I have the following line in my php.ini:
disable_functions = system,exec,passthru,shell_exec,proc_open
phpinfo() for my site tells me that the php.ini file has been loaded, and confirms that the following settings are applied in Core:
However, I'm still getting the "Dangerous PHP Functions" critical security warning, listing all these functions, in the Core Check results for this plugin.
I have restarted apache.