macOS: plugins in sandboxed DAW

Hi,
happy new year!

First of all it seems that the Projucer does not provide the temporary exception entitlements.
https://developer.apple.com/library/archive/documentation/Miscellaneous/Reference/EntitlementKeyReference/Chapters/AppSandboxTemporaryExceptionEntitlements.html

Don’t we miss at least
com.apple.security.temporary-exception.files.home-relative-path.*
com.apple.security.temporary-exception.files.absolute-path.*
for preset file handling (as unfortunately there is no generic DAW preset handling and it seems that its the plugins responsibility to invent the wheel here).
and:
com.apple.security.temporary-exception.shared-preference.*
to allow preference file access?

Our plugins communicate with a controlling hardware device via Apples IOHIDDevice API, which according to
https://developer.apple.com/library/archive/documentation/Miscellaneous/Reference/EntitlementKeyReference/Chapters/EnablingAppSandbox.html
should be sandbox excepted by the com.apple.security.device.usb key, which I have test-wise placed and enabled, but communication can’t be established from inside a sandboxed DAW (checked with Ableton Live).
Any expertise on this?

Thanks & cheers