Agreed with your concern. FWIW, I think the “one-shot messaging” solution proposed by @JensGroth would be a great-to-have option for canister developers. A developer can elect to send a “one-shot message” to an untrusted canister if they’d like.
1 Like