The attacker can steal rewards from AutoCompoundingPodLP because in _processRewardsToPodLp, the rewards from TokenRewards are not distributed

Attacker can steal rewards in AutoCompoundingPodLp because he can revert the compounding with slippage

The attacker can steal rewards from spTKNs because they can influence the fee processing by making a direct token transfer to the pod when the fees are below the minimum

Pods with `hasTransferTax` set to `true` have an incorrect `totalSupply` because the burn fee is applied recursively to itself

Swapping in _acquireBorrowTokenForRepayment is not working when the sell fee is enabled because the swap does not support fee-on-transfer tokens

Transferring of _userProvidedDebtAmtMax does not work in _acquireBorrowTokenForRepayment because _props.sender is never set, which leads to a transferFrom call from address(0), causing the transaction to revert

`transferReserveToAuction` uses the wrong period, which is why `endAuction` will always fail, and the bidders' bids will be locked

An attacker can get many shares with a flashloan within one transaction and thus receive a lot of rewards and cause auctions to fail without having to permanently deposit reserve tokens.

There are shares in a period with failed auctions, which leads to some users receiving rewards from other users from successful periods