Document DOGE DOOM vulnerability discovered by walkeruin

Walkeruin discovered a clever attack vector where micro-underpayments (~$0.01 USD worth of DOGE) create economically unviable refund obligations that exceed network transaction fees, causing the system to get stuck in endless retry loops.

The vulnerability exploits the economic reality that DOGE network fees (~0.001-0.008 DOGE) can exceed tiny refund amounts, making refunds impossible while consuming system resources through constant retries.

Documented with:

• Attack vector analysis
• Economic threshold calculations
• Impact assessment
• Proposed mitigation strategies
• Recommended minimum refund thresholds

This represents a legitimate resource exhaustion vulnerability that could be exploited to clog the payment processing system.

Summary by CodeRabbit

• Documentation

  • Added a detailed DOGE vulnerability report with impact, reproduction logs, fee/economic analysis, and mitigation recommendations (minimum refund threshold, aggregation, graceful failure).

• New Features

  • Introduced an economic-viability gate for refunds: sub-economic refunds are marked uneconomical, skipped, logged, and assigned new statuses/metadata to avoid futile retries and sweeps.

• Tests

  • Added unit tests covering uneconomical refund scenarios for DOGE and XMR, including a production-like DOGE case.