Technology

Code Is Not Always Law: Inside the Deliberations That Led Arbitrum to Freeze $71 Million

A detailed account of how Arbitrum's Security Council debated, decided, and executed the emergency freeze of 30,766 ETH linked to the Kelp DAO exploit — and why the episode has forced a reckoning with what decentralization actually means when a twelve-person committee can override the finality of chain-held funds.

Written By :
MINRK
MINRK
Code Is Not Always Law

1. The Decision Nobody Wanted to Make

When the Kelp DAO exploit became clear on the evening of April 18, Offchain Labs co-founder Steven Goldfeder described the Security Council's starting point as inaction — not intervention. According to Goldfeder, the starting point was inaction: the default assumption was that the council should not act, and that the bar for any intervention would need to be extraordinarily high. CoinDesk What followed was not a quick decision. Security Council member Griff Green described the deliberations as involving "countless hours of debates, technical, practical, ethical and political" before any action was taken. CoinDesk The council was wrestling with a question that has no clean answer in DeFi: when a state-sponsored actor has stolen $292 million and a portion of those funds are sitting on a network you govern, what is the right thing to do?

2. What the Freeze Actually Required

The mechanics of what Arbitrum describes as a "freeze" are more active than the word implies. Technically, the move required the use of privileged powers to transfer funds out of the attacker-controlled address and into a wallet with no owner, effectively rendering them immobile. CoinDesk The council did not merely put a block on the address — it reached into an external wallet held by the exploiter and moved the assets without the holder's consent. That distinction, between passively preventing movement and actively transferring control, is at the center of the decentralization debate the action triggered.

Nine of the twelve council members voted to execute the action. The transfer completed at 11:26 p.m. ET on April 20, according to Arbitrum's statement, with the council saying it acted with input from law enforcement regarding the exploiter's identity and conducted technical diligence to confirm no other chain states or Arbitrum users were affected. Yahoo Finance The frozen funds now sit in an intermediary wallet that can only be accessed through a further governance vote by ARB token holders — a procedural constraint designed to prevent the council from making the final disposition decision unilaterally.

3. The Transparency Defense

Arbitrum's leadership was direct about the fact that these powers exist and have always been visible. Patrick McCorry, head of research at the Arbitrum Foundation, emphasized that the Security Council is "a very transparent part of the system" — "You can see exactly what powers they have" — and noted that the council is elected by token holders every six months rather than hand-picked by Arbitrum Foundation or Offchain Labs. CoinDesk The argument is that users who chose to hold assets on Arbitrum accepted a system in which an elected emergency committee had these powers. The capabilities were documented; no one was deceived about the existence of the mechanism.

Helius CEO Mert Mumtaz defended the intervention, arguing that Arbitrum's governance model is well understood and that using its control mechanisms during an exploit is appropriate, adding that a multi-signature security council reduces reliance on a single point of failure and reflects a level of decentralization comparable to some layer-1 networks. DL News The counterargument — that transparency about centralized power does not make that power less centralized — was immediately forthcoming from critics across the ecosystem.

4. The Philosophical Fault Line

In its purest form, decentralization implies that no individual or group can unilaterally interfere with transactions once they are executed, often summed up by the phrase "code is law." Critics worry that if a small group can step in to stop a hacker, the same mechanism could, in theory, be used in other situations — whether under regulatory pressure or political influence. The concern is less about this specific case and more about precedent: if intervention is possible, where is the line drawn, and who decides? CoinDesk

Commentator Deestar argued that "while this is really great news, it's a proof that almost nothing in crypto is truly decentralized," pushing the point further: "If your government comes after your money, only Bitcoin can save you." Decrypt That framing — drawing a direct line from the Arbitrum freeze to the possibility of government-directed confiscation — represents the extreme end of the critical response, but it articulates the structural logic that underlies more measured concerns. The mechanism demonstrated is the same regardless of how justified its application was in this specific instance.

Curve Finance founder Michael Egorov offered a more cautious view, noting that while the action may have been justified, it could lead users to reassess the neutrality of such networks. DL News That reputational cost — reduced confidence in the censorship-resistance guarantees of layer-2 networks more broadly — may prove to be the more lasting consequence of the intervention than the $71 million itself.

5. The Insiders' Framing: A Necessary Tradeoff

Arbitrum insiders argued the powers were always transparent and necessary for security, framing the decision as a tradeoff: sacrificing some decentralization purity to prevent stolen funds from being lost and to maintain the ability to respond to critical threats. CoinDesk That framing acknowledges the tradeoff explicitly rather than denying it — an unusual degree of intellectual honesty for a blockchain network defending an intervention that its critics are characterizing as centralized overreach.

David Hoffman of Bankless supported the move, describing it as an example of coordinated decision-making in response to an urgent threat, and suggested it could help define how decentralized systems respond to similar incidents. DL News The constructive reading of the episode is that it has generated the first live, high-stakes data point for what responsible layer-2 emergency governance looks like — a template that other networks can evaluate and either adopt or reject based on their own values and user expectations.

6. The Precedent Question and What Comes Next

The frozen $71 million now awaits an ARB governance vote that will carry weight well beyond its immediate subject matter. The options likely to be presented to token holders — return the funds to Kelp DAO users, hold them pending law enforcement proceedings, or some combination — each carry implications for how DeFi governance is expected to behave when it has custody of assets whose origin is criminal but whose ultimate beneficial owners are disputed.

Others noted that attention should focus on accelerating the transition of rollups to more trust-minimized systems DL News — a response that accepts the current tradeoff as temporary while pointing toward an architecture that eventually removes the need for it. If zero-knowledge proof-based systems can eventually verify cross-chain state without requiring any trusted intermediary, the kind of emergency council governance that Arbitrum exercised this week becomes unnecessary. Until that architecture is production-ready at scale, the choice is between emergency powers that can be misused and no emergency powers at all — a choice the Kelp DAO exploit has made unavoidable.

Related Articles

NEWSLETTERS

Don't miss another story.

Subscribe to the MINRK Newsletter today.

By signing up, you will receive emails about MINRK products and you agree to our terms of use and privacy policy.

Crypto Daybook Americas

Market analysis for crypto traders and investors.

EVERY WEEKDAY

Crypto for Advisors

Defining crypto, digital assets and the future of finance for financial advisors.

EVERY THURSDAY

The Protocol

Exploring the tech behind crypto one block at a time.

WEEKLY

Crypto Long & Short

A must read for institutions. Insights, news and analysis delivered weekly.

EVERY WEDNESDAY

CoinDesk Headlines

The biggest crypto news and ideas of the day.

EVERY WEEKDAY

State of Crypto

Examining the intersection of cryptocurrency and government.

WEEKLY

Research Reports

Join thousands of readers who rely on MINRK for data-driven insights on the latest digital asset trends.

MONTHLY