Currently, _addTokenToList is not done for both XTransfer and XTransferWithCall actions. This can result in dormant contract funds being used or unintentionally leaving funds in the contract.
Remediations to consider
While this issue is not considered severe since there are other ways of sweeping the contract,
consider adding tokens to the tokensToCheck list as is done for all other actions to remove this exposure completely.
Description
Currently, _addTokenToList is not done for both XTransfer and XTransferWithCall actions. This can result in dormant contract funds being used or unintentionally leaving funds in the contract.
Remediations to consider
While this issue is not considered severe since there are other ways of sweeping the contract, consider adding tokens to the
tokensToCheck
list as is done for all other actions to remove this exposure completely.