BAP-578 executeAction Defines Interface Semantics but Lacks Security Constraints for Safe Multi-User Interoperability

[Rollp0x]

BAP-578 currently provides interface-level action semantics(executeAction), but lacks implementation-level security constraints for multi-user shared execution, making safe interoperability difficult in practice.

The reference implementation avoids this issue by omitting the executeAction function, but it does not actually solve the underlying specification-level security gap.