Electron unfortunately is not a replacement for a WebView and has vastly different security properties. Electron apps often have severe security issues compared to a Chromium-based WebView:
- Not keeping up with security updates
- Deactivated sandbox
- If sandbox is enabled, lax IPC and permissions allow for easy sandbox escapes and access to sensitive data
- Exposing huge attack surface, despite not keeping the security of Chromium intact.
- Electron should never be used with untrusted web content. WebView can do that.
See Critical vuln that lets miscreants hijack computers via Slack? *Sucks in air* We'll give you $1,750 for it • The Register
and
Platform Security Part Deux with Justin Schuh (search for “electron”)