Change asset definitions such that the default is Semi-destructible, where it can only be destroyed with consent. This prevents a (pretty common) bug where an asset is unintentionally destructible from causing scammy behavior.
I probably don't have enough time to write this tonight so I'm just
going to solicit feedback on this idea.