And I am just suggesting solutions to the problem you have raised.
I am not against ACLs, I think they would be a nice feature. But ACLs are no a be all end all either, bugs can happen anywhere.
Also, most of the recent Wireless radio viruses used default, simple or discovered passwords to spread. As well as piggybacking old bugs that had already been discovered and patched months/years before.
I am not saying Mimosa is completely secure, just that there are ways to use the already available tools to achieve similar results.
It is quite doable to VLAN each of your devices back to a firewall/router and only allow your management IP to access them. No intercommunication between devices if you use separate VLANs. Then as long as your management IP is secure there isn’t much that can happen.
That or surround your radios with firewalls so they can only talk to your management IPs.
Mimosa has been set back a while on new features by the AirSpan reshuffling, if you want to secure your stuff I would recommend solving the issue with tools available and good network security.