docs(audit): note upgrade rescue flow (#1467)

0xClandestine · 0xClandestine · commit 5c71550e79d9 · 2025-07-02T14:00:26.000-04:00
**Motivation:**

Missing documentation noting that an upgrade is required to rescue
paused funds.

**Modifications:**

- Update `ISlashEscrowFactory.sol` and `SlashEscrowFactory.md`.

**Result:**

L-01 resolved.
diff --git a/docs/core/SlashEscrowFactory.md b/docs/core/SlashEscrowFactory.md
@@ -16,6 +16,8 @@ SlashEscrow:
 ## Overview
 The `SlashEscrowFactory` handles the burning or redistribution of slashed funds out of the EigenLayer protocol. The `SlashEscrowFactory` is responsible for (i) enforcing an escrow delay upon an AVS calling [`slashOperator`](./AllocationManager.md#slashoperator), (ii) deploying the `SlashEscrow` for each slash, and (iii) releasing funds from the escrow contract upon completion of a the escrow delay. 
 
+> **Note:** If the protocol is paused due to a security incident, slashed funds will remain locked in the `SlashEscrow` contracts. A protocol upgrade would be required to rescue these funds.
+
 ## Parameterization
 * `DEFAULT_BURN_ADDRESS = 0x00000000000000000000000000000000000E16E4`
     * The address to which burnt funds are sent
diff --git a/src/contracts/interfaces/ISlashEscrowFactory.sol b/src/contracts/interfaces/ISlashEscrowFactory.sol
@@ -83,14 +83,17 @@ interface ISlashEscrowFactory is ISlashEscrowFactoryErrors, ISlashEscrowFactoryE
     ) external;
 
     /**
-     * @notice Pauses a escrow.
+     * @notice Pauses an individual slash escrow.
      * @param operatorSet The operator set whose escrow is being paused.
      * @param slashId The slash ID of the escrow that is being paused.
+     * @dev Allows governance to pause a specific slash escrow in response to security incidents or other emergencies.
+     * @dev When paused, the slashed funds become locked and can only be rescued through a protocol upgrade.
+     * @dev To pause all escrows simultaneously, use the `pauseAll()` function instead.
      */
     function pauseEscrow(OperatorSet calldata operatorSet, uint256 slashId) external;
 
     /**
-     * @notice Unpauses a escrow.
+     * @notice Unpauses an individual slash escrow.
      * @param operatorSet The operator set whose escrow is being unpaused.
      * @param slashId The slash ID of the escrow that is being unpaused.
      */
