With all the work around AI sandboxes, microVMs, browser sandboxes, device attestation, secure boot etc. I feel like we should be able to construct a proper software sandbox that works on most PCs and guarantees that e.g nothing outside of the word processor runs now. Like the OS would need to guarantee that nothing outside some narrow well-defined qemu VM runs for some time an the VM takes care of the rest.