Strengthen multisig guidance: timelocks, separation, address discipline, and key takeaways

[ipatka]

Strengthen multisig guidance: timelocks, separation, address discipline, and key takeaways

---

Revises the multisig security framework based on lessons from real-world multisig operations and emerging risks. Adds a one-page key takeaways summary for quick reference.

Key changes

• Design principles: Added "build in slowness by design," "constrain emergency powers," and "separate responsibilities across multisigs" as foundational principles
• Timelock guidance: Strengthened from "recommended" to "essential" for protocol admin multisigs. Added tiered duration guidance (long/medium/short/none) and a dedicated timelock monitoring section
• Multisig separation: New section on separating multisigs by function with common patterns and a separation table
• Address discipline: New sections on address book hygiene (never copy from explorer history) and permissionless Safe addition / address poisoning risks
• Dedicated keys: Expanded rationale for using separate keys per multisig (wallet clarity + blast radius containment)
• Calldata decoding: Expanded from brief mention to full section covering how calldata works, decoding steps, and common red flags
• Delegated proposers: Corrected and clarified why delegated proposers matter (first signer verification) and why final signer should avoid "sign and execute"
• Solana differences: New section on architectural differences from EVM for multisig verification
• Access control inventory: New guidance on maintaining a comprehensive inventory of all privileged roles, added structured fields to the registration template
• Key takeaways page: New one-page summary distilling the 11 most important principles with links to full sections

Files changed

• docs/pages/multisig-for-protocols/key-takeaways.mdx (new)

• docs/pages/wallet-security/secure-multisig-best-practices.mdx

• docs/pages/multisig-for-protocols/use-case-specific-requirements.mdx

• docs/pages/multisig-for-protocols/setup-and-configuration.mdx

• docs/pages/multisig-for-protocols/planning-and-classification.mdx

• docs/pages/multisig-for-protocols/registration-and-documentation.mdx

• docs/pages/wallet-security/signing-and-verification/secure-multisig-safe-verification.mdx

• docs/pages/wallet-security/signing-and-verification/secure-multisig-squads-verification.mdx

• docs/pages/multisig-for-protocols/joining-a-multisig.mdx

• docs/pages/multisig-for-protocols/overview.mdx

• vocs.config.tsx

• Describe your changes

• If you are touching an existing piece of content, tag current contributors from the attribution list

• If there is a steward for that framework, ask the steward to review it

• If you're modifying the general outline, make sure to update it in the vocs.config.ts adding the dev: true parameter

• If you need feedback for your content from the wider community, share the PR in our Discord

• Review changes to ensure there are no typos; see instructions below.

[github-actions]

Sidebar Configuration Reminder

This PR includes added, renamed, or removed documentation files:

• docs/pages/multisig-for-protocols/key-takeaways.mdx (added)

Please ensure that:

• The sidebar in vocs.config.tsx has been updated to include these files
• New content has the dev: true parameter so it's marked as under development
• Sidebar links match the file paths - use the preview deployment to verify

See Contributing Guide – Sidebar & Navigation for more details.

---

_{This is an automated reminder. If this PR doesn't need sidebar changes, you can ignore this message.}

[github-actions]

built with Refined Cloudflare Pages Action

⚡ Cloudflare Pages Deployment

Name	Status	Preview	Last Commit
frameworks	✅ Ready (View Log)	Visit Preview	7bfce67

[DicksonWu654]

lgtm! I sent a few suggestions in DMs