For the purpose of full transparency and being able to check for local policy compliance, would it be possible to include in the user creation log when an account is created and the creator overrides the blacklist and/or spoofing checks?
Both of my examples come from enwp;
- Account creators are expected to follow certain criteria when overriding either, and more importantly,
- Part of the criteria for granting temporary account creation to those who host events is that they don't use those features
This would allow for a mechanism to make sure that both of these requirements are meet. Moreover, I don't think it hurts to log anything... it allows people to spot abuse and other (miscellaneous) breaches of various policy for a privileged tool on all WMF projects.