be afraid, very afraid

this all has its roots in the failed IRL POSIX capabilities model that was only put to test after POSIX had died. And it failed and still fails in real life. I see daily enough of the problems this causes us while having the hallmarks of security cult. I fail to see how this newest attempt addresses the underlying problem of capabilities being extremely use-case dependent and this exploding in our faces. Also, when you do services you quickly realize they're are many different angles that lead to this explosion.