If the pipeline is completely internal, I don't see much of a need to use table name environment variables for security reasons, notwithstanding any other reason to use such techniques. Information Security Stack Exchange has a related thread with a good answer about external usage.