The info node "(org) Code Evaluation Security" fails to mention
diary-style (%%) sexps at all. Furthermore, it appears that the
`org-diary-sexp-entry` function will readily evaluate any Lisp function;
it does not necessarily need to be related to dates or considered safe.
For example the following
l...@phdk.org writes:
> [1] I think this is what this thread was about:
> https://list.orgmode.org/CALp=Ckko1Ck7-3K+bfKXLVSqDJvmHWYEZutkj5J2v3t=quv...@mail.gmail.com/T/#tO
>
> Which was closed as not a bug, but since I feel I'm misunderstanding
> either the original report or Ihor's answer I tho
