Right now, Coder passes all of its environment variables into the provisioner. A malicious template could use this behavior to exfiltrateCODER_PG_CONNECTION_URL and "root" Coder. To be safe in perpetuity, we should just strip allCODER_ environment variables.