[SECURITY] Deny arbitrary code execution possibility for editors