedretrieved 2026-05-16
- OpenEden Announces TBILL Vault Migration from Beta to Full LaunchMedium — OpenEden TBILL vault migration announcement Nov 2023 (references 'independent third-party multisig' without address or discussion)retrieved 2026-05-16
Methodology #
Determine whether any admin-rescue function or ACL change was committed to the repo or executed on-chain without corresponding public discussion in issues, PRs, or governance forum.
See the full factor methodology and distribution across all protocols →