ffmpeg has a documented history of vulnerabilities that can compromise the host server. When rebuilding the system today, the speaker would isolate the ffmpeg process and deny it access to the rest of the infrastructure. The team didn't do this originally because inputs came from a trusted client's customers and ffmpeg's attack surface wasn't widely appreciated at the time.