A massive supply chain attack targeting the Arch User Repository (AUR) has compromised more than 400 community-maintained packages, with attackers injecting malicious build scripts designed to deploy credential-stealing malware and rootkit-style payloads on affected Linux systems.
A sandbox that has enough protection to be secure also has enough restrictions as to be too annoying to use, and often is useless. Don’t get me wrong, sandboxes can be very good, but only in specific situations. In general you need your applications to be secure without a sandbox.
What do you mean, don’t you love a text editor that can not open any file on your system?