Audit all code loaded as root

[strugee]

I would like to audit all the code we load as root to make sure it's not doing anything malicious. To limit scope, this ticket does not encompass:

• Anything that is only loaded as the serverUser, not root
• Auditing for code correctness (i.e. we will only be looking for obviously hostile code, not potential security bugs)

I will probably have to write some tooling to help us continue to track this as we update transitive dependencies.

Dep #1555