/TRUSTED
       /NOTRUSTED

    Indicates that the PIPE command input originates in a trusted
    command procedure. PIPE commands are not allowed in CAPTIVE
    accounts. The /TRUSTED qualifier provides a way for properly
    written captive command procedures to perform PIPE operations
    when the command input originates in the captive command
    procedure where it can be trusted. For more information about
    trusted command procedures, see the HP OpenVMS Guide to System
    Security.