@tweedge I think the “protecting morons from themselves” is the main use-case. When we implemented it in @misp it’s because we had tons of people who double-clicked on the link or having a PATH with a dot in their shell profile. Technology is too advanced even for security analysts/researchers.