Delegated votes are locked when owner lock is expired

Voters from VotingEscrow can vote infinite times in vote_for_gauge_weights() of GaugeController

If governance removes a gauge, user's voting power for that gauge will be lost.

Ability to steal user funds and increase collateral share infinitely in BigBang and Singularity

BigBang and Singularity should not pause repay() and liquidate()

all deposit and withdraw function in Convex and Curve nativeLP Strategy, apply slippage on internal pricing; which call real-time on chain price from Curve directly and subject to MEV

Option brokers don't handle oracle decimals correctly when calculating payment amounts

Multiple issues with decimal scaling will cause incorrect accounting of hTokens and underlying tokens

setWeight() Logic error

Cross-chain messaging via Anycall will fail

Improper array initialization causes index out of bounds error

VirtualAccount cannot directly send native tokens

Challengers and bidders can collude together to restrict the minting of position owner

Incorrect rollover logic allows modification of other user rollovers

Deposit in queue can be blocked

Rollover delisting causes underflow

Sequencer grace period may exceed epoch end time

End epoch can be triggered when null epoch

Carousel vaults without any deposits will lose emissions

Last Trove may be prevented from redeeming

Deposits can be refunded after closing

Refunds can be blocked by deposits

ERC721 can be deposits as ERC20

Partial refunds can cause the rest of the deposit to be lost

Cooler does not handle all token transfers