Jeanne:
execute capability is only allowed if the user has S_DEVELOP with activity 16 and the name of the program or function module being executed.
Is there still a risk in giving these and if so, can you please describe them?
Julius:
The question is whether '03' still has any risk remaining. '16' is definitely a very high risk for a production system.
This is not correct and certainly not what I said. ACTVT '16' is a thing of evil.
I do second by assigning ACTVT with 16, it would raise the risks but you can always restrict a developer with the help of P_GROUP along with the rest of the fields.
Ameet