BlackHartBlackHart
Scores/Gnosis Safe

Gnosis Safe

MITHRIL

Smart Wallet · Multi-chain · $100B+ TVL · 15 contracts

Confidence 90%Z-Factor 0.98Updated 2026-05-17Public Score

Public risk assessment — scores are produced with the same methodology as monitored protocols

875
BRI Score
3004756508251000

Security Profile

Access Ctrl
95
Economic
90
Oracle
95
Compos.
82
Govern.
88
Maturity
95
Resilience
50
Supply Ch.
88
OpSec
54
Cascade
95
Min
50
Avg
83
Max
95

Audit History

Runtime Verification (Formal)
2023-09Report →
Ackee Blockchain
2023-01
G0 Group
2020-02

Bug Bounty Program

$1,000,000
Max payout on Immunefi

Assessment

Most trusted smart wallet in DeFi. 96+ months live, $100B+ secured, zero core exploits, formal verification. D4 penalized for module system extensibility risk. Near-ADAMANTINE, the security primitive benchmark.

Dimension Breakdown

How scores work →
Access Control
Weight 18%95% conf
95
Excellent
arrow_forward
+24THE access control primitive for DeFi (threshold multisig)
+24Owner management with add/remove/swap/threshold change
+24Delegate call guard for module execution
+24EIP-1271 signature validation standard
receipt_longView provenance chainarrow_forward
Economic Soundness
Weight 13%92% conf
90
Excellent
arrow_forward
-3Minimal economic attack surface (wallet, not DeFi protocol)
-3No token swaps, no flash loans, no yield in core
+90Transaction execution fee model is simple
-3Economic risk comes from what Safe holds, not Safe itself
receipt_longView provenance chainarrow_forward
Oracle Integrity
Weight 13%95% conf
95
Excellent
arrow_forward
+48Zero oracle dependency in core wallet contracts
-2No price feeds, no TWAP, no external data
-2Safe is infrastructure, not a price consumer
+48Module-level oracle deps are sandboxed
receipt_longView provenance chainarrow_forward
Battle-Tested Maturity
Weight 12%95% conf
95
Excellent
arrow_forward
+19Live since 2018 (96+ months), oldest active smart wallet
+19Secures $100B+ in aggregate TVL across all Safes
+19Zero core contract exploits across any version
+19Formal verification of core contracts
receipt_longView provenance chainarrow_forward
Governance & Upgradeability
Weight 10%85% conf
88
Strong
arrow_forward
+29SafeDAO governance with SAFE token
+29Professional management by Safe Ecosystem Foundation
+29Treasury governance for ecosystem grants
receipt_longView provenance chainarrow_forward
Adversarial Resiliencelock
Weight 10%30% conf
50
Concerning
  • Maximum resilience under independent adversarial testing
  • Comprehensive security coverage across all attack surfaces
  • Formally verified core contracts strengthen resilience
  • Mature codebase with extensive battle testing
Operational Security
Weight 10%60% conf
54
Concerning
arrow_forward
-8No branch protection detected
-8CI/CD present but unstable (40% success)
+27Commit signing: 82% verified
-8Minimal development activity (0 commits/month)
receipt_longView provenance chainarrow_forward
Compositional Risk
Weight 5%80% conf
82
Strong
arrow_forward
+27Module system allows arbitrary contract extensions
+27Guard contracts can add pre/post-execution checks
+27Fallback handler introduces external code execution
-18Module risk is user-configured, not protocol-default
receipt_longView provenance chainarrow_forward
Cascade Exposure
Weight 5%50% conf
95
Excellent
arrow_forward
-2No cross-protocol cascade exposure detected
-2Score: 95/100 (higher = more isolated from systemic risk)
+95Source: cross_protocol_composition.json dependency analysis
receipt_longView provenance chainarrow_forward
Supply Chain
Weight 4%90% conf
88
Strong
arrow_forward
-12Minimal external dependencies in core
+29Standard Solidity with clean architecture
+29EIP-1271, EIP-4337 standards compliance
+29Verified on all deployment chains
receipt_longView provenance chainarrow_forward

Risk Drivers

Primary risk factors driving this score, ordered by severity.

Adversarial Resilience50
Operational Security54
Compositional Risk82

Adversarial Risk Signals

Observable security posture indicators. These signals reflect publicly verifiable information and responsible disclosure outcomes. No specific vulnerability details are exposed.

Disclosure HistoryNot Assessed
Remediation VelocityNot Assessed
Bug Bounty ProgramNot Assessed
Audit CoverageNot Assessed
Incident HistoryNot Assessed
Deployed 2018-11-30Z-Factor 0.97610 active dimensionsreceipt_longProvenance Ledger

Score History & Verification

Score provenance tracking begins with the next reassessment.

receipt_longView full provenance ledger →

On-Chain Data

Protocol Slug
"gnosis"
Oracle
BRORegistry (Base)
Evidence
IPFS (pinned)
Staleness Threshold
24 hours
Read Score
registry.getScore("gnosis")

Reduce exploitable risk

BlackHart Monitoring provides continuous adversarial analysis, vulnerability detection, remediation support, and verified reassessment when your risk posture improves.

View Monitoring PlansHow Scores Work
Believe this score contains a factual error? Submit evidence for review →