> executing a DotSlash file could "run anything,"
https://dotslash-cli.com/docs/motivation/
Seems promising but obviously security around the dotslash file needs to be well thought out.
Why does it need to be thought out at all? The whole point of this is to run something on your machine.