I am one of the many developers who have been troubled by this for many years. I think developers should be given more development methods instead of being restricted. Using the NSURLSession class with IP direct connection is definitely to meet the application scenarios of its own apps, and Apple may not know the application scenarios of all companies' apps. Moreover, this restriction may not necessarily improve security, because everyone can still use libcurl or directly use sockets to write network components. Does it mean that using libcurl will also have hidden dangers? If this is true, Apple should just ban libcurl.

I think your suggestion is very unreasonable, and you have not given a reasonable reason for not providing this interface; when using LocalDNS to resolve domain names, it will go through multiple layers of DNS proxies, which are uncontrollable. Only by using our own HTTP DNS and using HTTPS IP direct connection can it be safe and reliable.