GOS devs said earlier that there are plans to implement IPC controls between apps running in the same profile, essentially masking some apps to other apps. I wonder what's the progress there and when it will come out.
My use case for it would be installing GMS, revoking network permission AND IPC permission to non Google apps. This is needed to prevent some apps trying to use Google services for push notification or Google theoretically bypassing network block using other network enabled apps. Although it might be useful in future to block IPC of all proprietary apps that doesn't really need it, like reddit or facebook if I wanted to use it.
I'm looking into the new scam prevention for GMessages but I first need to completely isolate Gapps.