

Turing completeness and making functions, which can be used in combination of choice, available to the modder is a security nightmare I guess (basically your game becomes a simple operating system by making it programmable). I heard web-assembly allows for “sandboxing” but that depends on the hook functions that you allow your modder to access as well ….
But web-browsers seem to do it fine with their APIs.
TIL about BepInEx thanks! I will have to learn more about DLL injection.
I think we all know how this ends in practice … Gamers review all their mods code before playing