We observed an issue where email security scanners, used by some customers, automatically click on links in emails to detect potential threats.

As a result, unsubscribe links present in request notification emails are being triggered without any human interaction, causing users to unintentionally unsubscribe from important notifications.

To mitigate this, we propose introducing friction in the unsubscribe flow. This could include one or more of the following measures:

• Adding a confirmation page before completing the unsubscribe action.
• Using CAPTCHA or similar verification to ensure human interaction.
• Including an explicit "Confirm Unsubscribe" button after the initial link click.

The goal is to ensure that unsubscribe actions are intentional and only performed by actual users, thereby preserving the user’s notification preferences and preventing accidental loss of important communication.