chore: security audit preparation checklist

[IbrahimIjai]

Create docs/SECURITY_AUDIT_CHECKLIST.md listing all functions that require security review: all CONTROLLER/admin-gated functions, all token transfer paths, the oracle signature verification, the price impact math, and the liquidation formula. For each, state the invariant that must hold and the test that verifies it.

Acceptance criteria:

• Every contract's sensitive functions listed
• Invariants stated for: oracle signing, liquidation threshold, pool solvency
• Test coverage status noted per item
• Checklist can be handed to an external auditor

[Arome8240]

@Arome8240 has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

Can I work this issue?

ℹ️ Repo Maintainers: To accept this application, review their application or assign @Arome8240 to this issue.

[designsage8]

@designsage8 has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

Can i work on this ??

ℹ️ Repo Maintainers: To accept this application, review their application or assign @designsage8 to this issue.

[drips-wave]

Congratulations, @designsage8! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on June 2, 2026.

🧑‍💻 @designsage8: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are awarded when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊