One extra feature could be passing the contents of the shell script to an LLM and asking it to surface any security concerns.