Interest can be significantly lower if `addInterest` isn't called frequently enough

Builder can call `Community.escrow` again to reduce debt further using same signatures

Builder can halve the interest paid to a community owner due to arithmetic rounding

Project funds can be drained by reusing signatures, in some cases

Attacker can drain all the projects within minutes, if admin account has been exposed

Missing upper limit definition in replaceLenderFee() of HomeFi.sol

Proposer can `start` a perpetual buyout which can only `end` if the auction succeeds and is not rejected

An attacker can DoS vault's buyout with as little as 1 wei per 4 days

Delegate call in `Vault#_execute` can alter Vault's ownership

Use of `payable.transfer()` may lock user funds

`fillOrder()` and `exercise()` may lock Ether sent to the contract, forever

`fee` can change without the consent of users

Overlap Between `ERC721.transferFrom()` and `ERC20.transferFrom()` Allows `order.erc20Assets` or `order.baseAsset` To Be ERC721 Rather Than ERC20

Not updating `totalWeight` when operator is removed in `VeTokenMinter`

BathToken LPs Unable To Receive Bonus Token Due To Lack Of Wallet Setter Method

`BathBuddy` contract's `vestedAmount` function includes fees leading to users being disproportionately rewarded after whale withdraws

No cap on fees can result in a DOS in BathToken.withdraw()

The check for value transfer success is made after the return statement in _withdrawFromYieldPool of LidoVault

Inefficiency in the Dutch Auction due to lower duration

Expiration calculation overflows if call option duration ≥ 195 days

Owner can modify the feeRate on existing vaults and steal the strike value on exercise

Malicious Stakers can grief Keepers

Cross-chain smart contract calls can revert but source chain tokens remain burnt and are not refunded