Upgraded Q -> 2 from #17 [1728912210729]

[c4-judge]

Judge has assessed an item in Issue #17 as 2 risk. The relevant finding follows:

[L-01] AccessControlHooks::onQueueWithdrawal missing validation

[c4-judge]

3docSec marked the issue as duplicate of #11

[c4-judge]

3docSec marked the issue as satisfactory

[3docSec]

In some cases this would allow a malicious user to unset a victim’s credentials via _tryValidateAccess()

☝️ this is the passage that gets this upgrade full credit