Used a fuzzing script to get a list of allowed functions, slurp being one of them gives easy way to read flag.

Original writeup (https://anee.me/janet-v1-1-repl-sandbox-bypass-f8bbe141a4f1).