While I don't disagree, you can get rather far by limiting what you allow in the evaluation. There is no reason you have to pull it in in your current environment directly.
And then you have an easy mechanism to allow some configs from trusted parties to be a bit more capable, if they need it.
Though in that case you definitely want to disable macros for this config (as they allow for exponential time/space) and be very careful with any additional functions you expose.
And then you have an easy mechanism to allow some configs from trusted parties to be a bit more capable, if they need it.