Until we rewrite the resource task, we have to allow outbound network
connections. This should be done soon, however.

I'm not sure how to restrict access to specific files on the filesystem
without root privileges.