Really now? Here's a docker container with a shell you can type anything in to: https://contained.af/

If you manage to tell me what's in /etc/os-release on the machine (not inside the container), I'll eat my lunch.

The issue with curl|bash is not just the security (you can run curl|bash as an unprivileged user).

It's also the fact that it generally doesn't do anything to integrate well with your system, and just pull all its dependencies in a folder and never update it afterward.

So...if we don’t, will you ever eat lunch again?