Draft: Unsafe Browser can only be run from allowed apps
this addresses one of the concerns about Unsafe Browser security: can an attacker run the Unsafe Browser if the user has closed it?
refs unsafe browser design docs (!956 - merged), Update design documentation for Wayland (#19230 - closed)