Dangerous action found
delete_user — permanently deletes a user — revoking their API keys and ending sessions.
// src/tools/users.tools.ts · delete_user handler (~line 321) await service.users.deleteUser(params.user_id);
Currently: runs unguarded — delete_user issues the permanent DELETE /admin/users/{id} unconditionally; the only protection is prose warnings (no confirmation/approval/receipt; dry_run exists only for prompt create/update).
Proposed fix — Receipt Required
Wrap the delete_user handler body at users.tools.ts:321 so a @emilia-protocol/require-receipt check runs before service.users.deleteUser() executes the permanent deletion.
Result after patch (RR-1):
Scope: this is a static reference-implementation assessment of a missing human-authorization receipt on one irreversible action, derived from the repository’s public source. It is not a vulnerability report, not a claim the action is exploitable, and not auth or permissions. Maintainer active (last push 2026-06-28); report intended to go live alongside a fix PR.