It's more than possible; it's very likely. Imagine spending a month of full-time work to find an inflation bug, but the bounty is not worth it. You'd be tempted to quietly inflate the supply of Monero in order to compensate yourself for the time you spent working. And then you'd disclose the bug to prevent someone else from finding it and making Monero worthless, which would prevent you from exploiting future inflation bugs. So there is a very clear risk/reward ratio for finding and subtly exploiting inflation bugs in Monero.

What's more, Monero developers, notably FluffyPony, say that you shouldn't hold XMR -- that you should only hold it long enough to buy something. This is the opposite of what most other cryptocurrency developers say, which is to buy and hold. I have to wonder if some of the Monero developers are subtly trying to keep people from getting wrecked in the event that some random person finds an inflation bug and dumps on all the exchanges.

A lot of useful info in the sidebar: https://www.moneroinflation.com/ "We are 9y 114d 11h 20m 29s without an inflation bug" (i.e. since the launch of Monero in 2014) and here: https://sethforprivacy.com/posts/dispelling-monero-fud/#you-cant-audit-the-monero-supply

Block rewards are transparent and can be seen in any block explorer such as https://xmrchain.net

Nodes verify the supply via cryptographic range-proofs, meaning that it can be mathematically proven for every transaction that inputs - outputs = 0, without publicly revealing the exact amounts (only the sender and recipient can decrypt the encrypted amounts).

exactly!