[repo] enhanced security handling: deprecates unsafe_execute, in favor of explicit read/write security control using the `enabled_security` context manager. Also code executed on the repository side is now unsafe by default.

# sync and restart to make sure cwuri does not appear in forms
sync_schema_props_perms()