Replying to @neurovagrant@masto.deoan.org
@neurovagrant OMG is this as big and basic a secure design flaw as I think it is: trusting the client will faithfully cache server generated tokens, when we know that "role": "assistant" tagged tokens get a self-trust boost. That's like an online shopping site letting me upload my cart and name the prices for my order.
Once again: is nobody threat modeling at all or are they missing elephant sized threats somehow?