I'm using a form that is heavily spam active (due to the niche and age). One of the great things about this (for me) is that I encounter all sorts of direct attempts to bypass anti spam mechanisms. One of the methods they have attempted is to use old direct links to image for comparison (I've already prevented this type of binary comparison by creating >300k versions per image and the public uuid link being invalid after 24 hours). Due to the number of versions of images, they fail at beating the system, but unwittingly provoke a server error.
So the minor issue is: If a user uses a deactivated public uuid, it throws an error in the server error logs (normal users wont ever see this, but those attempting to automate and bypass the Captcha.. and failing, will)
-- This error is now handled, instead of the attacker producing an error, they just get returned a blank page.