Add domain-specific vulnerability entries across 8 domains

[omarinuwa]

Summary

Add 62 not-so-smart-contract entries across 8 domains under a new domain-specific-vulnerabilities/ section, covering vulnerability patterns tied to specific smart contract application areas.

• DeFi Bridge (8 entries): Cross-chain message authentication, arbitrary external calls, native token handling, ERC-777 reentrancy, unchecked return values, gas griefing, cross-chain address assumptions, and missing recovery mechanisms
• Merkle Tree (8 entries): Leaf node collision, empty proof bypass, arbitrary proof length, inverted verification logic, missing claim replay protection, missing leaf context, missing root validation, and unauthorized root update
• Tick Math (7 entries): Negative tick rounding, fee growth underflow, slot0 tick misalignment, tick boundary crossing, tick spacing validation, TWAP array inversion, and unsafe integer downcast
• Voting Governance (8 entries): Flash loan voting, double voting, delegation power manipulation, snapshot timing manipulation, retroactive parameter changes, timelock bypass, execution without quorum, and vote after transfer
• ERC-4337 (8 entries): EntryPoint hash omissions, cross-chain replay, paymaster deposit drain, bundler gas manipulation, unvalidated gas parameters, CREATE2 frontrunning, validation return value misinterpretation, and postOp revert exploitation
• Slippage (8 entries): Missing slippage protection, on-chain slippage calculation, hardcoded values, deadline expiration, unapplied parameters, shared tolerances across operations, wrong-stage checks, and vault donation/inflation attacks
• Precision Loss (7 entries): Division before multiplication, incorrect rounding direction, ratio truncation to zero, conflicting rounding requirements, rounding-induced DoS, decimal mismatches, and fee truncation bypass
• Uniswap V4 Hooks (8 entries): Permission flag misconfiguration, PoolManager bypass, hook reentrancy, state overwriting, spot price manipulation, delta sign convention errors, JIT liquidity fee extraction, and dynamic fee misconfiguration

Also renames the section from evm-domains to domain-specific-vulnerabilities and updates SUMMARY.md, root README, and all navigation files.

Test plan

• Verify all 62 entries follow the existing format (Description, Exploit Scenario, Example, Mitigations)
• Confirm Solidity code examples demonstrate the vulnerable pattern
• Check all internal links resolve correctly in SUMMARY.md and READMEs

🤖 Generated with Claude Code

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
1 out of 2 committers have signed the CLA.

✅ bsamuels453
❌ omarinuwa
_{You have signed the CLA already but the status is still pending? Let us recheck it.}