Access Role Granted / Revoked

Access Role Granted or Revoked defines account or contract access roles, allowing authorized entities to perform specific actions within smart contracts such as minting/burning tokens or pausing the contract. Sudden change in those access roles might indicate, especially when the granted access is given to an account marked as high risk, might lead to a compromise of admin private keys or an exploit in the authorization (like missing access control) in the contract. The Implementation Update event is triggered when a new version of the contract's code is deployed. A change in the code can be done by the proxy admin, when the upgrade functionality is bypassed or when a governance proposal is executed and could control such an update. All of these are attack vectors that can result in a proxy upgrade.