Well the <custom_program> is always the same and is hard coded and only works with certain commands.
We do have quite a bit more security than I mentioned, I just typically don’t share exactly how our system works mostly for security reasons.
But I would definitely agree with you that a setup like this needs to be implemented very carefully