We have a client wishing to use the "Data Manipulation" access that we currently have restricted.
There is a warning on the access level that states:
Warning: This should only be enabled for trusted developers, as it would allow them run custom scripts
Is there anywhere that goes in to more detail about what this does or allows? What are the potential risks?
We run a multi-client yellowfin so if it could allow them to break the bounds of the organisation they are in then that's going to be a no.
Is there any other potential security risks?
The only documentation I've found related to it is
So any additional information would be appreciated