Funny, I'd assume we'd got consensus on that one.

- Anyone who recommends disabling paste as a security feature is a fraud

- Doing UA sniffing is always a mistake

- If the user's browser doesn't support `autocomplete="cc-number"` then they're already used to it not working, you don't need to care about it

- You should always make your form as accessible as possible regardless of if the user is a robot or visually impaired

- Making your website intentionally inaccessible may be a federal crime in the USA as the ADA doesn't care what you think about openclaw.