160

Flatpak is not perfect, but it's getting better (thelibre.news)

submitted 1 year ago by Pro@programming.dev to c/linux@programming.dev

42 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] HayadSont@discuss.online 0 points 1 year ago

Ah okay, thanks for the clarification! I haven't delved deep into that aspect yet. But I've recently become aware of this unaddressed attack vector. And it is definitely something to worry about.

Unsure if it's solved anytime soon. But, if it is properly addressed and solved at some point in the future, would that (completely) redeem Flatpak's security model? Or, at least make it superior to what's found elsewhere?

[-] jagged_circle@feddit.nl 1 points 1 year ago

They don't seem to give a shit about security. I think the well is poisoned. Best to just use apt

[-] HayadSont@discuss.online 1 points 1 year ago

They don’t seem to give a shit about security. I think the well is poisoned.

Nah, I wouldn't go that far. That's like way too dramatic.

Best to just use apt

I will whenever apt doesn't (majorly) rely on backports for its security updates AND actually sandboxes its own packages. Zero Trust, FTW!

[-] jagged_circle@feddit.nl 1 points 1 year ago* (last edited 1 year ago)

When a critical security bug is open for years on a project with plenty of funding to fix it..

this post was submitted on 02 Jun 2025

160 points (97.1% liked)

Linux

13905 readers

338 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 3 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev