As another sibling comment have put it, it probably should be short lived or behind a manual verification (passphrase, 2fa,…)