Comment 1 for bug 2044193

Hello, thank you for your comment. The "Data Locations" documentation was unclear about this, and has since been corrected -- thanks for pointing this out. In short, snaps do have read/write access to $SNAP_USER_DATA and $SNAP_USER_COMMON without interfaces. See (1) for the updated description, and (2) for the relevant source code which defines the base apparmor template.

(1) https://snapcraft.io/docs/data-locations
(2) https://github.com/snapcore/snapd/blob/master/interfaces/apparmor/template.go#L360-L363