Its even worse when you force Firefox to use wayland its icon doesn’t even show.

Edit: Oh since everyone now is confused; I only have the flatpak version of Firefox installed yet it doesn’t use the pinned icon and doesn’t even use the firefox icon under wayland at all.

  • BeigeAgenda@lemmy.ca
    link
    fedilink
    arrow-up
    5
    arrow-down
    6
    ·
    1 year ago

    Basically you install the application inside a little OS with dependencies each time you install a flatpak, that OS is rarely updated with security patches and most of the time has full access to the host OS. https://flatkill.org/

    This is a lazy and insecure way of distributing applications with no real benefits.

    • Hovenko@iusearchlinux.fyi
      link
      fedilink
      arrow-up
      3
      arrow-down
      1
      ·
      1 year ago

      Exactly. The QA of flatpaks is done in “trust me bro” framework. You can just go back to windows at this point.

      If I install a package on my distro I know it went through a shitload of testing and I can be sure I am not installing some crap on my system.

      • λλλ@programming.dev
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        I don’t know what distro you use, but packages in their repos have “maintainers” that are usually volunteers. Downloading from repos from the distro is trusting whoever the maintainer is there. I don’t see how that is any better than a flatpak… At least with Flatpak many packages are maintained by the developer. I believe that would be more secure.

        • Hovenko@iusearchlinux.fyi
          link
          fedilink
          arrow-up
          1
          arrow-down
          1
          ·
          1 year ago

          Major distros are usually backed by a compamny which provides enterprise version. Maintainers are actually employees paid for their work. Even if you pick a derivate distro you will inherit that testing process. So please get your facts straight before talking, you obviously need it. Here how it is done: https://openqa.opensuse.org Each package update, distro install process goes through automated testing. This detects bugs, dependency issues, you name it. If something fails package goes back for human review. And as you can see it is an open process which YOU can review any time.

          So… how are the flatpaks tested? Please show me some facts. I am interested in this new “trust me bro” QA framework.

          • λλλ@programming.dev
            link
            fedilink
            arrow-up
            1
            ·
            edit-2
            1 year ago

            You are very confrontational. I love being proven wrong so that I can learn more. But, your language is belittling. I hope my message didn’t come across that way.

            Either way, looking at DistroWatch OpenSuse is about the #10 most popular Linux OS. MxLinux, Linux Mint, Debian, and Ubuntu are all debian based and above OpenSuse. Debian is by volunteers according to the Debian Package Maintainers Guide. So, I would think that the most-popular distros (especially in the non-professional world) are maintained by volunteers.

            That comes with nuance though and I understand that. For instance, debian is celebrating 30 years. In that time I am sure many package maintainers have probably done this for very long amounts of time. So they are probably more worthy of trust than some Flatpak maintainers. But, when a flatpak is maintained by the developer (not that common in my experience) I would trust them the most.

            Now, something I wasn’t aware of until someone else linked it is how bad Flatpak is as a sandbox. But, I never used it wanting a sandbox. I like it for the isolation of libraries (Dependency Hell). Updating my OS never breaks any packages, because the libraries are separated.

            As for qa testing. It would be on a per-package stand point. I see how helpful that is. But, I’m not installing any command line utilities through Flatpak. Just desktop apps, like browsers, game launchers, etc. So, maybe we are talking about different types of packages…

            I’m not convinced Flatpaks are inherently worse than packages from the OS’s repos themselves. But, I will be trying nix package manager as a replacement.

            • Hovenko@iusearchlinux.fyi
              link
              fedilink
              arrow-up
              1
              ·
              1 year ago

              You were responding to my reply to someone else… but ok I guess. I am not here to convince you about anything. It’s not my problem what you install on your thing. I just don’t like misinformation spread based on ones believes and feelings, belittling work of whole teams of maintainters and QA staff which is core of why you can trust Linux ecosystem. Them being paid or not is not being relevant.