Like in the previous commit and in git, we reject a path that looks like an option to avoid injection into the command we ask the remote to execute.
