It is recommended for activists, but it really can be for anyone. It is basically just Android and your grandmother could daily drive it about as well as any other Android OS. It's solid, security hardened, gives extra security toggles, and extends device longevity past being made ewaste by EOL. I was hesitant at first to use it, especially given its cult-ish community, but it really has "just worked".

I do agree that smartphone have gotten too large to be reasonably comfortable.

Actually, in the case of a web browser, Flatpak weakens both Firefox's and Chromium's internal sandboxing, possibly allowing for breaking of cross-site or site-host boundaries. Firefox is even weaker then Chromium as a Flatpak because it can't use the zypak fork server. Both are weakened, best to avoid.

For basically any other app, Flatpak can be beneficial as a sandbox.

Basically, don't sandbox browsers because its like wearing 2 condoms. The only sandboxing tool I know that doesn't interfere with the browser's sandbox (and also doesnt allow for the possibility of privilege escalation, like Firejail) is Bubblejail

PS: Since you mentioned you are on Fedora, Bubblejail is offered through this COPR repo from the Secureblue team. It provides a sandbox without interfering with the browser's sandbox. It comes with profiles for Firefox and Chromium. Only issue ive experienced is that the sandbox works, aka it means I can't access files from my home directory unless explicitly given permission to a folder.

And I dont deny that. There are a lot of programmers, and not all had eduction on designing secure software. Even with the knowledge and experience, what if the programmer is tired or makes a similar mistake. Only one mess-up away from a potential vulnerability or instability of the app and system as a whole. I need more experience with C to form a better opinion.

IIRC, they block 3rd Android ROMs (eg GrapheneOS) using Google's Safety net service verification.

Very interesting read.

I wouldn't stress much. It would take a targeted attack to have actually compromised your phone. It is alright.

For good out-of-the-box nvidia support, I recommend Bazzite.

-> UEFI IRC client written in Rust

I recommend Mull. It is security/privacy hardened Firefox and built by using Fennec as a base. Always use Fennec over Firefox because it removes telemetry, proprietary code, and strongly protects against browser fingerprinting. Comes with support for most (if not all) desktop Firefox extensions. I highly recommend using uBlock Origin, ask anyone and they'll tell you it is the best content blocker available.

Another good browser is Cromite. It is security hardened Chromium with built-in ad/content blocking, decent fingerprinting protection, and strong site isolation. It doesn't have support for extensions because upstream Chromium on Android doesn't either and it is hugely complex to port.

I identify as ally cus I am gay and I think it is funny to exclaim "I'm just an ally" to my gay friends.

Typo in your function definition according to your IDE. Guess that means no women are getting paid. Alternative interpretation is that the function will cause the program to error out resulting in a destabilizing of the power structures or something idk.