Well, first of all the snap .deb is a DNA sequencer app (see apt show snap), not sure that is what you wanted to check The tool that brings along the snap command is actually snapd and while there is a deb of it, the actual payload comes from the snapd snap package here (snap list should show you a snapd package installed as a snap) …
That there are nowadays flatpak apparmor profiles is a system level change to harden the install made by the ubuntu security team, flatpak itself does not actually utilize apparmor for its confinement … if you want to read more:
snap confinement utilizes apparmor, seccomp, namespaces and cgroups and udev tagging to build its secure sandbox the applications are run in …
Any type of confinement comes with drawbacks, that’s an undeniable fact and both systems (snap as well as flatpak) have to battle with this one way or the other.
Regarding the file access that was the original topic triggering this discussion, apparmor simply operates on a lower level than the filesystem, but things like symlinks are a filesystem feature (i.e. a (v)fat has no ability or concept of links at all, ext4 has them, other filesystems might handle them differently than ext4 etc etc) to allow apparmor to handle something like a symlink it would have to integrate with a higher layer and would have to loop into the respective filesystem implementation but that would very likely come with performance penalties which the current snap sandboxing needs to avoid at any cost (snaps are commercially used in system critical spaces in production in industrial, medical, robotics, automotive and realtime setups where any performance impact due to sandboxing would be fatal).
Theoretically you can package snap apps using XDG portals, that would allow your app to overcome this limitation by copying the files around underneath in a transparent way, but it is
a) up to the packager to decide if they want to use this and
b) portals also have their limitations on other levels
Regarding apparmor snap profiles, they get generated on the fly by snapd when an application snap gets installed based on the set of interfaces a snap package has enabled, so you wont find any app specific profiles with aa-status unless you install a snap …
The tool that brings along the snap command is actually snapd and while there is a deb of it, the actual payload comes from the snapd snap package here (snap list should show you a snapd package installed as a snap) …