feat: add creationTime / sandboxed / integrityLevel to app.getAppMetrics()

[miniak]

Description of Change

This is useful for checking which processes are sandboxed on OS level.

Regarding creationTime, since the pid can be reused after a process dies, it is useful to use both the pid and the creationTime to uniquely identify a process.

Required for tests in #18650

/cc @MarshallOfSound, @deepak1556

Checklist

• PR description included and stakeholders cc'd
• npm test passes
• tests are changed or added
• relevant documentation is changed or added
• PR title follows semantic commit guidelines
• PR release notes describe the change in a way relevant to app developers, and are capitalized, punctuated, and past tense.

Release Notes

Notes: Added creationTime / sandboxed / integrityLevel to app.getAppMetrics() output.

[ckerr]

This looks OK to me. Since this is new API, I'd like to see more feedback from other maintainers instead of landing it now.

As an aside, it often seems like there's hesitancy to jump on PRs that involve new API / API changes. Maybe we should revisit the idea of an API WG so that the roles are clearer. Since that doesn't exist right now, though -- CC'ing @electron/wg-releases for feedback?

[zcbenz]

The new API looks good to me.

[release-clerk]

Release Notes Persisted

Added creationTime / sandboxed / integrityLevel to app.getAppMetrics() output.

[deepak1556]

I think this could add support for linux by reading the value of service_manager::ZygoteHostImpl::GetInstance()->GetRendererSandboxStatus but its not useful at the moment, having the zygote enabled essentially means some sort of sandbox enabled, maybe helpful in knowing what type of sandbox is enabled similar to https://cs.chromium.org/chromium/src/chrome/browser/ui/webui/sandbox_internals_ui.cc?g=0&l=31-61

But to make this return useful value in mixed sandbox mode were we bypass zygote https://github.com/electron/electron/blob/master/patches/chromium/support_mixed_sandbox_with_zygote.patch, maybe check for switches::kNoZygote ?

/cc @nornagon

[nornagon]

Hmm, I don't think sandbox status of the zygote tells you whether or not the process is sandboxed, because the way we implement mixed-sandbox mode in linux is that sandboxed processes are launched through the zygote and unsandboxed processes are launched directly.