You must log in or register to comment.
Define “sandboxed”
Application can only access a limited part of the system? = use flatpak or build a container/VM image using the nix pkgs.
Application can be uninstalled completely and has separate libraries? I prefer nix.
Nix apps are not sandboxed and you have no control of what resources they have access to or don’t, unless you wrap them with some other program