There is a risk that an attacker might try to get an exchange rate based on the rates of a small number of exchanges into the cache by timing the request carefully.
The CMC might then be served this rate.
This PR changes adds the restriction that cached rates may only be served to all privileged canisters if they are based on a specific minimum number of collected rates.
There is a risk that an attacker might try to get an exchange rate based on the rates of a small number of exchanges into the cache by timing the request carefully. The CMC might then be served this rate.
This PR changes adds the restriction that cached rates may only be served to all privileged canisters if they are based on a specific minimum number of collected rates.