Attacker can drain entire collateral and mint any number of USG

Users Cannot Prevent Liquidation by Migrating Collateral When ONLY Borrowing Is Paused

WrapAndSupplyOnExtensionMarket() will always revert if the gasFees is set to any positive value in tokenGaterway contract

Rebalancer will not work if the first amount to be added in a new window is > (_maxTransferSize - previous windows transfer size)

Uses asset.balanceOf(address) even in the case of ETH

The protocolFees are deducted from the users multiple times for the same period.

decrementing `latestEligibleIndex` results in skipping the assets that was supposed to included with latest price

users can provide duplicate `signatures` to pass the consensus's threshold limit.

User who is allowed to transfer when the transferWHitelistFlag is set cannot actually transfer.

Attacker can DoS user from redeeming shares if user holds climableShares.

disallowing an asset from a subvault leads to the DoS of `redeemQueue.handleBatch()` Operation.

SignatureRedeemQueue doesnt have receive() fn - Unable to redeem shares in eth