I decided to put some other claims like iss and aud and pushed the change to the repo.
Now, I have some additional idea around it.
Since we are now pushing the request object to the AS, the AS knows which client certs is to be used for the transaction. Thus, code can actually be bound to the client certs so that all the tokens generated by the AS are actually sender constrained. I will create an additional ticket for this.