179
submitted 8 months ago* (last edited 8 months ago) by Bro666@lemmy.kde.social to c/kde@lemmy.kde.social

A user has had a bad experience installing a global theme on Plasma and lost personal data.

Global themes do not only change the look of Plasma, but also the behavior. To do this they run code, and this code can be faulty, as in the case mentioned above. The same goes for widgets and plasmoids.

We are calling on the community to help us locate and quarantine defective software by using the "Report" buttons available on each item in the KDE Store.

Please see this linked image to locate them.

Meanwhile, KDE is taking measures to properly warn users before each download and we are also putting in place ways of auditing and curating what is uploaded to the KDE store.

Nevertheless, this will take time and resources. We recommend all users to be careful when installing and running software not provided directly by KDE or your distros.

And remember to report any faulty products you find!

you are viewing a single comment's thread
view the rest of the comments
[-] forgotmylastusername@lemmy.ml 12 points 8 months ago* (last edited 8 months ago)

Are we all forgetting rm -rf has the --no-preserve-root safeguard? The accidental engine DataSource culprit seems unlikely. You can experiment yourself with in VM. It's only a couple lines of QML code. Nothing will happen without explicitly turning off safety.

The pling account that posted the theme was registered on February 25 2024. And suddently it has 3800 downloads without anyone else saying anything?

Things aren't adding up. I think this had to be intentional malicious crafted code.

[-] pressanykeynow@iusearchlinux.fyi 14 points 8 months ago

Are we all forgetting rm -rf has the --no-preserve-root safeguard?

How will it help saving the important data that's in /home?

[-] nexussapphire@lemm.ee 2 points 8 months ago

Unless you have your root dir mounted in your home directory! Thanks btrfs. It might be protect by permissions but I wiped a whole disk without --no_preserve_root. It hurts being too clever sometimes. dink meme

this post was submitted on 20 Mar 2024
179 points (99.4% liked)

KDE

5336 readers
126 users here now

KDE is an international technology team creating user-friendly free and open source software for desktop and portable computing. KDE’s software runs on GNU/Linux, BSD and other operating systems, including Windows.

Plasma 6 Bugs

If you encounter a bug, proceed to https://bugs.kde.org, check whether it has been reported.

If it hasn't, report it yourself.

PLEASE THINK CAREFULLY BEFORE POSTING HERE.

Developers do not look for reports on social media, so they will not see it and all it does is clutter up the feed.

founded 1 year ago
MODERATORS