I hear great things about the Nix package manager and AppImages, but I personally use the AUR. The vast majority of what I use is in the Arch official repositories.
I’m also not saying to not use Flatpak, but you shouldn’t be using it for sandboxing or depend solely on its purported security benefits on mission critical systems.
What constitutes a reasonably secure package management system depends on your threat model (no such thing as 100% secure).
Obligatory https://flatkill.org
Bro kept paying to renew the domain for 3 more years, but didn’t bother to update the info 💀
As far as i know the information on that page is now false or outdated. The author should really make an update or take the page down.
Are there (more) secure alternatives?
I hear great things about the Nix package manager and AppImages, but I personally use the AUR. The vast majority of what I use is in the Arch official repositories.
I’m also not saying to not use Flatpak, but you shouldn’t be using it for sandboxing or depend solely on its purported security benefits on mission critical systems.
What constitutes a reasonably secure package management system depends on your threat model (no such thing as 100% secure).
+1 for nix. I use it daily, and it’s great. A lot of apps are packaged in nixpkgs, too.
Firejail is (from what I understand) the same thing as flatpak but for system applications