SandboxFlags API allows too much control, remove some
Currently the SandboxFlags
argument for sandboxes allows plugins too much control on how to use a sandbox.
With the exception of SandboxFlags.ROOT_READ_ONLY
, the remaining flags are only for internal use, so that we can control the behavior of a sandbox in a bst shell
environment.
As a result, we should remove the remaining options from here while retaining ROOT_READ_ONLY
, technically this is an API break; but it can only break for plugins who are doing something illegal in the first place.