Security Considerations

I skimmed your code for few minutes and found nothing (correct me if I'm wrong!) about security. Plugins will have complete freedom to do everything. Is there anyway to restrict what plugin can do in this framework?