> As I understand it, this is what they're really aiming to prevent: dynamically-loaded code that runs in the extension's privileged context.

Thank you, this is extremely helpful for me understanding the security model here, and explains what I was missing.