Withdrawals can be halted for all users with external staking

Users lose premium gained when enrolled to `mintRollovers`

Emissions sent to empty vault is forever locked

Freshness of pricefeed not checked properly

Initial user can skew vault ratios to steal funds from later users

Incorrect threshold update in `reconcileSignerCount`

Hats can be overwritten

Contract breaks if `targetThreshold` is ever reduced

Decimal error in reward debt handling

Incorrect caching of rewards by the `withdraw` function

Starting timestamp can be bypassed by calling `settle`

Users can skip withdrawal timelocks by spamming requestWithdrawal every cycle

IchiLP token pricing mechanism vulnerable to price manipulation

Interest earned through lending is forever locked in bank contract

Miscalculation of farmed ICHI rewards

`reducePosition` in IchiVaultSpell checks max LTV against stale debt values

Bounties can be broken by funding them with malicious ERC20 tokens

Refunds can be bricked by triggering OOG (out of gas) in DepositManager

Issuer can be frontrun with spam tokens to brick bounties

Approval in PerpDeposit.sol can be exploited to cause loss of funds

Orders can be matched multiple time costing multiple premiums

Re-entrancy in certain functions

Missing order validation in reclaimContract function

Allow changing of recipient for withdrawToken

Non Liquidatable Accounts