Yes you are right. I think no one should have ever access to your account. In my opinion utopian shouldn't have possibility to make these changes. If they need some additional informations for interior proccessing these informations could be added for example in the comment.

@mys if you want to know more how my solution works I released youtube tutorial:

It is also mentioned in next pull request and in project documentation.