Welcome back for issue 44 of the Tally Newsletter, a publication focused on all things decentralized governance. We’ll keep you updated on key proposals, procedural changes, newly launched voting systems, shifting power dynamics, and anything else you need to know to be an informed citizen. 

This week we cover a governance bug discovered in Uniswap proposal 8, plus brief updates from the governance ecosystem.

Uniswap Resolves Governance Upgrade Bug

TL;DR: Proposal 8, which upgraded governance contracts, contained an undiscovered flaw which could have prevented proposals from executing properly.

Governance changes are some of the most critical upgrades for defi protocols, as governance contracts control all of the other admin privileges and upgrade paths available to the protocol. In the past week, Uniswap faced a close call where their governance upgrade almost caused significant issues.

Uniswap Proposal 8

Proposal 8 upgraded Uniswap governance from Governor Alpha to Governor Bravo, a newer version of the contract developed by the Compound community. Governor Bravo offers easier upgradability for governance in the future without requiring contract migrations, along with a few other user experience and safety features. 

The proposal received broad support from voters, but despite the high visibility a bug was able to slip into production.

hayden.eth 🦄 @haydenzadams

1/3 Uniswap community members recently proposed upgrading Uniswap governance contracts to Bravo (also used by Compound gov). Today, a Labs team member discovered a minor issue that would have made the next 8 votes ineffective. Now fixed, governance working!

August 31st 2021

11 Retweets141 Likes

In this case, the governor contract was initialized with incorrect variables, which would have rendered the first 8 proposals submitted to the new contract invalid. Luckily, submitting 8 placeholder proposals was able to resync the “proposal count” and “initial proposal count” values to allow future proposals to execute properly. 

While this bug was resolved without further issues, it points towards the importance of code reviews for governance proposals. In a worst case scenario, faulty proposals could lock governance and render protocol admin privileges and funds inaccessible. And while one might expect large holders and funds to independently check upgrades, in truth many of these actors lack the capacity and direct incentives to undertake deeper reviews. Protocols may consider retaining auditors or hiring an in-house dev team to provide an additional layer of security for critical code changes.

In Brief:

• Uniswap Labs faces SEC investigation:

The Block @TheBlock__

SEC is investigating decentralized crypto exchange developer Uniswap Labs: Report SEC is investigating DEX developer Uniswap Labs: ReportThe U.S. SEC is reportedly investigating Uniswap Labs, the startup behind the largest decentralized cryptocurrency exchange.theblockcrypto.com

September 3rd 2021

123 Retweets358 Likes

• Fei Protocol moves towards broader liquidity incentives with optimistic governance approval:

Fei Labs @feiprotocol

The TribalChief staking rewards upgrade has just been proposed on-chain! 🗳️withtally.com/governance/fei… Voting will be live in 10 hours and last for 36 hours 🌲Proposal 18 for Fei governanceBe up to date with the voting on proposal 18withtally.com

September 2nd 2021

6 Retweets15 Likes

• Index Coop votes on a framework for submitting proposals in underlying governance systems:

Index Coop @indexcoop

IIP-080 - Meta Governance Proposals [MGP] Process has been live for over 48 hours and has not reached quorum! This proposal introduces a large change to our governance structure and we encourage everyone to vote! 137K INDEX is still required for quorum! Snapshotsnapshot.org

September 3rd 2021

1 Retweet6 Likes

• Gauntlet seeks feedback from the Aave community on preferred risk exposures:

Aave Grants DAO @AaveGrants

👻 Aavengers - Reminder to vote in the Snapshot to assess the risk appetite of the Aave DAO Risk options are aggressive, moderate and conservative 'Moderate' is currently edging out 'Aggressive' snapshot.org/#/aave.eth/pro…

Aave @AaveAave

An ARC has been created by @inkymaze from @gauntletnetwork with three distinct levels of preferred risk tolerance for Aave V2 👻 Proposal here: https://t.co/3s1FepiFhh Snapshot open: https://t.co/mBJnkUYWE6

September 3rd 2021

1 Retweet5 Likes

• Analyst DAO seeks to connect defi and web 3 focused analysts with opportunities: ​​

Analyst Dao @AnalystDao

For years, the word “analyst” has been associated with Wall Street, the capital of the centralized financial world.

September 1st 2021

28 Retweets117 Likes

Thanks for joining us for issue 44 of the Tally Newsletter. Be sure to check out the Tally governance app and join us on Discord for the latest updates!

Anything we missed? New developments or protocols you’d like to see covered? Drop us a line at newsletter@withtally.com

Best,

Nate, Tally