Missing slippage protection in `AerodromeDexter.sol` `swapExactTokensForTokens()`

Rebalance will be completely dossed if OKX commision rate goes beyond the fee limits

ERC20 Token with rebase/FOT feature

Incorrect set up and logic of `referralInfoMap` in `SystemConfig::updateReferrerInfo` function

Unnecessary balance checks and precision issues in TokenManager::_transfer

`mulDiv()` can round down to 0 in realistic cases, allowing for tax avoidance

Pause and unpause functions are inaccessible

Insufficient checks to confirm the correct status of the sequencerUptimeFeed

Factory deployments won't work correctly on the ZKsync chain

Less Support for Non standard ERC20 tokens such as rebase or FOT

DOS attack by delegating tokens at MAX_DELEGATES = 1024

Not enough protection from MEV during zapping of liquidity

First liquidity provider of a stable pair can DOS the pool

StakingToken.sol doesn't properly handle FOT, rebasing tokens or those with variable which will lead to accounting issues downstream.

Vaults can become immune from liquidation by setting `vault.recipient` to a blacklisted quote token address

Chainlink's `latestRoundData` might return stale or incorrect results

Use of CREATE method is suspicious of reorg attack

Withdrawals logic allows MEV exploits of TVL changes and zero-slippage zero-fee swaps

Lack of slippage and deadline during withdraw and deposit

CompoundConnector.sol misses unclaimed rewards in getPositionTVL, resulting in undervalued positionTVL/TVL

Lack of function to claim reward in `AaveConnector`

`Keepers` does not implement EIP712 correctly on multiple occasions

Noya is not compatible with tokens whose balance changes outside of transfers causing funds to get stuck in the contract

Extra rewards are not updated in curve connector when harvestConvexRewards is called

V3Oracle susceptible to price manipulation

Remove Liquidity has missing reserve1 DUST check, which can make reserve1 to be less than DUST