Multisig overview for sidechains

I just now learned that sidechains like polygon have multisig accounts to change the smart contracts. I had no idea this was a thing and am honestly a little insecure to have my funds on polygon now. They write that there are plans to move trust to a DAO if the contract is "battle tested" but who knows what that could mean.

What is the easiest way to find out if a project has multisig accounts that can alter the smart contract? I'd like to know if other solutions like arbitrum have a similar current architecture or if there are solutions where no small group of people has that much power.

I'm aware that this is for security reasons in case there is a bug. To me the fact that only 5 people have that much power is the bigger security risk though.