https://github.com/vyos/vyconf/blob/master/src/value_checker.ml#L13-L24
Right now there is no validation at all, and a malicious user could execute arbitrary code with a specially prepared value to be validated. Dangerous characters should be escaped to prevent this.