Sure, but the flatpak model is a way to get these advantages for as large a userbase as fast as possible. If you use flatpaks without bind-home under wayland today, you’ve significantly improved your actual security already.

Sandboxing arbitrary badly behaving software is just going to use the same APIs as flatpak, so this helps for your use case as well.