You can always do:
ls /usr/share/sandbox
and look at the numerous examples to figure out how to specify details ;-).
If you have Microsoft Office installed on a macOS, looking at Activity Monitor and going to View -> Columns -> Sandbox you can see Microsoft sandboxed all their apps...wonder how they did it? Microsoft must have thought it was still useful security measure.
jfreyensee_qualys
Users receive reputation points by contributing quality content to the forums.
Posts include post and replies published on the forums.
Post authors can mark replies as Accepted to indicate successful solutions.
Apple Developer Forums admins can mark replies as Apple Recommended to indicate an approved solution
Post
Replies
Boosts
Views
Activity
I just realized I didn't thank you for this, so thank you!