I agree wholeheartedly with your point. Open Source software, by definition, will try to comply with a large range of users needs, this is why these ideas should be options that are configurable in the program. I envision it as a tool giving you all the options, which you have to configure for proper use yourself.
Perhaps this functionality can be an installation switch, similar to
"developer_mode": 1, except that this is a question asked from the person configuring ERPNext for the first time. The chosen setting must be clearly shown in the Desk > Setup > System Settings > Permissions section. If enhanced security is desired, a different key should be used, only available to Auditors.
In my experience, even the auditing companies have managed to alter the information in conjunction with company officers. Leaving the stockholders in the dark about obscure movements. Remember that the stockholder is the principal and the executive officers, managers, employees are the agents. I have seen two agents (Auditor and Employees) behave contrary to the benefits of the principal through “protracted” or long (and thus expensive) audit processes. Mind you, these problems occurred in a system where the ledger was (supposedly) immutable!!! The falsification of records happened prior to the data entering the system.
I have even seen (recently) problems where the Government tax authorities behaved as agents in collusion with the auditors and the company officers. Many people have been found guilty of this behavior here in our country. And this, with immutable ledger accounting.
While I agree upon having the information secured and tracked, you still need the flexibility of correcting errors or misbehavior on a per case basis, and the responsibility of this information being accurate and honest rests solely on the CEO or President of the company.
I hope people here understand that there will never be a perfect solution to a moral hazard problem, thus keeping the option open for both types of users immutable vrs. changeable ledger is essential to the continued success of ERPNext imo.
More info on Moral Hazard and the principal-agent problem