An exposed endpoint in a code-execution platform is drawing attacker attention because it can turn a single web request into arbitrary Python execution, cloud credential theft, and a NATS-backed worker foothold.