Investigate sanitising input to remove G601

Currently, we use user input when invoking commands like `az cli`. It's not immediately clear to me how to avoid this to mitigate G601.

As azb runs under the user's identity on their machineI think the impact of passing user input to the exec command is less.

Using this issue to track and revisit in the future. Maybe a nice way to resolve.