From dae4355951a94ab52fd5fec396e4ba64afa3f07e Mon Sep 17 00:00:00 2001
From: Hoid <hoid@openclaw>
Date: Tue, 17 Feb 2026 11:44:38 +0000
Subject: [PATCH] Session 48d: removed Change Email feature (security
 hardening)

---
 projects/business/memory/sessions.md | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/projects/business/memory/sessions.md b/projects/business/memory/sessions.md
index 5229b11..69a5a5d 100644
--- a/projects/business/memory/sessions.md
+++ b/projects/business/memory/sessions.md
@@ -1128,3 +1128,10 @@
   - Add `customer.updated` AND `customer.subscription.updated` to Stripe webhook events
   - Fix MX DNS record (BUG-050)
   - Enable Stripe invoice emails (BUG-049)
+
+## Session 48d — 2026-02-17 11:38 UTC (Security Hardening)
+- **REMOVED Change Email feature entirely** (investor decision — security issue: leaked API key = account hijack)
+  - Deleted: change-email.html page, email-change.ts API routes, footer links, sitemap entry
+  - Kept: Stripe `customer.updated` webhook for Pro email sync, `updateEmailByCustomer()` in keys.ts
+  - Commit f5cea97 deployed, verified: /change-email returns 404, zero references in HTML
+- Free tier users can create new key with new email; Pro users get email synced from Stripe