There is nothing encrypted in my example either, the only encrypted data would be ciphertexts encrypted by anyone to the vendors key. The trick is that if one of the ciphertexts decrypts into a plaintext with a signaling string in it, the entire rest of the message is treated as a totally independent Ruby script. I will change the comments to be more accurate.