We have moved all network activity (aside from some syslog use) out of the WebContent process. We no longer need the ability to open remote tcp connections, and should deny this in the sandbox.
We do not have this power on iOS, and do not need it on macOS. I originally though there were media paths that needed this, but confirmed with the WebKit Media team that this is not the case, and performed local testing to confirm this.
Created attachment 414267 [details]
Comment on attachment 414267 [details]
Committed r269877: <https://trac.webkit.org/changeset/269877>
All reviewed patches have been landed. Closing bug and clearing flags on attachment 414267 [details].