Oh hm I should of clarified, I meant more like the human procedures to go forth and run the blacklist function, I'm sure the actual code is documented (and it appears to be - nice!), but it doesn't really matter how secure the code is if anyone inside the organization can execute it.

Although having an un-block function is good thinking since it would allow them to reverse course - no bad decision is permanent.