While I didn't work on indian regulations, I've worked directly on 2FA/OTP with recurring charges. For this regulation, the recurring charge must be initiated with an OTP code, but subsequent charges may happen automatically. There should also be an exception process to allow preexisting standing instructions to continue.
It's not strictly required, but you need a high reputation email address verification. For example, a custom domain email will not work, but gmail or outlook.com will allow you to make an account without a phone.
Meanwhile, I see fleets of user-bots happily chugging along under the radar hoovering up data. Just like the post author said:
> the crux of malicious bots were, and still are, user-bots.
Seems almost laughable that Discord is making hoops for legitimate bot developers to jump through while taking little action against user-bots.
I suspect that Discord wants to get a chunk of the big money that game bot developers are making, and are pushing bot developers into a more rigid API that will eventually include in-app-purchases. The article author also said:
> No longer will bots thrive with a sandbox limited only by your imagination, but instead Discord is now the sole gatekeeper of approved use cases. The future of Discord bots relies solely on the interaction system; things have to be explicitly written and supported by Discord employees
Tried to ask the Matrix devs about room emotes being broken on Android (though they work on web) and they just ignored me completely. Matrix is simply half baked and somehow barely works so that I keep using it. But they aren't even close to the point where things just work.