I’ve never understood the security utility of the Deno flags. What practical attack would they protect you from? Supply chain seems to be the idea, but how many npm packages do people use that neither:

* Get run by devs with filesystem permissions

* Get bundled into production

Not all applications need file system access during runtime.