Remove --filesystem=home

[nanonyme]

This gives the application write access to home directory and allows executing arbitrary code outside sandbox through injection to eg .profile or other files. If the app really needs access to home, it should be read-only. Why does it need home access in the first place?

[bellegarde-c]

@nanonyme It's needed for bookmarks import, readonly should be ok. Or better, Firefox/Chromium/Chrome paths.

[nanonyme]

Yes, definitely exact paths to those is fine. It also makes intent more obvious to user.