For any Flatpak, I have fine grained control over directory access. For example, I can restrict Firefox to a specific directory (e.g., ~/Downloads/firefox). However, I don’t see a way to do something similar with snaps. It seems to be all or nothing. Am I missing something?
The reason this is important to me is that I want to restrict some applications so that zero-days or supply-side attacks can limit the amount of data exfiltrated.
Sorry if this is repeat question (I didn’t see anything).