Security Hub adds visibility, not custody. Your keys, your signers, and your signing rules are untouched. It reads your account and tells you where it stands. Nothing about how your Safe executes changes.
Safe{Labs}
15 July 2026
)
Most teams find out about a misconfiguration after it costs them something. A signer that was never removed. A threshold of one that nobody meant to keep. A module installed for a one-time task and never reviewed again. The information was always onchain. It was just never in one place.
The Workspace Security Hub puts it in one place. It runs 12 automated checks against your Safe's onchain configuration, deployment history, and operational state, then returns a single security strength score with a card for every check. Open it from any Safe, on every supported network. No setup, no integration, no new tool to learn.
The score is honest by design.
The goal is not to flatter you. If any check is Critical, like a single signer or a blocklisted address, the strength score is capped no matter how clean everything else looks. A fundamentally insecure account never shows as strong. Each check carries its own severity grade, from low to critical, so you can tell the difference between something worth monitoring and something that needs action today.
Security Hub reads the parts of a Safe that quietly drift out of a secure state.
It looks at your account setup, flagging a single signer, a threshold of 1, or a threshold below a simple majority. It screens every signer against sanctioned and malicious-address exposure, so a flagged or compromised key surfaces before it approves anything. It checks your contract version against known official deployments, and flags custom or unrecognized implementations.
It reviews the components that hold real power over the account. An unverified module has full control over a Safe and can move funds without signer approval, so untrusted modules, guards, and fallback handlers are surfaced clearly. It confirms recovery is configured, so the account survives the loss of a key. It verifies your deployment came from an official Safe factory, and on multichain Safes it checks that your signer setup is consistent on every network. It even watches your transaction queue, because a backlog of stale transactions can execute against intentions that no longer hold.
Every finding comes with a plain-language recommendation and a direct route to fix it. You get a posture you can monitor, not a report you have to commission.
Security Hub adds visibility, not custody. Your keys, your signers, and your signing rules are untouched. It reads your account and tells you where it stands. Nothing about how your Safe executes changes.
Access follows the Safe. Owners with a connected wallet can view it, and so can members of a Space that contains the account, so a security lead can review posture without holding a key.
Safe holds more than $60B in onchain assets across more than 25 networks, and the teams that rely on it include GnosisDAO, Aave, ENS, Worldcoin, and Mantle. The Workspace Security Hub is how every one of those accounts can now see its own security clearly, in one place, in real time.
Open the Security Hub from any Safe and read your score.
Safe{Labs}
15 July 2026
Copy link
