Fanz
medium
function approveToRouter add more risk for protocols
it is not likely happen but in case:
- control account using as onlyControl modifier got hacked then set uniRouter to another address then call to approveToRouter then stolen all the funds
- suddenly uniswap pool exploited with approve max the funds could be stolen
Anyway approve max value is bad practices
Protocols could be losing funds
https://github.com/sherlock-audit/2023-05-USSD/blob/main/ussd-contracts/contracts/USSD.sol#L242-L247
Manual Review
Remove approve all funds for router