I believe switching to user flatpaks by default is a better option. Let unprivileged users manage their own apps and keep system-wide apps limited to...