Windows Sandbox is a new lightweight desktop environment tailored for safely running applications in isolation.
How many times have you downloaded an executable file, but were afraid to run it?...
Updated Dec 12, 2022
Version 11.0
Blog Post
In my understanding Sandbox is a place to mess around with unknown stuff (malware, etc.), close it and start a fresh one when needed. Not to live and work your daily work in it. As long as something can't get out of it to the host (without a user actively copying it out) i'm ok with how it operates. Some malware can be dormant if it can't get admin rights maybe. As this is a feature that has to be installed, regular limited users won't have access to it, so it is up to admins or machine owner in a case of independent researcher to install it on selected machines. In this blog post MS says, that they see this feature as a testing place for suspect executables, but some people want it to be something else (isolated environment to test software, etc.) and work in it. I can see how this can be dangerous. But it goes against MS idea of how it should be used.