To report a security issue, please email aecker2@gmail.com.
The ae package provides powerful functions to execute code blocks and to evaluate expressions, which could be mis-used to execute inject and execute malicious code snippets.
These functions are also used to interpret command line arguments and configuration file options. Therefore caught has to be taken to prevent that external processes having write access to your shell scripts and configuration files.