A DAO's resilience level is determined by the framework, which evaluates the risk of its core governance protections — the weakest one defines the stage.
STAGE 0 [HIGH RISK]
STAGE 1 [MEDIUM RISK]
STAGE 2 [LOW RISK]
pending Criteria
3 fixes to reach Stage 1
Review the current setting and recommended fix for each metric.
Interface Resilience
Current
The governance interfaces and domain of the Scroll do not have DNS protection, leaving voters vulnerable to spoofing and hijacking attacks.
Fix
The domain should be protected with standard security certificates, made public by its provider. Ideal security here includes a verified front-end, deployed in an immutable manner, linked to an ENS record by the DAO in a domain like vote.DAO.eth and made available through .limo or .link or equivalent.
Spam Resistance
Current
There is no limit to the number of proposals that a single address can submit in the DAO.
Fix
Mechanisms should be in place to limit the number of proposals that can be submitted by a single address to prevent governance spam attacks.
Voting Subsidy
Current
There is no subsidy to help voters participate in governance voting.
Fix
Gas fee subsidies for governance voters must be provided to lower the barrier to participation in on-chain proposals.
Framework Overview
detailsThese metrics define the DAO's risk level. Select a metric to explore it, or open the full framework for more context.
HIGH RISK
MEDIUM RISK
LOW RISK