D1
Access Control
Permission models, admin surface, reentrancy protection, and authorization boundaries. #1 exploit vector by dollar loss in DeFi history.
Weight 18%80% confidence
53
Concerning
info
How This Score Is Built
Permission models, admin surface, reentrancy protection, and authorization boundaries. #1 exploit vector by dollar loss in DeFi history.
+23Strong positive
+12Positive
+5Slight positive
−15Strong negative
−8Negative
−3Slight negative
Scoring Tree
BRI Formula
300 + 700 × ∏(Dᵢ/100)^wᵢ
730
Current BRI
D1Access Control
Weight 18%
53
(53/100)^0.18 = 0.8920
Contributing Factors
+13cbETH has a minter role controlled by single entity
+13Base sequencer is sole-operator
+13Smart Wallet upgradeToAndCall is cross-chain replayable
+13C-BASENAME-001: addr records persist through re-registration (access control gap)
-47Fully centralized admin (Coinbase controls minting, pausing, upgrades)
Score Composition
-47
Fully centralized admin (Coinbase controls minting, pausing, upgrades)
+13
cbETH has a minter role controlled by single entity
+13
Base sequencer is sole-operator
+13
Smart Wallet upgradeToAndCall is cross-chain replayable
+13
C-BASENAME-001: addr records persist through re-registration (access control gap)
Evidence Chain (2 files)
GitHub APIMay 17, 2026, 06:58 PM
open_in_newGitHub (/)sha256:35dbc0a19938...
BlackHart AnalysisMay 13, 2026, 09:55 PM
open_in_newAccess Control — Source Codesha256:6fe62a3ea03b...
Score History
No dimension-level score changes recorded yet.
Methodology: 2.1Formula: 1.1Weights: 1.1