Public repos on BB cloud are an attractive target for spammers, and the tools available to repo admins for dealing with spamming and defacement attacks on our public issue trackers and pull request comments are woefully inadequate.

Repo administrators need more tools to immediately and permanently deal with an spam/defacement attacker in a timely manner. When an attack recently happened, I marked the first few defacements as spam, but that did NOT prevent the attacker from continuing their abusive behavior. I finally had to disable our entire issue tracker in order to stop the malicious activity, denying all our users access to this resource for over 24 hours while awaiting response to an Atlassian support ticket (which eventually led to a global ban of the spammer's account for TOS violation).

As a repo administrator *I want a button or configuration option to instantly BAN a given user from creating any issues or comments anywhere on MY repo*. This would give me a simple mechanism to deal with an attacker in a timely manner, without needing to wait for the latency of an Atlassian support ticket to end an attack. Optionally this would also create an abuse report to Atlassian, so that spammers who are flagged as banned by multiple repos would be evaluated by support personnel for TOS violation to justify a global ban.

Lacking such a feature, all BB cloud public repos are very vulnerable to defacement by malicious actors.