UUPS _authorizeUpgrade correctly permissioned
Superstate's assessment for RD-F-021 — scored not_applicable on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
SuperstateToken uses TransparentUpgradeableProxy pattern (EIP-1967), not UUPS. Upgrade authority is held by the ProxyAdmin contract. The UUPS _authorizeUpgrade pattern is not present. Factor N/A for Transparent proxy pattern.
Sources #
- EtherscanEtherscan USTB TransparentUpgradeableProxyEtherscan USTB proxy 0x43415eB6... shows TransparentUpgradeableProxy with ProxyAdmin 0xCb8d325C0Af19697B8454481602097f93aa9040Fretrieved 2026-05-16
Methodology #
Determine whether the UUPS implementation defines `_authorizeUpgrade(address)` restricted to owner/admin/timelock (not open to arbitrary callers).
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol superstate factor RD-F-021 score not_applicable collected_at 2026-05-16 00:06:37