Should Trellis rate limit or blocks access to wp-admin/load-scripts.php
?
Example:
http://example.com/wp-admin/load-scripts.php?c=1&load%5B%5D=eutil,common,wp-a11y,sack,quicktag,.......
Reason:
That url is vulnerable to DoS. More about that on Barak Tawily’s post