bum2
commented
5 years ago That is only possible because you are an admin and you can see and do much more things that a normal user. Please try to do that with a normal user and reopen the issue if you see a security issue!
When a agent have an open project to the ecosystem (Showed in "Projects you can join"
and you want to join, before to be a member you can edit (and crash!!) important information of the project as showed here (edit info and membership relations):
you can edit their info as well as change the members relations!! They only have to see the joining form button: