Great analogy with the bank withdrawal. As a dev, I've seen loops that iterate over unbounded arrays become the most common DoS trap in practice—it's easy to miss during testing until the list grows. This post rightly highlights that the vulnerability is often in the logic, not just the gas.