BlackHartBlackHart
Scores/Ondo Finance/Provenance/Access Control
D1

Access Control

Permission models, admin surface, reentrancy protection, and authorization boundaries. #1 exploit vector by dollar loss in DeFi history.

Weight 18%82% confidence
80
Strong
info

How This Score Is Built

Permission models, admin surface, reentrancy protection, and authorization boundaries. #1 exploit vector by dollar loss in DeFi history.

+23Strong positive
+12Positive
+5Slight positive
−15Strong negative
−8Negative
−3Slight negative

Score Composition

-10

Admin keys are a feature for RWA compliance, not a bug

Strong negativeopen_in_newSource CodeMay 4, 2026
-10

Freeze/blacklist/pause capabilities by design

Strong negativeopen_in_newSource CodeMay 4, 2026
+40

KYC-gated whitelist provides strong access control

Strong positiveopen_in_newSource CodeMay 4, 2026
+40

Role-based admin with multi-sig

Strong positiveopen_in_newSource CodeMay 4, 2026

Evidence Chain (2 files)

GitHub APIMay 17, 2026, 06:58 PM
open_in_newGitHub (/)
sha256:ac4ee24e12e3...
BlackHart AnalysisMay 4, 2026, 08:00 PM
open_in_newAccess Control — Source Code
sha256:6369a77c5997...

Score History

Automated pipeline dimension update
How is Access Controlscored? →← Back to Provenance Ledger