Capability System
With a capacity system, OS resources must be accessed with explicit permission. This can be a good way to counter supply chain attack.
Lesley: Programmers should be required to explicitly enable those permissions for each package even for transitive dependencies.
Deno and Austral are two systems that utilize a capacity system 1.