Is it possible for a Picotron cartridge to escape Picotron's environment and access files outside Picotron?

Is there any known or unknown API that allows that? Known APIs: https://www.lexaloffle.com/bbs/?tid=140816

Is the embedded Lua language fully sandboxed? Does Picotron utilise solutions mentioned here: https://stackoverflow.com/questions/1224708/how-can-i-create-a-secure-lua-sandbox

Is it safe to run any Picotron cartridge downloaded from the internet?

Is PICO-8 safe to run any cartridge?