Add simple security measures to start. Since we control the project it might be good to restrict access to only the project you're interacting with. For example, trying to add source files outside of the project directory would result in an error. This should make it safer to share codemods and run them locally similar to AST Explorer. Additionally, the input code should be sanitized.