[Security] AST-12: Inconsistent recvWindow Documentation Between Spot and Futures #89
Description
AST-12: Inconsistent recvWindow Documentation Between Spot and Futures
Severity: INFO
Affected File(s): aster-finance-spot-api.md, aster-finance-futures-api.md
Description
Spot docs state max recvWindow is 60 seconds. Futures docs only recommend 5000ms without stating the maximum. Inconsistent documentation creates confusion for developers.
Impact
Developer confusion about the actual maximum recvWindow value for the futures API.
Recommended Fix
Add explicit maximum recvWindow documentation to the futures API docs, matching the spot docs format.
Methodology: Triple-verification static analysis -- each finding verified across three independent code review passes.
Researcher: Independent Security Researcher -- Mefai Security Team