Hi!
I belive that nsntrace needs classic confinement because it traces the network activity of applications, and we cannot know the confinement needs for arbitrary binaries being traced.
Review of nsntrace snap here: https://dashboard.snapcraft.io/snaps/nsntrace/revisions/1/review/
See more about nsntrace here: https://github.com/nsntrace/nsntrace
Thank you!