Schedule 4: ZKsync Guardians
1. Overview
The ZK Credo sets out the vision and values of ZKsync ("the Mission"). The Mission is protected by Guardians, who have the independent power to veto governance proposals that are inconsistent with the ZK Credo. This includes the power to veto governance proposals that are abusive, malicious or could otherwise adversely affect ZKsync or its governance system. The Guardians' decisions are made at their sole discretion.
The Guardians are not required to assess the legality of governance proposals.
For the powers of the ZKsync Association with respect to content (e.g. proposals) related to the ZKsync governance system shown on its controlled online interfaces, please refer to Section 5.2.
Guardians are a governance body consisting of a minimum of five (5) individuals who are Signers (as defined the Overview) of a multisig wallet ("Guardian Multisig") that has the ability to exercise veto powers and approve Protocol Governor proposals during the Risk Review Period, and approve Emergency Responses related to the ZKsync protocol.
Legal obligations of Guardians are governed by the bylaws of the ZKsync Guardians Foundation, a Cayman foundation.
2. Veto Powers
When Guardians exercise either an Onchain Veto or an Offchain Veto (as defined below), they are required, as a governance body, to communicate a justification for their actions in the ZKsync Forum (https://forum.zknation.io) within 48-hours of exercising a veto.
3. Onchain Veto
The Guardians may exercise an onchain veto on any proposal submitted to the Token Governor or the GovOps Governor ("Onchain Veto").
With the signatures of five (5) Signers on the Guardian Multisig, the Guardians have the power to execute an Onchain Veto by calling the cancel function from the Guardian Multisig, which means the proposal cannot progress towards execution.
The Onchain Veto may be exercised during the Vote Delay Period or during the Voting Period on the relevant Governor.
4. Offchain Veto
An offchain veto, communicated as a digitally signed written statement transmitted to the Security Council by electronic messaging ("Offchain Veto"), may be exercised with respect to any proposal or group of proposals submitted to the Protocol Governor.
Guardians may also exercise their veto in relation to proposals submitted to the Protocol Governor that affects the Guardians themselves.
With a written statement signed by five (5) Guardians, the Guardians may exercise an Offchain Veto by communicating the signed statement to the ZKsync Security Council Foundation.
The Offchain Veto may be exercised at any time during the three (3) day Timelock Period that commences at the end of the Voting Period for a proposal that has been approved by Delegates on the Protocol Governor ("Offchain Veto Period").
With the signatures of two (2) Signers on the Guardian Multisig, the Guardians may execute an onchain transaction to extend the Offchain Veto Period from three (3) days to seven (7) days, if the extension is executed within the first three (3) days of the Offchain Veto Period.
5. Risk Review
With the approval of five (5) Signers on the Guardian Multisig, the Guardians may approve a Protocol Governor proposal during the Risk Review Period, as defined in Schedule 3: ZKsync Security Council, if the Security Council, for any reason, is unwilling or unable to approve the proposal.
Where Guardians approve a Protocol Governor proposal during the Risk Review Period, that approval will be executed onchain 30 days after the Risk Review Period commences.
6. Emergency Upgrades
The Guardian Multisig is one (1) of three (3) Signers required to approve an Emergency Upgrade.
Any individual Guardian is able to submit an Emergency Upgrade for onchain approval, provided the intention of the Emergency Upgrade is to protect the Mission.
An Emergency Upgrade requires onchain approval from five (5) Signers on the Guardian Multisig, along with approvals from the Security Multisig and the ZKsync Foundation Multisig, in order to be executed.
7. Guardian Membership
The initial Guardians are selected by the Governance Lead of the ZKsync Association.
The total number of Guardians on the Guardian Multisig may be increased by a proposal on the Protocol Governor.
Term
Guardians will act as Signers on the Guardian Multisig until they are removed or replaced in accordance with the specifications in this schedule.
Removal of Guardians
Guardians may be removed from the Guardian Multisig by passing a Protocol Governor proposal (it being understood that Guardians have veto power over such proposals).
Replacement of Guardians
Guardians will recommend candidates to replace any Guardian that is removed from the Guardian Multisig.
A Protocol Governor proposal, approved by Delegates, is required to be executed (i.e. no Offchain Veto is passed) in order to add a Guardian to the Guardian Multisig.
Last updated