Admin can "accidentally" liquidate a "good debt"
There is no check on whether the debt is bad or not. So, the admin may accidentally liquidate a normal position.
Admin(devs, not a timelock contract) can use two functions to call a function with or without a time lock. So if devs will use a liquidate position call through a timelock, till the moment of execution of the call after the time lock, the "bad" debt" may become "good" debt.
So a good debt will be liquidated, because of missing the final debt status check before the liquidation.
The user will lose part of his/her funds
Help from God)
Add a check that the debt is "bad" in the fixUser
function.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.