The Governance role is granted to the DAO governance contract. It acts as the default admin for all other roles, unless another admin has been appointed by Governance. This role has full control over the RBAC system, allowing it to create new roles, add/remove from roles, change the admins, etc. In addition, the Governance role can call setPerformanceFeeCollector to assign a contract for collecting and paying out performance fees. And, in case of an exploit, only Governance can call rescueTokens to pull all funds from all contracts.