So essentially?:
(setvar 'trustedpaths (getenv "ACAD"))
I argued this point to no fruitful end during Beta, as there were several discussions related to the new security mechanism... To my mind, it all stems back to the Profile's SFSP, as that (
generally) is setup by one or more qualified individuals.
The premise that SFSP is not trusted is preposterous to my mind, and TrustedPaths *should* only be used to extend SFSP + implicitly trusted, OOTB folders (
i.e., the now three ..\ApplicationPlugins\ folders, OOTB ..\Support\, etc.).
This formal 'rationale' that Autodesk has deemed network (
not internet, but your office's own network) locations to be riskier than local disk folders that the user has full write-access to, again, it preposterous to my mind.
The user *should* have access to the application, and the enterprise *should* have access to the Autoloader from the network via SFSP (
without the need for replication to local disk to implicitly trusted ..\ApplicationPlugins\).
... My $0.02