Running an Unfamiliar Repo Is a Security Boundary

Overview Running an unfamiliar repo is not neutral. That first command can install packages, execute lifecycle scripts, create files, start services, request credentials, open network connections, app