Per this post, the multisig is responsible for invalidating vote results that are manipulated. This presents minimal governance risk for cUNI, but I think this might be less viable for cCOMP. As a general safety principle, multisigs that receive power delegated from governance shouldn’t control execution of pooled votes for that same governance.
2 Likes