Observation
On-chain analysis shows the upgrade authority for Meteora DLMM (LBUZKhRxPF3XUpBCjp4YzTKgLccjZhTSDM9YuVaPwxo) is JADaUV8k...CVLd, which has:
- 0.23 SOL balance
- 0 recent transactions
Context
A dormant authority could indicate cold storage (good) or inaccessible key (bad). If the key is lost, the team would be unable to patch critical vulnerabilities.
Recommendation
- Publicly document key management practices
- Consider timelock mechanisms
- Consider multisig upgrade authority
Methodology
Data from public blockchain state via solscan-cli --power-map.
Responsible disclosure of publicly observable state.
Observation
On-chain analysis shows the upgrade authority for Meteora DLMM (
LBUZKhRxPF3XUpBCjp4YzTKgLccjZhTSDM9YuVaPwxo) isJADaUV8k...CVLd, which has:Context
A dormant authority could indicate cold storage (good) or inaccessible key (bad). If the key is lost, the team would be unable to patch critical vulnerabilities.
Recommendation
Methodology
Data from public blockchain state via solscan-cli
--power-map.Responsible disclosure of publicly observable state.