sandbox-entitlements-auditor Audit existing entitlements and recommend minimal sandbox permissions for secure desktop applications, primarily for macOS but applicable concepts for other platforms. Capabilities - Analyze current entitlements usage - Detect over-permissioned configurations - Recommend minimal entitlement sets - Check for security anti-patterns - Verify MAS compliance - Generate audit reports Input Schema Audit Checks - Unnecessary file system access - Broad network permissions when not needed - Hardened runtime exceptions - JIT compilation allowance - Library validation disabli…