Generally, that is true for small feats of system automation, but secure applications need to be isolated from the system layer.