M-08 MitigationConfirmed

[c4-bot-8]

Lines of code

Vulnerability details

Comments

in the previous implementation

In extreme cases, emitLoan() can reuse signatures, but it must satisfy the following conditions:

1. The expiration time is set too long.
2. The user has repaid the previous amount and has set NFT authorization.

Since the situation is quite extreme, the choice is not to modify the code, which I personally think is acceptable. However, add a comment

Only adding a comment here. Borrower should always set block.timestamp +small time delta as expiration to control when the loan can be started.

[c4-judge]

alex-ppg marked the issue as satisfactory