A lightweight binary that will allow users to run untrusted, malicious commands inside a sandboxed environment where suspicious activities (such as opening a file inside the root directory, spawning multiple child processes) will be detected and will require the explicit consent of the user to proceed