When constructing a DSL, you need to ensure it is properly sand-boxed - that is, it only permits access to a narrowly defined set of functions and does not allow general execution of code.
