wasi-nn: load_by_name seems insecure

our load_by_name implementation seems to trust host filename given by wasm modules blindly.
i consider it a security issue.

other runtimes (wasmtime, wasmedge) seem to have a concept of model registry, preloaded models, etc.
to me, it seems like a more reasonable design we should follow.

