1. Unbounded Canvas Field in createStrategySchema Enables Memory Exhaustion DoS Risk
A MEDIUM-severity security vulnerability has been identified in the `createStrategySchema` validation schema, where the `canvas` field permits unlimited record keys and arbitrary JSON values without size constraints. The offending code, located at `src/index.ts:59`, uses `z.record(z.string(), z.unknown()).optional()`, ...