This is an alternative solution to #1. We can add a governance-controlled whitelist for code-ids, such that only whitelisted ones can be used to register AbstractAccounts. Governance should vet these codes to make sure they don't contain malicious logics.