top | item 27601011

(no title)

sjellis | 4 years ago

The author of this has been running with it for a couple of years. Previous HN threads:

https://hn.algolia.com/?query=Flatpak%20%E2%80%93%20A%20Secu...

The tone and varied assortment of alleged issues makes me feel like he started by deciding that Flatpak was bad, and then found whatever he could to support his view.

discuss

Smithalicious|4 years ago

Okay, but is he wrong?

I don't have a horse in the flatpak race at all since I don't use it, but the arguments on this website seem strong. I don't really care what someone's motivation for making a point is, I just care whether they're correct or not.

viraptor|4 years ago

It's technically correct in the same way "ants suck - humans on ants racing is a nightmare" is technically correct. Whether it matters for you depends on your environment / what you want to gain from Flatpak.

If you don't use it (as in don't have a use case you want Flatpak to satisfy), then I think the article is neither right nor wrong.

foxpurple|4 years ago

It’s technically correct in the sense that allowing users to run arbitrary code is a security nightmare. From my own usage and assessment, flatpak seems to be more secure than traditional package managers.